The Evolution of macOS Security – Csaba Fitzl

Over the years Apple has been stepping up its game in security. There are many talks focusing on key memory corruption exploit mitigations, but logic bug prevention is often dismissed; however, it is just as important.

In this talk, I try to fill that gap and will go over some key macOS security features that prevent or make it harder to exploit logic vulnerabilities. We will see how the basic features have improved since macOS Mojave and what other smaller, but large-impact mitigations were added.

This talk will be held in English.
 

Malware “Powered by AI”: Insights and Outlooks of early AI Malware - Candid Wüest

It is not surprising that GenAI is able to create malware. But how suitable is it to control complex autonomous malware? The first metamorphic AI-based samples like LameHug and PromptLock emerged in 2025; however, so far with negligible impact.

In this talk, I discuss the insights about the first real agentic malware samples like Yutani Loop and what this means for the defenders. Multi-agent and multi-model malware already exists in the laboratory – but what advantages can it actually grant attackers? Can malware autonomously choose its goals, hide from local EDR solutions and learn from previous mistakes?

The goal of this presentation is to show the participants what autonomous malware is actually able to do, where its advantages and disadvantages lie, what is pure media hype – and of course how to protect oneself against this new type of threat.

This talk will be held in German.
 

Cybersecurity is exactly like soccer (Football) – John Stoner

Cybersecurity is exactly like soccer (Football)” uses football analogies to break down the complexity of cyber roles, teams, and strategies. With over 50 cybersecurity specializations, from hyper-focused experts to adaptable generalists, this talk compares them to players like Leroy Sané (a pacey specialist winger) and Joshua Kimmich (a versatile midfield generalist). Are you a star striker for a Top Team (at Bayern Munich), or an intern breaking through at a scrappy startup (like a youth product at St. Pauli)? Just like in football, tailored training, smart team-building, and understanding player attributes are critical, your goalkeeper (Cloud Engineer) doesn’t train like your holding midfielder (Threat Intel Analyst). Managers need to assess their roster, decide whether to grow talent (youth academy) or buy expertise (transfer market), and define a strategy, possession play, pressing, or a counter-attacking setup? With humor and insight, this talk explores hiring, development, and cybersecurity teamwork through the beautiful game, no yellow cards and NO VAR, just lessons from the Soccer (Football) world and the cyber world."

This talk will be held in English.