BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//orangecon-2026//talk//WFEZDZ
BEGIN:VEVENT
UID:pretalx-orangecon-2026-WFEZDZ@pretalx.com
DTSTART:20260604T130500Z
DTEND:20260604T133500Z
DESCRIPTION:One black friday deal + one afternoon + basic software engineer
 ing knowledge was all it took for me to remotely manage hundreds of thousa
 nds of Android point-of-sale devices through an obscure administrator pane
 l\, with a significant portion being right here in the Netherlands and som
 e being in use by sizeable companies.\n\nI am a 20 year old software engin
 eering student with no expert knowledge in cybersecurity at all\, i have j
 ust started picking up ethical hacking as a hobby by tearing apart random 
 IOT devices. I should not have been able to do this.\n\nThis is a story ab
 out how dangerously simple critical infrastructure vulnerabilities can be\
 , what responsible disclosure actually looks like from a first-timer's per
 spective\, and why "we fixed it" doesn't always mean what you think it mea
 ns.\n\nExpect a very casual presentation outlining all of the mistakes tha
 t were made.\nThe vulnerabilities have not been made public yet\, all of t
 his happened quietly months ago. This is the first time you will hear abou
 t them!
DTSTAMP:20260525T201456Z
LOCATION:Track 2
SUMMARY:Pwning a Million Point Of Sale Terminals In One Afternoon (Without 
 Expert Knowledge) - Marcel Darmeveil
URL:https://pretalx.com/orangecon-2026/talk/WFEZDZ/
END:VEVENT
END:VCALENDAR