Cloud Security

Next AWS meetup is up to date. This chapter is dedicated to **cloud migration** and **a developer-first tour of the AWS services**. 🗓 **Save the Date**: Mark your calendar 🍕 + 🍺 = Let's gather around pizza and beer at **Hevre** or Watch the stream on [YouTube (link)](https://youtube.com/live/x2YENCV4jnU) Hosted by: **Maciej Lelusz**, AWS Hero AWS Community Builders: **Maria Kmita** 🎤 **Speakers**: 〰️ *„Cross-Account, Cross-Region,* *Cross-Fingers – Migrating a Live AWS Platform"* **Volodymyr Hordiienko**, DevOps Architect at Intellias 〰️ *„NET on AWS: Better Than You Think"* **Wojtek Dąbrowski**, AWS Hero 💡 Details about Speakers & Talks💡 **Volodymyr Hordiienko:** DevOps Architect with over a decade of experience in multi-cloud infrastructure, platform engineering, and delivery automation. Designs and builds production-grade environments across AWS, Azure, GCP, and hybrid on-prem - covering architecture, infrastructure-as-code, CI/CD pipelines, container platforms, security, and operational reliability. Has led cloud migrations, platform modernizations, and greenfield builds across industries, including telecom, healthcare, IoT, finance, and retail. ☞ will speak about: A practical AWS migration story about rebuilding a live platform from a single-account, manually managed setup into a governed multi-account delivery model. The talk covers Terragrunt/Terraform, ECS Fargate, RDS, S3, CloudFront, Lambda, Cognito, CI/CD, cross-account deployments, mobile release pipelines, enterprise IAM constraints, and the operational reality of getting an AWS platform truly ready for production. **Wojtek Dąbrowski**: is a Solutions Architect and backend engineer with over a decade of experience, working primarily with AWS. He stays hands-on with code and delivery, combining practical engineering with architecture and technical decision-making. Currently, he is a Platform Tech Lead at Northmill Bank. Since 2019, he has led AWS User Group Silesia in Poland, and in 2023, he was recognized as an AWS Hero. ☞ will speak about: Most people still assume AWS is not the natural home for .NET and treat C# as a “second choice” on AWS. That used to be a fair concern in some areas, but it’s no longer the reality. In this talk, we’ll walk through what building on AWS looks like when your primary stack is C# and modern .NET. We’ll take a developer-first tour of the AWS services that make .NET a strong fit: serverless workloads (APIs, async processing, event-driven systems), container platforms, and infrastructure-as-code written in C#. Along the way, I’ll show concrete patterns and trade-offs, including where .NET shines, where it’s neutral, and where you should be honest and pick a different tool. The goal is simple: leave with a clear mental model, practical options you can use immediately, and a refreshed view of what “.NET on AWS” can look like in 2026.

Spotkania z serii wymiany wiedzy podczas wspólnego rozwiązywania zadań CTF – jest to świetna zabawa pozwalająca równocześnie rozwinąć wiedzę w zakresie cyberbezpieczeństwa. Poziom trudności CTF-owego zadania ustalimy na początku spotkania. Najprawdopodobniej wybierzemy coś z platformy Hack The Box. Spotykamy się **co tydzień w środę o 19:00.** \-\-\- Zaczynamy o 19:00, ale warto sprawdzić https://at.hs-ldz.pl – być może ktoś otworzy siedzibę wcześniej. Jeżeli masz problem z wejściem, zadzwoń na 42-203-20-50 albo wejdź na naszego chata (patrz poniżej). Potrzebujesz więcej informacji? Skontaktuj się z nami na czacie lub mailowo. Szczegóły znajdziesz tutaj: https://lodz.hackerspace.pl/ Więcej szczegółów uzgodnimy na naszym chacie Telegramowym: https://t.me/hakierspejs

Zapraszamy na kolejne spotkanie planszówkowe! Mamy parę gier w spejsie, ale zachęcam przynieść również własne gry! Chętnie zagramy w coś nowego. Jest też miejsce na zostawienie gier na jakiś czas w spejsie, żeby nie musieć ich targać tutaj co tydzień. \-\-\- Zaczynamy o 19:00, ale warto sprawdzić [https://at.hs-ldz.pl](https://at.hs-ldz.pl) – być może ktoś otworzy siedzibę wcześniej. Jeżeli masz problem z wejściem, zadzwoń na 42-203-20-50 albo wejdź na naszego chata (patrz poniżej). Potrzebujesz więcej informacji? Skontaktuj się z nami na czacie lub mailowo. Szczegóły znajdziesz tutaj: [https://lodz.hackerspace.pl/](https://lodz.hackerspace.pl/) Więcej szczegółów uzgodnimy na naszym chacie telegram/matrix: [https://t.me/hsldz_planszowki](https://t.me/hsldz_planszowki) [https://matrix.to/#/#hs-ldz-board-games:matrix.org](https://matrix.to/#/#hs-ldz-board-games:matrix.org)

Hakierspejs spotyka się na żywo w siedzibie stowarzyszenia! Zapraszamy wszystkich zainteresowanych naszą aktywnością. Uczestnictwo jest darmowe, rejestracja nie jest obowiązkowa – wystarczy po prostu przyjść. Nie mamy żadnego konkretnego planu: po prostu zbieramy się i haczymy - co komu przyjdzie do głowy. Zaczynamy o 19:00, ale warto sprawdzić [https://at.hs-ldz.pl](https://at.hs-ldz.pl) – być może ktoś otworzy siedzibę wcześniej. Jeżeli masz problem z wejściem, zadzwoń domofonem przy bramie od ulicy na nr 100, zadzwoń telefonem na 42-203-20-50 albo wejdź na naszego chata (patrz poniżej). Potrzebujesz więcej informacji? Skontaktuj się z nami na czacie lub mailowo. Szczegóły znajdziesz tutaj: [https://lodz.hackerspace.pl/](https://lodz.hackerspace.pl/) Więcej szczegółów uzgodnimy na naszym chacie Telegramowym/Matrixowym: [https://t.me/hakierspejs](https://t.me/hakierspejs) [https://matrix.to/#/%23hs-ldz:hackerspace.pl](https://matrix.to/#/%23hs-ldz:hackerspace.pl)

Zapraszamy wszystkich fanów śpiewania (lub próbowania śpiewania) na karaoke w naszym hakierspejsie. Umiejętności wokalne niepotrzebne, nawet niezalecane. Równocześnie w siedzibie hakierspejsu będzie odbywało się także spotkanie planszówkowe.

Rano, przy dobrej kawie i śniadaniu rozpoczynamy dzień ciekawym, startupowpo-technologicznym netoworkingiem. OpenCoffee to regularnie spotkanie w gronie przedsiębiorców technologicznych oraz tych co jeszcze myślą o odpaleniu swojego projektu. Tematy poprzednich spotkań: https://docs.google.com/spreadsheets/d/1MS2IqNQG69guUtcsbFQ3_MByd7fFD2BMX4HfhJah-uA/edit?fbclid=IwY2xjawFfWwlleHRuA2FlbQIxMAABHdzZY8UKMiOa9-vnnDcODnWJJgg3XTeWXIyRKe1tzfIR-_Lyi3pAhhOQNA_aem_jUb8F2hXGuDmukpMHuhVMA&gid=0#gid=0 Proszę wrzucać proponowane tematy na to spotkanie w poście poniżej 🙂. Wygra temat z największą ilością rekacji.

We are back ngLodz 🔥 After a long break. With new energy. And a lineup that will make 20th of May a date you won't forget. 3 speakers ... Names? Dropping them soon. But trust us - you want this in your calendar. 📅 20.05.2026 · Łódź See you! **#ngLodz** **#Angular**

Customer identity resolution becomes increasingly complex as organizations scale across multiple systems, regions, and data formats. Traditional rule-based approaches often fail to keep up with data variability, require constant manual tuning, and struggle with real-time processing needs. This session presents a practical approach to building a scalable identity resolution pipeline using AWS services and modern AI techniques. The architecture combines data ingestion through Amazon S3 and AWS Glue, transformation pipelines using Spark on EMR, and machine learning models deployed via SageMaker for entity matching and standardization. Graph-based relationship modeling is implemented using Amazon Neptune to improve resolution accuracy by incorporating household and shared attribute context. We will walk through how machine learning models can be used for name and address normalization, how intelligent blocking strategies improve matching efficiency, and how feedback loops can be introduced to continuously improve accuracy. The session also highlights how serverless components such as AWS Lambda can be used for orchestration and real-time processing. **SPEAKER BIO** Mosaic Syed is a Senior Data Engineering and Cloud Solutions Architect with over 20 years of experience designing and delivering scalable, secure, and high-performance data solutions across global enterprise environments. https://www.linkedin.com/in/mosaic-basha-syed-92300856 **CALL FOR SPEAKERS** Learn more: [https://www.awscolumbus.com/get-involved/](https://www.awscolumbus.com/get-involved/) **THANK YOU** *VEEAM* for hosting our meetup! To learn more about *Veeam*, please visit their website: [https://www.veeam.com/](https://www.veeam.com/) **DIRECTIONS** 8800 Lyra Dr #450 · Columbus, OH go to 4th floor. **Want to sponsor the pizza and/or bar tab?** Please contact me if you would like to sponsor this meetup's pizza and/or bar tab: angelo@mandato.com

We will show how to build custom agents with Microsoft Agent Framework. Attendees will learn how to build and custom host agents when Microsoft Foundry is not a viable option.

On Thursday, May 21, 2026, we will meet at the 700N Conference Room at 700 N Hurstbourne Pkwy. Doors will open at 6:00 p.m., and the presentations will begin sharply at 6:30 p.m. Along with an excellent presentation, TEKsystems will provide food. Please RSVP so we know how much food to order. Afterward, we will go to Brick House Tavern for drinks and food to continue the conversation. The session will also be broadcast at https://twitch.tv/TaleLearnCode. ### **GitOps: Easy Deploy and Even Easier Rollback** GitOps isn't just for containers. The methodology of deploying from a build is now baked into our culture. Take it a touch farther with infrastructure as code and a few extra techniques, and you can reliably deploy to any platform: cloud, on-prem, container, PaaS, and more. Join us as we learn the methodology of GitOps, the critical pieces you need in place, and the elegance of rollbacks with GitOps. You'll leave with a working repo of deployment techniques that doesn't consume any paid tools or container-specific techniques.

**Important time note:** Please plan on arriving between 5:30 and 6:00 as the elevators lock after 6 and you'll need to message us and we'll need to come get you. The building address is 4450 Bridge Park The entrance is 6620 Mooney St, Suite 400 You will need to scan your ID at the door to get a visitor badge. **Abstract** TBD **YouTube Link** TBD

What does a trojan look like when it has over 900k+ combined installs and a Forbes write-up? Exactly like a legitimate Chrome extension. This session presents a technical dissection of two Chrome extensions, each with over one million active installations — that functioned as trojans in production environments, evading detection while operating through entirely legitimate browser APIs. These were not obscure tools. They were widely trusted, actively recommended, and covered by mainstream press before their malicious behavior was fully understood. We will walk through the actual source code of both extensions, showing precisely how the malicious functionality was constructed, concealed, and executed at scale. This analysis anchors a broader examination of how modern compromises actually succeed. Drawing on aggregated real-world incident data, we identify the technique categories currently delivering the highest adversary return, and why they keep working. Spoiler: it's rarely a zero-day. It's trust. The Chrome extension deep-dive will cover: * Line-by-line source analysis of how malicious functionality was embedded within working, useful software * Which browser permission scopes were abused, and why a million users — and their IT teams — didn't see it coming * The behavioral and structural indicators that distinguish a trojan extension from a legitimate one, and how to operationalize detection around them This session closes with a practical defensive prioritization framework built around observed attacker behavior: which mitigations are measurably reducing risk in production environments, which are consuming budget without impact, and a scoring methodology your team and leadership can apply immediately. **Source material:** Primary analysis of extension source code, corroborated by reporting from Forbes and other established outlets. **What this is not:** A vendor pitch, a speculative threat narrative, or a surface-level breach retrospective. **Who should attend:** Security architects, AppSec and cloud security practitioners, blue team leads, threat hunters, browser security practitioners, and security leaders responsible for prioritizing risk and investment decisions.

**Welcome to Drunken Philosophy** a casual, curious social discussion **Optional topic for this meetup: What's up with all the AI hate?** A recent survey found that 74% of Americans have a negative view of AI, and I want to know why. Come out and debate whether AI is good or bad. My hot take: a labor-saving tool that could potentially help cure cancer gets called dangerous because it might raise unemployment or cause a speculative investment bubble, that tells you a lot more about capitalism and the economic system we live under than it does about the tool itself. As a computer programmer, I think AI is a wonderful tool that has increased my productivity by at least an order of magnitude. I'd go so far as to say Claude Code is the best tool I have ever used. Debate me and name a better one. Is AI potentially dangerous? Yes, but so are a lot of tools. Chainsaws. Steam engines (early ones would occasionally explode and kill everyone in the room). Do you think cavemen sat around debating whether fire could be used as a weapon or for self-harm, and decided not to discover it? I have two friends who hate AI for opposite reasons: one thinks it's a fad and not useful, and the other thinks it's going to take over everything and cause human extinction. Come out tonight, have a friendly debate, and make some friends. No lectures. Friendly crowd. Drop in for one drink and stay if it's fun.

ASH is Atheists, Skeptics and Humanists of First Unitarian Universalists of Columbus Ohio TBD Snacks are usually available, and you are welcome to bringing something to share!