🎯 Time for Another Confirmed BSides Luxembourg 2026 Session

𝗦𝗧𝗔𝗥𝗧𝗨𝗣 𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝟮𝟬𝟮𝟬: 𝗔𝗚𝗘𝗗 𝗟𝗜𝗞𝗘 𝗪𝗜𝗡𝗘 𝗢𝗥 𝗠𝗜𝗟𝗞? – Guillaume Ross ( @g )
Talk (40 minutes)

Look back in this 40-minute talk at what it really means to build security from day one—and what happens years later when those decisions are put to the test. Drawing from real-world experience in a fintech startup, this session breaks down which security choices stood the test of time and which ones didn’t survive evolving threats, technologies, and business realities.

By comparing 2020 decisions with a 2026 perspective, the talk highlights critical areas like architecture, identity, supply chain security, and “everything as code.” Attendees will gain practical insights into making smarter long-term security decisions—whether building from scratch or modernizing existing systems.

Guillaume Ross( @g )is a seasoned blue team security expert with experience across both startups and large organizations, including leadership roles at JupiterOne, FleetDM, and Finaptic. He focuses on practical, data-driven security approaches that move beyond outdated best practices.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

📲 Want to navigate the event easily? Check out the full schedule on Hacker Tracker:
https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #CyberSecurity #AppSec #StartupSecurity #BlueTeam #CloudSecurity

🧠 Another Deep Dive into AI Security at BSides Luxembourg 2026

“Exploiting the Past: How Linguistic Redundancy Weaponizes the Quantum Search Landscape” – Alessio Di Santo & Gabriella Lanziani
Talk (40 minutes)

Step into a 40-minute talk where cryptanalysis meets quantum computing, uncovering how linguistic patterns from Renaissance texts can disrupt modern quantum search algorithms. This session explores how redundancy in language directly impacts Grover’s algorithm, revealing unexpected failure modes where quantum search becomes less efficient than classical approaches.

Blending theory with experimental results, the talk walks through corpus-driven oracle construction, discrete resonance failures, and real quantum simulations that challenge textbook assumptions. Attendees will gain fresh insights into how data structure, language patterns, and optimization methods reshape the security landscape in both classical and quantum contexts.

Alessio Di Santo is a cybersecurity specialist and PhD researcher with experience in threat intelligence, incident response, and malware analysis, currently working at Deutsche Börse. Gabriella Lanziani is a linguistics-focused researcher with a background in literature and history, exploring the intersection of language structure, information theory, and cryptography.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

📲 Want to navigate the event easily? Check out the full schedule on Hacker Tracker:
https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #CyberSecurity #QuantumSecurity #Cryptography #ThreatIntelligence #Research #Linguistics

⚡ Fresh Talk Alert for BSides Luxembourg 2026!

“Confound and Delay: Honeypot Chronicles from the Digital Battlefield” – Kat Fitzgerald ( @rnbwkat )
Talk (40 minutes)

Step into a 40-minute talk that takes you across the globe through real-world honeypot deployments, uncovering how attackers behave when they think no one is watching. From unexpected attack patterns to cultural quirks and operational chaos, this session blends storytelling with practical insights drawn from running deception systems in diverse and high-risk environments.

Through vivid field experiences, you’ll learn how honeypots can be tailored, maintained, and leveraged to strengthen detection and response strategies. Beyond the humor and war stories, the talk delivers actionable lessons on cyber deception, resilience, and turning attacker behavior into defensive advantage.

Kat Fitzgerald ( @rnbwkat ) a Chicago-based security engineer known for blending technical depth with humor and storytelling. With extensive experience running honeypots across global environments, she brings unique insights into attacker behavior, cyber deception strategies, and real-world operational challenges.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

📲 Want to navigate the event easily? Check out the full schedule on Hacker Tracker:
https://hackertracker.app/schedule?conf=BSIDESLUX2026

# BSidesLuxembourg2026 #CyberSecurity #Honeypots #ThreatIntelligence #BlueTeam #SecurityResearch

🚀 New Talk Dropped for BSides Luxembourg 2026!

🔐🧰 𝗧𝗨𝗥𝗡𝗞𝗘𝗬 𝗖𝗢𝗗𝗘 – 𝗘𝗡𝗛𝗔𝗡𝗖𝗜𝗡𝗚 𝗦𝗘𝗖𝗥𝗘𝗧𝗦 𝗠𝗔𝗡𝗔𝗚𝗘𝗠𝗘𝗡𝗧 𝗜𝗡 𝗟𝗔𝗥𝗚𝗘 𝗦𝗖𝗔𝗟𝗘 𝗢𝗥𝗚𝗔𝗡𝗜𝗭𝗔𝗧𝗜𝗢𝗡𝗦 — Diogo Lemos

⚡ Dive into a Talk (40 min) on building scalable secrets detection systems that actually reduce noise, improve triage, and integrate into real-world CI/CD pipelines.

Secrets leakage remains one of the most persistent problems in modern software development, not because tools don’t exist, but because they fail at scale—producing too many false positives and too little actionable context. This session explores how a real-world turnkey platform was designed to solve this gap using open-source tooling, smarter validation, and CI/CD-native workflows.

Through architecture insights and live demonstrations, learn how scanning strategies, confidence scoring, and automation can transform secrets detection from a noisy checkbox into a reliable security process. The talk also highlights practical lessons from deploying and scaling such a system in production environments.

Diogo Lemos is an Application Security Engineer with experience at Checkmarx, Flutter Entertainment, and OLX, specializing in scalable AppSec programs, automation, and cloud security. He actively contributes to open-source security tooling and speaks internationally on practical SAST, SCA, and secrets management solutions.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/

📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

📲 View full schedule & build your agenda: https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #SecretsManagement #AppSec #DevSecOps #SAST #CyberSecurity

📌 Added to the BSides Luxembourg 2026 Lineup

🛠️🔐 𝗢𝗨𝗧 𝗢𝗙 𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗘𝗫𝗖𝗘𝗣𝗧𝗜𝗢𝗡: 𝗪𝗛𝗔𝗧 𝗧𝗢 𝗗𝗢 𝗪𝗜𝗧𝗛𝗢𝗨𝗧 𝗔𝗡 𝗘𝗫𝗣𝗘𝗥𝗧 𝗧𝗢 𝗦𝗘𝗖𝗨𝗥𝗘 𝗬𝗢𝗨𝗥 𝗦𝗢𝗙𝗧𝗪𝗔𝗥𝗘 — Lisi Hocke ( @lisihocke )

💡 Take control in this Talk (40 min) and learn how development teams can build secure software even without dedicated security experts.

Security shouldn’t be a blocker waiting on experts. This session shows how everyday engineering activities—like planning features, collaborating across teams, and maintaining code—can be leveraged to significantly improve your product’s security posture without slowing down delivery.

Discover how to integrate threat modeling into regular workflows, catch vulnerabilities earlier through collaboration, and use production insights to detect malicious behavior. This talk empowers teams to shift from dependency on security teams to building “secure enough” systems through practical, developer-driven approaches.

Lisi Hocke (@lisihocke ) is a security engineer focused on product security, with a passion for quality, collaboration, and continuous learning. A strong advocate for whole-team approaches, she shares her experiences to help teams build resilient and secure software while delivering real value.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/

📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

📲 View full schedule & build your agenda: https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #SecureDevelopment #AppSec #DevSecOps #SoftwareSecurity #CyberSecurity

🔍 Inside the Tech: New Talk Added to BSides Luxembourg

🌐📡 𝗧𝗛𝗘 𝗙𝗢𝗥𝗚𝗢𝗧𝗧𝗘𝗡 𝗙𝗜𝗡𝗚𝗘𝗥𝗣𝗥𝗜𝗡𝗧: 𝗗𝗡𝗦 𝗕𝗔𝗦𝗘𝗗 𝗢𝗦𝗜𝗡𝗧 𝗧𝗘𝗖𝗛𝗡𝗜𝗤𝗨𝗘𝗦 𝗙𝗢𝗥 𝗣𝗥𝗢𝗗𝗨𝗖𝗧 & 𝗦𝗘𝗥𝗩𝗜𝗖𝗘 𝗗𝗜𝗦𝗖𝗢𝗩𝗘𝗥𝗬 – Rishi ( @rxerium )

⚡ Reveal hidden infrastructure in a Talk (40 min) using DNS TXT records to map technologies, dependencies, and external services at scale.

DNS is often treated as infrastructure plumbing, but TXT records quietly expose far more than most defenders realize. This session introduces a DNS-based OSINT methodology that leverages large-scale TXT record analysis to uncover embedded service dependencies such as cloud platforms, SaaS integrations, and identity providers.

By programmatically scanning DNS zones and integrating the technique into tools like Nuclei and OWASP Amass, this approach enables security teams to build detailed maps of organizational technology stacks and attack surfaces. A real-world case study from the Salesloft breach demonstrates how these signals translate into actionable intelligence for both offensive and defensive use cases.

Rishi ( @rxerium ) is a London-based security researcher focused on vulnerability research, threat intelligence, and OSINT-driven attack surface discovery. He contributes to open-source security tooling, supports the UK OSINT community, and focuses on building scalable reconnaissance and detection methodologies.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/

📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

📲 View full schedule & build your agenda: https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #OSINT #DNS #AttackSurface #ThreatIntelligence #CyberSecurity

BSides Luxembourg 2026 – announcement of 𝗢𝗨𝗥 𝗩𝗘𝗥𝗬 𝗙𝗜𝗥𝗦𝗧 𝗖𝗧𝗙 𝗖𝗢𝗠𝗣𝗘𝗧𝗜𝗧𝗜𝗢𝗡!!

Over the last months, we've had an awesome team of volunteers building CTF challenges for you on the theme: 𝗦𝗣𝗔𝗖𝗘!

We're excited to announce that BSides Luxembourg 2026 will feature a Capture The Flag competition open to all 𝗢𝗡-𝗦𝗜𝗧𝗘 𝗔𝗧𝗧𝗘𝗡𝗗𝗘𝗘𝗦 — running across all three days of the event (May 6–8, Luxembourg). 𝗧𝗛𝗘 𝗖𝗧𝗙 𝗪𝗜𝗟𝗟 𝗢𝗣𝗘𝗡 𝗔𝗧 𝟭𝟬:𝟬𝟬 𝗪𝗘𝗗𝗡𝗘𝗦𝗗𝗔𝗬 𝗠𝗔𝗬 𝟲𝗧𝗛 𝗔𝗡𝗗 𝗖𝗟𝗢𝗦𝗘𝗦 𝗔𝗧 𝗠𝗔𝗬 𝟴𝗧𝗛 𝟭𝟯:𝟰𝟬 𝗙𝗢𝗟𝗟𝗢𝗪𝗘𝗗 𝗕𝗬 𝗔 𝗪𝗔𝗟𝗞𝗧𝗛𝗥𝗢𝗨𝗚𝗛 𝗦𝗘𝗦𝗦𝗜𝗢𝗡 𝗔𝗧 𝟭𝟰:𝟬𝟬 .

This year's CTF takes you on a space exploration mission. Navigate a galaxy of challenges spanning web, reverse engineering, forensics, OSINT, privilege escalation, and more — with difficulty levels for all skill sets.

And our awesome sponsors have provided some incentives! 𝗧𝗛𝗘𝗥𝗘 𝗔𝗥𝗘 𝗣𝗥𝗜𝗭𝗘𝗦!

In these days and times, it would make no sense to forbid you to use AIs to do the CTF, but we urge everyone to realise that if you depend on LLMs exclusively to solve challenges, this actively does not only not teach you anything, it reduces your own ability to solve challenges (scientifically proven that LLM dependence reduces ability in other fields).

A huge shoutout to 𝗟𝗘𝗧𝗭𝗣𝗪𝗡 𝗔𝗦𝗕𝗟 ( @letzpwn ) for providing the platform and infrastructure to run this CTF competition.

Prizes up for grabs:

1st: 𝗧𝗛𝗘 𝗙𝗜𝗥𝗦𝗧 𝗣𝗟𝗔𝗖𝗘 person/team gets 1 voucher for: SOC-200 OSDA (Offensive Security & Defense Analyst) provided by the Redbluealliance.com
– sponsored by SecuInfra.com ! (@SI_FalconTeam )
(𝐈𝐍-𝐏𝐄𝐑𝐒𝐎𝐍 𝐓𝐑𝐀𝐈𝐍𝐈𝐍𝐆 𝐈𝐍 𝐆𝐄𝐑𝐌𝐀𝐍𝐘)

𝟮𝗡𝗗: Linux Attack, Detection and Forensics v2.0 - Hands-on Purple Teaming Playbook provided and sponsored by Defensive-security.com!(@cr0nym )
(𝐁𝐎𝐎𝐊 + 𝐎𝐍𝐋𝐈𝐍𝐄 𝐓𝐑𝐀𝐈𝐍𝐈𝐍𝐆 𝐂𝐎𝐔𝐑𝐒𝐄)

𝟯𝗥𝗗: Linux Attack, Detection and Forensics v2.0 - Hands-on Purple Teaming Playbook provided and sponsored by Defensive-security.com! (Defensive Security)
(𝐁𝐎𝐎𝐊 + 𝐎𝐍𝐋𝐈𝐍𝐄 𝐓𝐑𝐀𝐈𝐍𝐈𝐍𝐆 𝐂𝐎𝐔𝐑𝐒𝐄)
(@cr0nym )
𝟰𝗧𝗛: Linux Attack, Detection and Forensics v2.0 - Hands-on Purple Teaming Playbook provided and sponsored by Defensive-security.com! (@cr0nym )
(𝐁𝐎𝐎𝐊 + 𝐎𝐍𝐋𝐈𝐍𝐄 𝐓𝐑𝐀𝐈𝐍𝐈𝐍𝐆 𝐂𝐎𝐔𝐑𝐒𝐄)

Positions in CTF are determined by points, if points are equal, who reached the amount of points first.

This CTF is also supported by the 𝗖𝗬𝗕𝗘𝗥𝗘𝗗𝗨𝟰𝗧𝗘𝗘𝗡𝗦 initiative from SnT, Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg — a Google.org-funded project working to bring cybersecurity education to the next generation.

A huge thank you to Nastassia Salash from SnT for making this support