Boston Security February 2026 Meetup

Important Notice

All meetup venues we currently use require us to provide a list of names (First & Last) to their door security so they can check people in at the time of the event. We are also required to bring "a picture ID" that matches the name we provide at the time of registration. Please be mindful of this requirement and provide the necessary information to ensure a smooth check in process at the door. Thank you for your cooperation - the management! RSVP closes February 17th 5 PM, RSVP soon to reserve a spot! There will be no entry without a confirmed RSVP.

ONLY HUMANS ALLOWED AT THIS EVENT

What: Two talks like always and maybe a surprise!

>>> Bring your favorite stickers and tell us where you got it. Bring extras and swap it with fellow security enthusiasts at the sticker swap table! <<<

Talk 1 - Unmasking a Novel Google Drive Phishing Chain by Bobby Rauch

Description
Prepare for a deep dive into an entirely new, "in-the-wild" Google Drive phishing scheme that bypasses traditional defenses. This attack cleverly weaponizes the native Google Drive file-sharing mechanism to launch push-notification phishing—all without the victim ever needing to download a file or explicitly opt-in.

I will be the first to publicly detail the complete, sophisticated attack chain: from the deceptive Google Drive shared-file lure to a legitimate subscription checkout page, culminating in the generation of affiliate program revenue.

Speaker Bio
Bobby is a Boston, Massachusetts, USA - based Senior Offensive Security Engineer and red teamer at a Fortune 500, security researcher, and co-host of The Cyber Idiots podcast. He has found high severity vulnerabilities in Fortune 500 companies including Microsoft, Apple, and Oracle. His research has been published by the Boston Globe, Brian Krebs, Bleeping Computer, Ars Technica, and other major tech publications. His technical blog posts have been read by more than 200,000 readers, and he has spoken at offensive security conferences around the world including Defcon's Red Team Village, Hardwear.io, m0lecon Turin, and Bsides London. Bobby holds a Bachelor's Degree in Computer Science from MIT, as well as OSCP and OSWE certifications.

Talk 2 - 1 Eyed Blindness w/EDR by O'Shea Bowens

Description
When security leaders think of "layered security" EDR is typically the rock holding hopes together. I ask, "are we seriously taking into account the changed threat landscape"? EDR evasion has been around the game for years and these malware variants are going for top dollar on dark web forums. Let's dive into obtaining "full visibility" at scale and what that means to you. Leveraging NDR can shift how the SOC manages resources, early detection capabilities, and obtain 360-degree line of sight to battle attackers. Let's walk through uses cases together and leave the audience ready to tinker towards "full visibility".

Speaker Bio
15 year infosec. Security Operations Strategist and AI tinker. Currently acting "Head of US Operations" for Snode.

When: February 19th, Talks start 7 PM

Where: 7AI
10 St James Ave,
Boston MA 02116