Mythos Threat Looms Over Cyber Defenses

A new force in cyberspace, known as Claude Mythos, threatens to revolutionize the speed at which cyber defenses are compromised, dramatically shortening the window between vulnerability discovery and exploitation. Experts warn that this emerging threat could upend traditional cybersecurity strategies, making it essential for organizations…

https://osintsights.com/mythos-threat-looms-over-cyber-defenses?utm_source=mastodon&utm_medium=social

#VulnerabilityManagement #EmergingThreats #CyberDefenses #ThreatModeling #RiskManagement

He terminado este curso sobre los fundamentos del modelado de amenazas en IriusRisk Academy.

#ThreatModeling

Another talk announcement for BSides Luxembourg!

🧠🔍 𝗪𝗛𝗔𝗧 𝗗𝗢𝗘𝗦 𝗧𝗛𝗥𝗘𝗔𝗧 𝗠𝗢𝗗𝗘𝗟𝗜𝗡𝗚 𝗦𝗢𝗟𝗩𝗘 𝗙𝗢𝗥 𝗔𝗜 𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬? – Nathan Pembe 🛡️

AI doesn’t create entirely new risks—it amplifies the ones you already have. So how do you decide what actually matters?

This talk shows how threat modeling becomes a powerful decision-making tool—helping teams identify real attack paths, prioritize security efforts, and align technical controls with compliance requirements like ISO 27001, AI Act, and NIS2. It’s not about theory—it’s about making smarter security decisions from the start.

Nathan Pembe https://www.linkedin.com/in/nathanpembe/ is a Senior AppSec Consultant at NVISO, helping teams embed security into design and delivery through practical threat modeling and secure architecture practices.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/
👉 Browse sessions, track talks in real time, and plan your schedule on Hacker Tracker: https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #AISecurity #ThreatModeling #AppSec #AIAct #NIS2 #CyberSecurity

🚨 OWASP Ottawa April 2026 Meetup - Featuring Rodrigo Rocha! 🚨

OWASP Ottawa is excited to announce our April 2026 meetup featuring Rodrigo Rocha present their talk “Threat Modeling in Practice: From Diagram to Defense". The details are as follows:

📍 Location: 150 Louis-Pasteur Private, University of Ottawa, Room 580
📅 Date: April 15, 2026
⏰ Time: 6:00 PM EST - Arrival, networking, & pizza! 🍕
6:30 PM EST - Technical Talk

Threat Modeling is often seen as heavy, theoretical, or compliance-driven, which leads to it being skipped. This session will focus on Rodrigo introducing a practical, lightweight approach to Threat Modeling that fits directly into agile workflows.

Using a real-world healthcare portal example, Rodrigo will walk us through the process from drawing a simple data flow diagram to identifying critical assets, mapping real attack scenarios (via MITRE CAPEC), linking root causes (CWE), and translating them into testable security requirements using OWASP ASVS.

Whether you’re a student, early-career professional, or seasoned practitioner looking to learn more about Threat Modeling, come aboard and learn from experts!

We look forward to seeing you there in-person! If you cannot attend the event, you can watch the livestream on our YouTube channel.

🎥 : https://www.youtube.com/@OWASP_Ottawa

Our Github Chapter page: https://github.com/OWASP-Ottawa/chapter-guide/blob/main/Nextevent/tab_nextevent.md

#OWASP #Ottawa #Cybersecurity #ThreatModeling #InfoSec #AppSec #TechCommunity

Great news OWASP! The Global #AppSec USA Call for Presentations has officially opened! Submit your talk and join us in San Francisco!

https://sessionize.com/owasp-global-appsec-us-2026-cfp-SF/

#cybersecurity #devsecops #threatmodeling #infosec

🛡️ Threat Modeling Starter Training – Back by Popular Demand!
𝗧𝗛𝗥𝗘𝗔𝗧 𝗠𝗢𝗗𝗘𝗟𝗟𝗜𝗡𝗚 𝗦𝗧𝗔𝗥𝗧𝗘𝗥 𝗧𝗥𝗔𝗜𝗡𝗜𝗡𝗚 (8h) with 𝗥𝗔𝗟𝗣𝗛 𝗔𝗡𝗗𝗔𝗟𝗜𝗦

Perfect for beginner/intermediate software/security engineers/pentesters: master STRIDE, DREAD, PASTA methodologies to build threat models from scratch. Cover basics, terminologies, real-life examples (network/app), processes, mitigations, and full models with risk ratings. Hands-on exercises + tools like OWASP Threat Dragon. Leave ready to threat model any function/method and minimize software risks from day one. Basic code/cybersecurity knowledge helpful.

Led by Ralph Andalis https://pretalx.com/bsidesluxembourg-2026/speaker/8BUAGA/ : Senior Pentester (Middle East), ex-Microsoft Senior Security Engineer (threat modeling, code review, pentesting), OWASP ASVS contributor, 10+ years experience (NCC Group, EY, HP Fortify). Trained BSides Vancouver/Orlando 2025, OWASP AppSec PNW speaker.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #ThreatModeling #Workshop #OWASP #ThreatDragon #STRIDE #DREAD #PASTE

Security is shifting from technical to behavioral.
James Robinson, CISO at Netskope:
“Employees are both cybersecurity’s most important and weakest component.”
• Shadow AI expanding
• Employees using genAI without visibility
• Risk driven by usage, not intent

Read more:
https://www.technadu.com/how-a-teen-found-cars-in-a-farming-community-discovered-a-passion-for-networking-and-now-leads-security-where-employees-love-to-experiment-with-ai-tools/623624/

#CISODecoded #GenAI #ShadowAI #Cybersecurity #ThreatModeling

Last chance to RSVP for our March Meetup!

Big thank you to our hosts Microsoft for and Pentera for sponsoring food and beverages.

In this edition we have 1 long form talk.

Josh Corman will be presenting on the various cyber threats to water infrastructure. He will walk through potential scenarios and do a table top exercise.

RSVP at https://buff.ly/G72uBEA

#cybersecurity #infrastructuresecurity #security #threatmodeling