Hack.lu 2024 will take place from 22nd to 25th October in Luxembourg, showcasing the latest in cybersecurity innovation and research. Known for its wide range of topics, from malware analysis and IoT security to reverse engineering and threat intelligence, Hack.lu also offers hands-on workshops and the highly popular Capture The Flag (CTF) competition. It’s a hub for professionals and researchers alike, offering an opportunity to learn from experts and network with leading figures in cybersecurity. The Cyber Threat Intelligence (CTI) Summit will run alongside the main event, focusing on intelligence-sharing strategies(hack.lu 2024).
Key Talks and Workshops at Hack.lu 2024
1. APT28: Following Bear Tracks Back to the Cave by Golo
This session will focus on APT28 (Fancy Bear), a well-known Russian state-sponsored cyber espionage group. Golo will explore the group’s attack techniques and the steps for tracking their activities. It’s a deep dive into the world of nation-state cyber operations.
- Speaker Profile: Golo on Twitter
- More information: Hack.lu Agenda(hack.lu 2024)
2. Insights from Modern Botnets by Miguel
Miguel’s session will examine modern botnets, looking at how these vast networks of compromised devices are built and monetised. The talk will include real-world examples of botnet infrastructures and the challenges in defending against them.
- Speaker Profile: Miguel on Twitter
- More information: Hack.lu Agenda(hack.lu 2024)
3. IoT Hacks Humans: Unexpected Angles of Human Process Compromise by Vladimir Kropotov
Vladimir will explore how IoT devices can be used not just to compromise infrastructure but also human processes. This talk will dive into real-world attacks and highlight the new frontiers of IoT exploitation.
- Speaker Profile: Vladimir Kropotov on Twitter
- More information: Hack.lu Agenda(hack.lu 2024)
4. Quantum Cybersecurity: Pioneering a Secure Future by Samira Chaychi & Sharif Shahini
This session will explore the impending threat of quantum computing to current cryptographic techniques. Samira and Sharif will discuss quantum-resistant cryptography and the future of secure communication in a quantum-powered world.
- Speaker Profile: Samira Chaychi on LinkedIn
- More information: Hack.lu Agenda(hack.lu 2024)
5. The XE Files – Trust No Router by James Atack
James Atack will take a detailed look into the security vulnerabilities found in modern routers and why they represent a major security risk for both personal and corporate networks. The session will include case studies of major router-based breaches.
- Speaker Profile: James Atack on Twitter
- More information: Hack.lu Agenda(hack.lu 2024)
6. Predictive Analytics for MITRE ATT&CK Techniques by Tristan MADANI
This talk will showcase how predictive analytics can be applied to the MITRE ATT&CK framework to foresee adversary behaviours and techniques. Tristan will explain how rule mining can enable organisations to take proactive security measures.
- Speaker Profile: Tristan MADANI on LinkedIn
- More information: Hack.lu Agenda(hack.lu 2024)
7. Scam as a Service Powered by Telegram by Aurimas Rudinskis
Aurimas will discuss the rise of scam services operated via Telegram, showcasing how the platform is used for large-scale fraud operations. The talk will cover various types of scams and the challenges in combatting these threats.
- Speaker Profile: Aurimas Rudinskis on LinkedIn
- More information: Hack.lu Agenda(hack.lu 2024)
8. “Nothing to See Here!” – Cloaking Malicious Web Content Delivery by Jeroen Pinoy
Jeroen will present an insightful session on cloaking techniques used by cybercriminals to evade detection when delivering malicious web content. His talk will cover the awareness and defence strategies needed to tackle these evolving threats.
- Speaker Profile: Jeroen Pinoy on Twitter
- More information: Hack.lu Agenda(hack.lu 2024)
Workshops at Hack.lu 2024
In addition to the talks, Hack.lu offers a variety of workshops to hone practical skills:
- Cryptography: From Zero to Don’t-Shoot-Yourself-in-the-Foot by Lorenzo Nicolodi: A cryptography workshop covering basic to advanced concepts, with a focus on avoiding common mistakes in implementation(hack.lu 2024).
- Chrome V8 Exploitation Training by hoseok Lee: A beginner’s workshop on Chrome V8 engine exploitation, ideal for those interested in browser-based vulnerabilities(hack.lu 2024).
- Malware Development and Persistence by cocomelonc: Learn how adversaries create and maintain persistence with malware in real-world systems(hack.lu 2024).
- OpenSSH Security by William Robinet: A workshop focused on securing OpenSSH, including common vulnerabilities and hardening practices(hack.lu 2024).
Capture The Flag (CTF)
The famous Hack.lu CTF is a multi-day competition that pits participants against various hacking challenges designed to test both technical and problem-solving skills. Open to individuals and teams, the CTF covers various domains of cybersecurity and rewards those with the creativity and expertise to solve its puzzles(hack.lu 2024)(hack.lu 2024).