Also coffee served here.

Short welcome and code of conduct.

Europol Cybercrime Centre was established 11 years ago. During these years many operations were organised, supported and coordinated, many criminal networks were taken down. But how?

Donatas Mažeika joined the National Criminal Police of Lithuania in 1997. Since 2004, he has been involved in cybercrime investigations as an investigator, digital forensic examiner (holding an MSc in Digital Forensics), and Head of Cybercrime Investigations at the National Criminal Police of Lithuania as of early 2013. In January 2019, he joined Europol's Cybercrime Centre as the Team Leader of Forensics, where they are pushing the limits of law enforcement capabilities in accessing data relevant for cybercrime investigations.

In 2022, an insider from one of the scammers' groups switched sides and shared details about the ongoing attacks. This kicked off a multi-year analysis of the underground economy that provides a range of illicit Telegram-based services to facilitate shady activities, offering everything from data breaches and identity theft to financial fraud. The talk will explore how fraudsters leverage platforms' features to launch "Scam as a Service" operations.

Aurimas Rudinskis serves as the Engineering Manager of the Cyber Defence team at Vinted. With a passion for tackling intricate challenges and leading a team of skilled technical professionals, he's dedicated to making a positive impact in the cybersecurity sphere. Aurimas firmly believes in the strength of community in cybersecurity, emphasizing the importance of collaboration and continuous learning.

Help yourself with coffee, tea, soft drinks or water that will be available outside the Pangea room.

CI/CD pipelines are complex environments. This complexity requires methodical comprehensive reviews to secure the entire stack. Often a company may lack the time, specialist security knowledge, and people needed to secure their CI/CD pipelines. Realising these facts, cyberattacks targeting CI/CD pipelines have been gaining momentum, and attackers increasingly understand that build pipelines are highly-privileged targets with a substantial attack surface. In this presentation, I will share some of our observations through showing different flavours of attack on possible development pipelines, and introduce a tool to detect them.

Cenk is the Co-founder & CEO of Kondukto Inc. An experienced system developer and a notorious breaker of presumably secure things, Cenk is a longtime Linux aficionado. He enjoys speaking about appsec automation, fuzzing, Linux Kernel, and eBPF.

In this talk, we present a recent research project from the Snyk Security Labs team on the topic of RepoJacking. RepoJacking is a technique that is not widely understood, which affects multiple Source Code Management providers and has serious consequences for modern application supply chains. Attendees will first learn the core concepts of the technique and its implications for Git repositories, before we dive into the wider implications for supply chain security, where we identified how abusing this technique can compromise the Terraform and Composer ecosystems and hijack software components used by millions.

Elliot Ward is currently a senior security researcher in Snyk’s security labs team. He has a background in application security and, prior to working at Snyk, has held security engineer and penetration testing roles. He currently resides in Zurich, Switzerland, and enjoys snowboarding and skateboarding in his spare time.

Help yourself with sandwiches, snacks and drinks that will be available outside the Pangea room.

Talk about how physical security is often overlooked in the security landscape and how this vitally ignored topic leaves most companies and organizations completely vulnerable to catastrophic attack.

Brian is a seasoned security professional with more than 15 years of extensive experience in both cyber and physical penetration testing across the globe. His career spans across black team engagements, where he has excelled both as a key team member and as a leader in hundreds of operations. His portfolio of covert entry and black team engagements includes Fortune 500 companies, government entities, and critical infrastructure.

Digital signatures are easy. Digital documents are hard. We believe that digitally signed documents are immutable - and they are, well in most of the cases. However, what if the document contains content that can be displayed or hidden based on conditions? This presentation exploits vulnerabilities in document digital signing portals that allow signing of ambiguous documents, which content varies based on conditions. In addition, the presentation shows ways to protect against similar attacks.

Security Consultant at Advisense, Giedrius is relatively new to the security scene but has been a tech enthusiast his whole life. His journey in IT paved the way to everything security—from website penetration testing to social engineering. Šarūnas is a security enthusiast with a passion for penetration testing, currently leveraging his skills as a security consultant at Advisense. Alongside his professional endeavors, he’s actively engaged in bug bounty platforms, constantly honing his abilities in identifying and addressing vulnerabilities.

Generally, most hacktivists are unable to differentiate between the target goal of a hacktivism operation and the innocent companies and individuals caught in the middle. They, in every sense, victimize the public unknowingly, being blinded by their cult-of-personality, and mob mentality. Today's hackers operate without a thought for the consequences of their actions. This is why my team guides groups with principles and discipline, with the aim of imparting this culture to others. Hackers will never cease to exist. But a culture of accountability impresses others to follow this path. This is how we fight cybercrime. By turning hacktivists into humanitarians, however controversial that may be.

Greetings, my name is GhostExodus. I'm a former black hat computer hacker and insider threat. I founded the hacktivist group known as the Electronik Tribulation Army, and I direct an OpChildSafety initiative called W1nterSt0rm. In 2009, I was arrested for installing malicious code on healthcare systems. Upon conviction, I became the first person in recent US history ever to be convicted for corrupting industrial control systems, and ultimately served nearly 11 years in federal prison. I became a two-time fugitive by attempted to flee the country. I broke into a US Customs-controlled shipyard and blackmailed the captain of a cargo ship into taking me to Nigeria after discovering that they were disabling their AIS tracking beacon while in international waters. Present day, I work as a freelance contributor at Cybernews, and as a humanitarian activist for the Coalition for Civil Freedoms. Regardless of my dark history, I am a cybersecurity researcher at heart, and I use my experiences as a former threat actor to bring awareness to security risks.

A bittersweet goodbye...