Behind the Code Cybersecurity Meetup

BEHIND THE CODE meetup is coming soon!

This event is a networking opportunity for information security professionals from Cyprus and around the globe.

SCHEDULE

6:30 pm — 7:00 pm Gathering and welcome snacks/drinks
7:00 pm — 7:30 pm Ivan Agarkow | Wargaming
7:30 pm — 8:00 pm Andrew Gaiko | Exness
8:00 pm — 8:15 pm Break
8:15 pm — 8:45 pm Toni Lopez | Exness
8:45 pm — 9:15 pm Alex Polyakov | Adversa AI
9:15 pm — 11:00 pm Networking & Hookah Lounge

SPEAKERS AND TALKS

AI Red Teaming LLM
Alex Polyakov | Founder | Adversa AI

Explore the world of AI Red Teaming Large Language Models (LLMs) - their origins, current best practices, and future possibilities. With advancements in ChatGPT and other LLMs and further LLM use in Autonomous Agents, risks such as prompt injection, jailbreaks, poisoning, data extraction, and other logic manipulation attacks remain. As LLMs become more common in business applications, it is crucial to have an understanding of what is AI Red Teaming, how it can be done, and which skills will be required to perform it, from computer hacking and psychology to neuroscience, mathematics, linguistics, and logic.

How I discovered CVE-2024-20338
Ivan Agarkov | Infrastructure Lead | Wargaming

In my talk, I will share how I found the CVE-2024-20338 vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux. I will describe this bug in detail and briefly overview similar bugs. We will also discuss dynamic linkers, the application-building process, and how to search for and avoid such vulnerabilities in your applications. My talk will particularly interest security researchers, DevSecOps, and software developers willing to write bug-free and secure code.

Information security risk assessment as it should be
Andrew Gaiko | Governance Risk and Compliance Team Lead | Exness

For many years, IS risk assessment has been one of the most misunderstood aspects of information security. Traditionally, it was reduced to simplistic color coding—green, yellow, and red. However, this is changing with the widespread adoption of Cyber Risk Quantification (CRQ). It's time to embrace advanced IS risk assessment and management techniques to unlock their true potential and deliver real value. In my talk, I’ll cover:

• The limitations of heat maps in risk assessment.
• Effective risk assessment practices for addressing IS risks.
• Quantitative methods for assessing IS risks.
• Popular CRQ frameworks.
• Practical steps to start using CRQ today.

Red Team Ops: T1055.008 - Process Injection using Ptrace System Calls
Toni Lopez | Offensive Security Engineer | Exness

In my talk, I will elaborate on acquiring valid credentials during Red Team exercises. The "Credential Access" tactic enables threat actors to impersonate real users and access systems without exploiting vulnerabilities. You will learn how to apply the Ptrace injection technique and gain information on mitigating and detecting it. I will also share code snippets and demos. While the primary audience for this talk is advanced/professional Offensive/Defensive Security Engineers, the introduction and key takeaways will also be accessible to everyone.

Join us, and let's enjoy a fantastic evening together!

Check out the meetup page to get more details about the event.

Note: by registering and attending our events, you confirm that you've read and agreed to our Privacy Notice.