ATM Hacking: Past and Present HOPE_16

This talk explores the evolution of ATM hacking, from classic physical attacks to modern software exploits, using two real-world case studies. Roman will demonstrate how cybercriminals bypass security measures and why banks often stay silent. Attendees will see a live demo of a custom “flusher device” built for a tabletop coin dispenser (reverse-engineered from eBay), highlighting vulnerabilities in cash-handling systems.

How a Handful of Location Data Brokers Actively Track Millions, and How to Stop Them HOPE_16

In the past year, a number of investigations have revealed the outsized role of a few select companies in gathering, storing, and selling the location data of millions of devices - and by extension people - worldwide. These companies largely use technologies which power the online advertising industry in order to collect and disseminate this data. To make matters worse, this data has been both provided to private investigators on the mere assurance that they plan to work with law enforcement, and has been subject to data breaches which put the privacy of millions at risk. This talk will elaborate on the technologies, data flows, and industry players which comprise this complicated ecosystem. Most importantly, it will cover some basic steps you can perform to protect yourself against the wide array of location privacy harms your device subjects you to. The presenters will show tools and techniques they’ve developed to allow users to take back ownership of our devices, rather than our devices owning us.

Activism, Hactivism, and the Law HOPE_16

Protest has become more important and more dangerous in the U.S. It’s harder to know where the line is between safe, lawful protest and actions that can get you sanctioned, arrested, or deported. Alex will discuss how to assess the risks you face in online and in-person protests, ranging from pickets to dropping docs.

RDP Spray and Pray: HOPE 2025

As presented at Hackers on Planet Earth 2025, this presentation contains research on modern RDP attacks against MFA and how those attacks can be used in training AI or machine learning tools to find further attacks.For more presentations, take a look at my Presentations page.

Home - Calyx Institute