This roundtable will bring together two leading experts to present their views on markets for vulnerabilities and discuss it with delegates. I will present the case for establishing a nation-wide bug bounty program.

Event | Slides

Wir zeigen wie Angriffe ablaufen und welche Strategien Hacker nutzen – von Phishing-Mails bis hin zu Schwachstellen in euren Endgeräten zuhause. Wir decken Mythen auf, erklären Angriffsphasen und geben wertvolle Tipps mit auf den Weg!

Event

Today, we build and use complex systems that we no longer fully understand. Past assumptions are no longer valid, and complete prevention is unattainable. It is s time to challenge our assumptions about complexity and how to handle uncertainty.

Event | Slides

Overlapping risks like climate change, cyber-attacks and geopolitical instability are reshaping today’s strategic landscape. This executive seminar explores how leaders can navigate uncertainty and build resilience in the face of emerging and interconnected risks.

Event

Conventional pentesting doesn’t align well with today’s agile development processes. In this talk, we share how we redesigned our approach to scale and focus on rapid, early-stage insights (shift-left). We’ll walk through our new methodology, the challenges we encountered, and the unexpected lessons we learned along the way.

Event | Slides

Event

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event | Slides (private)

Event | Slides (private)

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event | Slides (private)

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event

Conventional pentesting doesn’t align well with today’s agile development processes. In this talk, we share how we redesigned our approach to scale and focus on rapid, early-stage insights (shift-left). We’ll walk through our new methodology, the challenges we encountered, and the unexpected lessons we learned along the way.

Event | Slides

An international advisory group of experts from government, business, the technical community, and civil society provided input on key concepts, approaches, and challenges related to the digital security of products, as part of the OECD’s Global Forum on Digital Security for Prosperity (GFDSP).

Event | Reports

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event

Digitale Produkte gelangen oft ohne ausreichende Sicherheitsprüfung in kritische Infrastrukturen. Dieser Vortrag zeigt zentrale Cyber-Risiken, Angriffs­szenarien und notwendige Massnahmen zur Absicherung der digitalen Lieferkette – mit dem Ziel, bekannte Fehler zu vermeiden und die Digitalisierung sicher zu gestalten.

Event | Slides

Cybersecurity has become a source of confusion and hype, with consumers and businesses struggling to keep up. We explore key cyber threats and their drivers—historical, economic, social, and technological—to help you make informed decisions and ensure the opportunities of digitization outweigh the risks.

Event

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event

The Internet is disrupting life and industry as profoundly as electricity or aviation once did. This talk explores the evolving cyber threats facing the aviation industry and draws lessons from other sectors to inform effective defenses in the digital age.

Event | Slides

Event

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event

Cybersecurity has become a source of confusion and hype, with consumers and businesses struggling to keep up. We explore key cyber threats and their drivers—historical, economic, social, and technological—to help you make informed decisions and ensure the opportunities of digitization outweigh the risks.

Event

Unlike physical threats, cyber risks are hard to detect—unsafe systems can appear secure without thorough testing. While industries like automotive and aviation focus on safety, cyber security requires a different approach. We look at the evolving threat landscape, persistent adversaries, and hidden risks in IoT and industrial control systems. It highlights the need for resilience as IT and OT systems converge in an increasingly connected world.

Event

Cybersecurity has become a source of confusion and hype, with consumers and businesses struggling to keep up. We explore key cyber threats and their drivers—historical, economic, social, and technological—to help you make informed decisions and ensure the opportunities of digitization outweigh the risks.

Event

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event

Cybersecurity is often clouded by confusion and hype. This seminar explores key threats and their drivers (historical, economic, social, and technological) to support informed decisions and help ensure the benefits of digitization outweigh the risks.

Event

Event | Slides

Unlike physical threats, cyber risks are hard to detect—unsafe systems can appear secure without thorough testing. While industries like automotive and aviation focus on safety, cyber security requires a different approach. We look at the evolving threat landscape, persistent adversaries, and hidden risks in IoT and industrial control systems.

Event

Event

This talk explores how aviation’s safety and security processes, developed over the past 100 years, are inadequate for addressing current and future cyber threats. It highlights how once-secure aviation systems are now vulnerable and identifies failing security assumptions. We conclude with lessons from other industries and how they can be applied to aviation.

Event | Slides

Event | Slides

Event

Event | Slides

This talk explores the risk of privately known security vulnerabilities, or "known unknowns," traded by cyber criminals, brokers, and governments. We reveal that, over the past three years, these groups accessed at least 58 vulnerabilities targeting major vendors and discuss the potential of an international bug bounty program to limit their access to new vulnerabilities.

Event | Slides | Paper

This talk explores the risk of privately known security vulnerabilities, or "known unknowns," traded by cyber criminals, brokers, and governments. We reveal that, over the past three years, these groups accessed at least 58 vulnerabilities targeting major vendors and discuss the potential of an international bug bounty program to limit their access to new vulnerabilities.

Event

This talk explores the risk of privately known security vulnerabilities, or "known unknowns," traded by cyber criminals, brokers, and governments. We reveal that, over the past three years, these groups accessed at least 58 vulnerabilities targeting major vendors and discuss the potential of an international bug bounty program to limit their access to new vulnerabilities.

Event

Cyber security depends largely on reporting vulnerabilities under the practices of coordinated disclosure. Meanwhile, the black market is expanding rapidly and offering large rewards for the same information. We examine the economics of depriving cyber criminals' access to new vulnerabilities.

Event | Slides | Paper

In diesem Vortrag erhalten Sie einen Einblick in die innovativen Methoden von Cyber-Kriminellen und erfahren, wie die Wirksamkeit gängiger Abwehrtechnologien (NGFW, IPS) gemessen werden kann. Anhand einer Live-Demo wird gezeigt, wie Malware-Erkennung selbst über mehrere Schutzstufen hinweg umgangen werden kann.

Event | Paper

We examine the attacker’s kill chain and defense in depth, reviewing four key protection technologies—firewalls, intrusion prevention, endpoint protection, and browser security—based on NSS Labs’ data. Rigorous testing shows that 100% attack prevention is impossible, urging organizations to focus on breach detection alongside prevention.

Event | Papers Cyber Kill Chain

We examine the attacker’s kill chain and defense in depth, reviewing four key protection technologies—firewalls, intrusion prevention, endpoint protection, and browser security—based on NSS Labs’ data. Rigorous testing shows that 100% attack prevention is impossible, urging organizations to focus on breach detection alongside prevention.

Event | Papers Cyber Kill Chain

We explore how cybercriminals use advanced techniques to evade security measures and assess the effectiveness of defenses like NGFW, IPS, antivirus, and browser protections using real-world test data. A live demo reveals how attacks bypass detection and highlights major gaps across security products. We also show correlations between undetected exploits, crimeware kits, and vulnerable software.

Event | Papers Cyber Kill Chain

Event

Event | Papers Cyber Kill Chain

We explore how cybercriminals use advanced techniques to evade security measures and assess the effectiveness of defenses like NGFW, IPS, antivirus, and browser protections using real-world test data. A live demo reveals how attacks bypass detection and highlights major gaps across security products. We also show correlations between undetected exploits, crimeware kits, and vulnerable software.

Event | Slides | Papers Cyber Kill Chain

We explore how cybercriminals use advanced techniques to evade security measures and assess the effectiveness of defenses like NGFW, IPS, antivirus, and browser protections using real-world test data. A live demo reveals how attacks bypass detection and highlights major gaps across security products. We also show correlations between undetected exploits, crimeware kits, and vulnerable software.

Event | Slides

Event

Event

Event | Slides

Event

Event

Event | Slides

Event | Slides

Event | Slides

Event | Slides

Event

Event | Slides

Event | Slides

Event | Slides