WORKSHOPS & PANELS
Workshop:
Fighting Cyberattacks Through Adversary Behavior Analysis: Insights From Our Research Team [In French only]
Understanding your cyber adversaries is important in strengthening your organization’s defenses against evolving threats in the digital landscape. In traditional warfare as well as in cybersecurity, knowledge of enemy tactics, strategies, and motivations is crucial for victory.
We built a honeynet that is composed of several RDP Windows servers exposed on the cloud. Over a span of three years, this infrastructure collected a staggering dataset, encompassing over 190 million events, 100 hours of video footage, and 470 files procured from threat actors. This wealth of data facilitated a comprehensive analysis of attacker behavior.
During this presentation panel, the GoSecure research team will present three distinct aspects of attacker behavior, shedding light on their modus operandi across various dimensions. The short presentations will encompass (1) their preferences and tendencies concerning Command-Line Interface versus Graphical User Interface usage, (2) their browser preferences, and (3) the intricate geopolitical nuances associated with their IP addresses of origin.
By examining these multifaceted aspects of attacker behavior, we aim to provide comprehensive insights into the tactics, strategies, and motivations driving malicious actors in the cyber landscape.
Host: Dr. Andréanne Bergeron, Director of Cybersecurity Research – GoSecure & research team (Jeremy O’Boyle, Sophie Marchand, Constance Prevost)
Andréanne Bergeron
Director of Cybersecurity Research at GoSecure
Training:
Put yourself in the shoes of a Pentester [In French only]
Put yourself in the shoes of a penetration tester and learn to think like an attacker. This training session presents you with a multitude of technical examples from real mandates and allows you to progress at your own pace with the help of a professional in the field. The training session includes several dozen practical challenges.
Target Audience: Technical people or those curious to learn more about the offensive security approach.
Format: Practical
Duration: 2 hours
Hardware and Technical Requirements:
Hardware required: (A laptop with administrator rights (To install and configure virtual machines)
Special technical requirements: Having a Kali Linux and Windows machine is recommended
This is a ticketed event, please ensure you have a ticket to the training session to join.
Simon Nolet
Freelancer, Mentor, Speaker, OSCP (Hacktive Education)
Workshop:
The Art of Lockpicking
[In French only]
This workshop serves as an introduction to lockpicking. From the inner-working of a lock to how to defeat them, this is a hands on workshop where you will be able to practice your skills in a safe environment. Lock enthusiasts are also welcome to come and discuss with people that share their interest.
Host: Maxime Nadeau, Director Ethical Hacking – GoSecure
Maxime Nadeau
Director Ethical Hacking - GoSecure
Panel:
Who Do You Know – Getting to know key partners in cybersecurity breach response
[In English only]
When cybersecurity incidents happen, time is of the essence for companies that have been compromised. Knowing who to call and how to pay for the fallout can be critical. Welcome to how insurance, breach coach lawyers and law enforcement can play a vital part in cybersecurity breach response. From financial backing to legal advice to law enforcement support, these key constituents can become a breached company’s life line. In this session you will learn how the cyber insurance community supports cybersecurity breach response and how some of the critical partners play a vital role in this response, including breach coach lawyers and law enforcement.
Lina Dabit
Officer in Charge Cyber Crime Investigative - RCMP Team Toronto
Patrick Bourk
B.A., LL.B., Cyber COPE® Insurance CertificationSM, Strategic Advisor - NetDiligence & Vice President, Cyber and Professional Lines - Navacord
Julie Himo
Partner - Torys LLP
Book Signing:
Architecting Success: The Art of Soft Skills in Technical Sales
[In English only]
Author: Evgeniy Kharam
Evgeniy is built and wired differently. As a father of four, including twins, Evgeniy has mastered the art of remaining unflappable in adversity. This personal resilience translates into his professional ethos, where he has ascended from a firewall deployment engineer to the Vice President of Architecture at the Herjavec Group. His journey through the evolving landscape of cybersecurity provides him with a unique, panoramic view of the industry, enhancing his capability to lead and innovate across all its domains.
Evgeniy’s passion extends beyond his day-to-day corporate roles. He is the co-founded of two influential podcasts—one that delves into technical security architecture and another that offers cyber inspiration for business leaders. His engagement with the community continues as he moderates panels and conducts interviews, shaping the conversation in the cybersecurity industry.
He also serves as a board advisor to the Canadian Cybersecurity Network, the largest technology group in Canada. His creative spirit is showcased through his co-founding of a cybersecurity-focused ski and snowboard conference, which ingeniously merges lifestyle with professional engagement, thus captivating his audience.
Currently, Evgeniy runs his own cyber/media consulting services, drawing on his extensive industry knowledge and media expertise to navigate clients through the complexities of cybersecurity. His literary contribution includes a book on soft skills for technical sales, expanding his consulting services to include mentorship on these essential topics.
Whether you are here for his book, training, or consulting services, Evgeniy offers a wealth of knowledge and experience, ensuring invaluable insights tailored to the dynamic needs of the cybersecurity field.
Evgeniy Kharam
Author
Workshop:
Cybersecurity in the era of AIOps
[In French only]
Discover the benefits of AIOps: the use of Artificial Intelligence for the operationalization of cybersecurity in companies.
Host: Xavier Bensemhoun, Security Engineer and Cybersecurity Evangelist in the Office of the CTO – Check Point
Xavier Bensemhoun
Security Engineer and Cybersecurity Evangelist in the Office of the CTO - Check Point
Workshop:
My AI is lying to me
[In English only]
Data poisoning and source manipulation are significant concerns of potential AI attacks that threat actors may use to corrupt data, spread false narratives and fake news, and engage in disinformation campaigns. This session will focus on how AI models can be manipulated and how the information we get from them may not always be ideal or even accurate. The use of AI tools, AI models, and AI technology is spreading faster than ever. However, simple mistakes may exponentially multiply a threat. In this session, we will examine common AI attacks and how threat actors are starting to take advantage of the offensive side.
Aamir Lakhani
Global Threat Research Architect - Fortinet
Panel:
The Future of Cyber Insurance: Trends and Predictions
[In English only]
Panelists will share their insights on the future direction of cyber insurance, discussing potential market shifts, emerging risks, and innovations in policy offerings.
Panel:
Laure Bonnave – Senior Legal Counsel – Clyde&Co
Maxime Audet – Account Director – Hub International
Kevin Neslage – Incident Response Claims Counsel – Resilience
Laure Bonnave
Senior Legal Counsel - Clyde&Co
Maxime Audet
Account Director - Hub International
Kevin Neslage
Incident Response Claims Counsel - Resilience