fwd:cloudsec 2025

We closed an awkward gap in Day 2

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

“Taming LLMs to Detect Anomalies in Cloud Audit Logs” by Yigael Berger (July 1, 2025, 3:10 p.m. → July 1, 2025, 2:20 p.m.)
“Read Between The Logs: A New Vulnerability in Gemini Cloud Assist Proves the Threat is Real” by Liv Matan (July 1, 2025, 10:30 a.m., Room 2 → July 1, 2025, 10 a.m., Room 1)
“Breaking AI Agents: Exploiting Managed Prompt Templates to Take Over Amazon Bedrock Agents” by Jay Chen, Royce Lu (July 1, 2025, 3:40 p.m. → July 1, 2025, 3:10 p.m.)
“Closing” (July 1, 2025, 4 p.m. → July 1, 2025, 3:30 p.m.)
“What Do You Mean, ‘Resource Not Found?’ Demystifying GCP Error Codes for IR & Detections” by Gabriel \ Gavriel Fried (July 1, 2025, 1:50 p.m. → July 1, 2025, 9:30 a.m.)
“Double Agents: Exposing Hidden Threats in AI Agent Platforms” by Michael Katchinskiy, Hagai Kestenberg (July 1, 2025, 10 a.m. → July 1, 2025, 10:30 a.m.)
“Keeping your cloud environments secure during a merger or acquisition” by Isaac Lepow (July 1, 2025, 3:40 p.m. → July 1, 2025, 3:10 p.m.)
“Challenges implementing egress controls in a large AWS environment” by Greg Aumann (July 1, 2025, 2:20 p.m. → July 1, 2025, 1:50 p.m.)
“Challenges around AI-as-a-Service logging” by Jeremy Snyder (July 1, 2025, 2:20 p.m. → July 1, 2025, 10 a.m.)
“Trust Issues: What Do All these JSON files actually mean?” by David Kerber (July 1, 2025, 3:10 p.m. → July 1, 2025, 2:20 p.m.)

We released our first schedule! Note that the schedule is subject to change.