Version 0.10 July 1, 2025

One more room swap

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Challenges around AI-as-a-Service logging” by Jeremy Snyder (Track 1 - Crystal → Track 2 - Crestone)
• “Double Agents: Exposing Hidden Threats in AI Agent Platforms” by Michael Katchinskiy, Hagai Kestenberg (Track 2 - Crestone → Track 1 - Crystal)

Version 0.9 June 30, 2025

Move session to day 2, shift things around to make it work

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Shared-GPU Security Learnings from Fly.io” by Matthew Braun (July 1, 2025, 1:30 p.m. → July 1, 2025, 1:40 p.m.)
• “The False Sense of Security: Defense Becoming a Vulnerability” by Nathan Eades (June 30, 2025, 11:10 a.m., Track 2 - Crestone → July 1, 2025, 11:50 a.m., Track 1 - Crystal)
• “What would you ask a crystal ball for AWS IAM?” by Nick Siow (July 1, 2025, 2 p.m. → July 1, 2025, 2:10 p.m.)
• “Securing organizations ML & LLMops deployments : A platform architects journey onboarding LLM & MLops tools and securing multi-cloud data access” by Sai Gunaranjan, Kyler Middleton (she/her) (July 1, 2025, 2 p.m. → July 1, 2025, 2:10 p.m.)
• “Read Between The Logs: A New Vulnerability in Gemini Cloud Assist Proves the Threat is Real” by Liv Matan (July 1, 2025, 1 p.m. → July 1, 2025, 1:10 p.m.)
• “Bypassing AI Security Controls with Prompt Formatting” by Nathan Kirk (July 1, 2025, 1:30 p.m. → July 1, 2025, 1:40 p.m.)
• “Challenges implementing egress controls in a large AWS environment” by Greg Aumann (July 1, 2025, 1 p.m. → July 1, 2025, 1:10 p.m.)

Version 0.8 June 30, 2025

Swapping rooms to accommodate A/V issues

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The Duplicitous Nature of AWS Identity and Access Management (IAM)” by Jason Kao (Track 1 - Crystal → Track 2 - Crestone)
• “This Wasn’t in the Job Description: Building a production-ready AWS environment from scratch” by Nick Jones, Mohit Gupta (Track 2 - Crestone → Track 1 - Crystal)
• “I SPy: Rethinking Entra ID research for new paths to Global Admin” by Katie Knowles (Track 1 - Crystal → Track 2 - Crestone)
• “What Do You Mean, ‘Resource Not Found?’ Demystifying GCP Error Codes for IR & Detections” by Gabriel \ Gavriel Fried (Track 2 - Crestone → Track 1 - Crystal)
• “The Good, the Bad, and the Ugly: Hacking 3 CSPs with 1 Vulnerability” by Hillai Ben-Sasson, Andres Riancho (Track 2 - Crestone → Track 1 - Crystal)
• “You Are Not Netflix: How to learn from conference talks” by Rami McCarthy (Track 1 - Crystal → Track 2 - Crestone)

Version 0.7 June 30, 2025

Swapping rooms for A/V needs

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Inviter Threat: Managing Security in a new Cloud Deployment Model” by Meg Ashby (Track 1 - Crystal → Track 2 - Crestone)
• “Detecting the Undetectable: Threat Hunting in Appliance Environments” by Shahar Dorfman, Sagi Tzadik (Track 2 - Crestone → Track 1 - Crystal)
• “The False Sense of Security: Defense Becoming a Vulnerability” by Nathan Eades (Track 1 - Crystal → Track 2 - Crestone)
• “The Good, The Bad, and The Vulnerable: Breaking Down GCP Tenant Projects” by Ofir Balassiano, Ofir shaty (Track 2 - Crestone → Track 1 - Crystal)

Version 0.6 June 30, 2025

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The False Sense of Security: Defense Becoming a Vulnerability” by Nathan Eades (June 30, 2025, 10:40 a.m. → June 30, 2025, 11:10 a.m.)
• “Putting Workload Identity to Work: Taking SPIFFE past day 0” by Dave Sudia (June 30, 2025, 11:10 a.m. → June 30, 2025, 10:40 a.m.)

Version 0.5 June 27, 2025

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Logs don't mean a thing: Unraveling IaC-Managed Identity Ownership” by Dan Abramov, Eliav Livneh (June 30, 2025, 10:40 a.m., Track 2 - Crestone → July 1, 2025, 10:30 a.m., Track 1 - Crystal)
• “Trust Issues: What Do All these JSON files actually mean?” by David Kerber (July 1, 2025, 10:30 a.m., Track 1 - Crystal → June 30, 2025, 10:40 a.m., Track 2 - Crestone)

Version 0.4 June 25, 2025

More shuffling, apologies for the churn

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Trust Issues: What Do All these JSON files actually mean?” by David Kerber (July 1, 2025, 1:30 p.m. → July 1, 2025, 10:30 a.m.)
• “Shared-GPU Security Learnings from Fly.io” by Matthew Braun (July 1, 2025, 10:30 a.m. → July 1, 2025, 1:30 p.m.)
• “Defenders hate it! Compromise vulnerable SaaS applications with this one weird trick” by Eric Woodruff (Track 2 - Crestone → Track 1 - Crystal)
• “Happy Little Clouds: Painting Pictures with Microsoft Cloud and Identity Data” by Matt Graeber (June 30, 2025, 2 p.m., Track 1 - Crystal → June 30, 2025, 9:20 a.m., Track 2 - Crestone)
• “ECS-cape – Hijacking IAM Privileges in Amazon ECS” by Naor Haziz (June 30, 2025, 9:20 a.m. → June 30, 2025, 2 p.m.)

Version 0.3 June 25, 2025

Lots of changes to improve time zone shifts for speakers who can't travel to Denver

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Securing organizations ML & LLMops deployments : A platform architects journey onboarding LLM & MLops tools and securing multi-cloud data access” by Sai Gunaranjan, Kyler Middleton (she/her) (July 1, 2025, 1 p.m. → July 1, 2025, 2 p.m.)
• “Read Between The Logs: A New Vulnerability in Gemini Cloud Assist Proves the Threat is Real” by Liv Matan (July 1, 2025, 10 a.m., Track 1 - Crystal → July 1, 2025, 1 p.m., Track 2 - Crestone)
• “Logs don't mean a thing: Unraveling IaC-Managed Identity Ownership” by Dan Abramov, Eliav Livneh (June 30, 2025, 1:30 p.m., Track 1 - Crystal → June 30, 2025, 10:40 a.m., Track 2 - Crestone)
• “When Your Partner Betrays You - Trusted Relationship Compromise In The Cloud” by Sebastian Walla (June 30, 2025, 10:40 a.m. → June 30, 2025, 4:40 p.m.)
• “What Do You Mean, ‘Resource Not Found?’ Demystifying GCP Error Codes for IR & Detections” by Gabriel \ Gavriel Fried (Track 1 - Crystal → Track 2 - Crestone)
• “The Good, The Bad, and The Vulnerable: Breaking Down GCP Tenant Projects” by Ofir Balassiano, Ofir shaty (June 30, 2025, 4:10 p.m., Track 1 - Crystal → June 30, 2025, 11:10 a.m., Track 2 - Crestone)
• “Challenges implementing egress controls in a large AWS environment” by Greg Aumann (July 1, 2025, 1:50 p.m. → July 1, 2025, 1 p.m.)
• “Challenges around AI-as-a-Service logging” by Jeremy Snyder (Track 2 - Crestone → Track 1 - Crystal)
• “Rebuilding ROADRecon for the Modern Entra Environment” by Thomas Byrne (June 30, 2025, 1 p.m., Track 2 - Crestone → June 30, 2025, 1:30 p.m., Track 1 - Crystal)
• “This Wasn’t in the Job Description: Building a production-ready AWS environment from scratch” by Nick Jones, Mohit Gupta (Track 1 - Crystal → Track 2 - Crestone)
• “What would you ask a crystal ball for AWS IAM?” by Nick Siow (July 1, 2025, 1 p.m. → July 1, 2025, 2 p.m.)
• “Not So Secret: The Hidden Risks of GitHub Actions Secrets” by Amiran Alavidze (June 30, 2025, 11:10 a.m., Track 2 - Crestone → June 30, 2025, 4:10 p.m., Track 1 - Crystal)
• “I SPy: Rethinking Entra ID research for new paths to Global Admin” by Katie Knowles (Track 2 - Crestone → Track 1 - Crystal)
• “ECS-cape – Hijacking IAM Privileges in Amazon ECS” by Naor Haziz (June 30, 2025, 2 p.m., Track 1 - Crystal → June 30, 2025, 9:20 a.m., Track 2 - Crestone)
• “Staying Sneaky in the Office (365)” by Christian Philipov (June 30, 2025, 1:30 p.m. → June 30, 2025, 3:10 p.m.)
• “Trust Issues: What Do All these JSON files actually mean?” by David Kerber (July 1, 2025, 2:20 p.m. → July 1, 2025, 1:30 p.m.)
• “Beyond the Big Three: Mastering Oracle Cloud Security in a Multi-Cloud World” by Dani Kaganovitch (June 30, 2025, 4:40 p.m. → June 30, 2025, 1 p.m.)
• “Taming LLMs to Detect Anomalies in Cloud Audit Logs” by Yigael Berger (July 1, 2025, 2:20 p.m. → July 1, 2025, 10:30 a.m.)
• “The Duplicitous Nature of AWS Identity and Access Management (IAM)” by Jason Kao (Track 2 - Crestone → Track 1 - Crystal)
• “Bypassing AI Security Controls with Prompt Formatting” by Nathan Kirk (July 1, 2025, 1:50 p.m. → July 1, 2025, 1:30 p.m.)
• “Happy Little Clouds: Painting Pictures with Microsoft Cloud and Identity Data” by Matt Graeber (June 30, 2025, 9:20 a.m., Track 2 - Crestone → June 30, 2025, 2 p.m., Track 1 - Crystal)
• “Double Agents: Exposing Hidden Threats in AI Agent Platforms” by Michael Katchinskiy, Hagai Kestenberg (July 1, 2025, 10:30 a.m. → July 1, 2025, 10 a.m.)
• “I Didn’t Register for This: What’s Really in Google’s Artifact Registry?” by Moshe Bernstein (June 30, 2025, 3:10 p.m. → June 30, 2025, 1:30 p.m.)

Version 0.2 June 11, 2025

We closed an awkward gap in Day 2

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Keeping your cloud environments secure during a merger or acquisition” by Isaac Lepow (July 1, 2025, 3:40 p.m. → July 1, 2025, 3:10 p.m.)
• “Challenges around AI-as-a-Service logging” by Jeremy Snyder (July 1, 2025, 2:20 p.m. → July 1, 2025, 10 a.m.)
• “Closing” (July 1, 2025, 4 p.m. → July 1, 2025, 3:30 p.m.)
• “Read Between The Logs: A New Vulnerability in Gemini Cloud Assist Proves the Threat is Real” by Liv Matan (July 1, 2025, 10:30 a.m., Track 2 - Crestone → July 1, 2025, 10 a.m., Track 1 - Crystal)
• “Challenges implementing egress controls in a large AWS environment” by Greg Aumann (July 1, 2025, 2:20 p.m. → July 1, 2025, 1:50 p.m.)
• “Breaking AI Agents: Exploiting Managed Prompt Templates to Take Over Amazon Bedrock Agents” by Jay Chen, Royce Lu (July 1, 2025, 3:40 p.m. → July 1, 2025, 3:10 p.m.)
• “Double Agents: Exposing Hidden Threats in AI Agent Platforms” by Michael Katchinskiy, Hagai Kestenberg (July 1, 2025, 10 a.m. → July 1, 2025, 10:30 a.m.)
• “Trust Issues: What Do All these JSON files actually mean?” by David Kerber (July 1, 2025, 3:10 p.m. → July 1, 2025, 2:20 p.m.)
• “Taming LLMs to Detect Anomalies in Cloud Audit Logs” by Yigael Berger (July 1, 2025, 3:10 p.m. → July 1, 2025, 2:20 p.m.)
• “What Do You Mean, ‘Resource Not Found?’ Demystifying GCP Error Codes for IR & Detections” by Gabriel \ Gavriel Fried (July 1, 2025, 1:50 p.m. → July 1, 2025, 9:30 a.m.)

Version 0.1 June 11, 2025

We released our first schedule! Note that the schedule is subject to change.