Our 2-day training at @deepsec is a wrap!
It was the first time I delivered a deep-dive focusing entirely on the #psychology interplaying in #socialengineering & #HUMINT operations at a cybersecurity conference. Happy to report, that there is a lot of interest on the topic.

It is very energizing to have a class full of curious minds that do not only explore the concepts being taught, but also apply deep critical thinking in the way they work the class material and the questions they bring up. Their input was helpful for everyone in class.

The entire DeepSec (training & conference) was once again a blast! Being able to teach but then also to sit and learn from the speakers at the conference will always give me a feeling of perfect balance.

A happy highlight is that you also get to meet old and new friends from the community again! 🙏🏻

Thank you to everyone that attended the class, to the friends that made the dinners & breaks so joyful, and to the organizers René Pfeiffer, Susan, & others for bringing us all together for another year! 🥂

#infosec #conference #cybersecurity #training #DeepSec #DeepSec2024

DeepSec 2024 Talk: Executive Breach Simulation Toolkits – Pavle Bozalo, Aron Feuer & Matias Ulloa

As cyberattacks multiply and become more sophisticated, executive breach simulation toolkits have become essential. Enabling organizations to simulate, predict, and ass

https://blog.deepsec.net/deepsec-2024-talk-executive-breach-simulation-toolkits-pavle-bozalo-aron-feuer-matias-ulloa/

#Conference #DeepSec2024 #ExecutiveBreachSimulationToolkits #RiskManagement #SecurityBreaches #Talk

DeepSec 2024 Talk: The Malicious Bloodline Inheritance: Dissecting Deed RAT and Blood Alchemy – You Nakatsuru, Kiyotaka Tamada & Suguru Ishimaru

ShadowPad is a particularly notorious malware family used in Advanced Persistent Threat (APT)

https://blog.deepsec.net/deepsec-2024-talk-the-malicious-bloodline-inheritance-dissecting-deed-rat-and-blood-alchemy-you-nakatsuru-kiyotaka-tamada-suguru-ishimaru/

#Conference #BloodAlchemy #DeedRAT #DeepSec2024 #MalwareAnalysis #ShadowPad #Talk

DeepSec 2024 Talk: Industrial plants: IP Protection in an increasingly (de)globalized economic System – Josef Rametsteiner

Customs duties and trade restrictions are increasingly presenting companies with logistical challenges. The trend is to move productio

https://blog.deepsec.net/deepsec-2024-talk-industrial-plants-ip-protection-in-an-increasingly-deglobalized-economic-system-josef-rametsteiner/

#Conference #DeepSec2024 #IntellectualProperty #IPProtection #OTSecurity #TechTrack

DeepSec 2024 Talk: “EU Cyber Resilience Act” – Maintain control and not just liability for your products – Michael Walser

The new EU Directive EU 2019/1020, also known as the "Cyber Resilience Act" or “CRA” for short, defines new rules for manufacturer

https://blog.deepsec.net/deepsec-2024-talk-eu-cyber-resilience-act-maintain-control-and-not-just-liability-for-your-products-michael-walser/

#Conference #CRA #CyberResilienceAct #DeepSec2024 #Hardware #SecureCoding #TechTrack

DeepSec 2024 press release: Sluggish NIS2 implementation as a security risk. DeepSec conference presents remedies against the shock paralysis in companies

Directive (EU) 2022/2555, abbreviated as the NIS-2 Dir

https://blog.deepsec.net/deepsec-2024-press-release-sluggish-nis2-implementation-as-a-security-risk-deepsec-conference-presents-remedies-against-the-shock-paralysis-in-companies/

#Conference #Press #DeepSec2024 #NIS2 #PressRelease #SecurityMeasures #SecurityRisks #SematiconAG

DeepSec 2024 Training: SAP Cyber Security 101 – Andreas Wiegenstein

In many companies, we find that CISOs and security officers do not have any (in-depth) knowledge of SAP. Therefore the topic of SAP security often gets underestimated. Anyone interested in gaining insight into the important basics of SAP technologies can

https://blog.deepsec.net/deepsec-2024-training-sap-cyber-security-101-andreas-wiegenstein/

#Conference #Training #CrashCourse #DeepSec2024 #SAPSecurity #Training

DeepSec 2024 Talk: Modern vs. 0ld Sk00l – Seth Law

The development landscape includes an ever-changing set of security practices. It has finally become standard practice to perform penetration testing, run threat modeling, teach developers about security, push left, and have zero trust. This shows

https://blog.deepsec.net/deepsec-2024-talk-modern-vs-0ld-sk00l-seth-law/

#Conference #DeepSec2024 #EarlySecurityResearch #PracticalSecurityControls #SecurityIssues #Talk #TheWareReport

DeepSec 2024 Talk: The Tyrant’s Toolbox – Julian & Pavle B.

Social media, and our communications systems, have devoured any semblance of privacy, putting the eyes and ears of authoritarian and wannabe fascist types into the pockets of each of us; radically erasing whatev

https://blog.deepsec.net/deepsec-2024-talk-the-tyrants-toolbox-julian-pavle-b/

#Conference #AI #DataAggregationTechnologies #DeepSec2024 #Privacy #spyware #SurveillanceCapitalism #SurveillanceTechnologies #Talk

DeepSec 2024 Talk: AI’s New Era: Impacts on Health Data Security and Beyond – Sina Yazdanmehr & Lucian Ciobotaru

It has become easier to create AI systems because of the availability of many options and datasets. These AIs can quickly gain expert kn

https://blog.deepsec.net/deepsec-2024-talk-ais-new-era-impacts-on-health-data-security-and-beyond-sina-yazdanmehr-lucian-ciobotaru/

#Conference #AI #AndroidApps #Cybersecurity #DeepSec2024 #HealthConnectApp #HealthDataSecurity #Talk