Tickets
Agenda
Speakers
Workshops

Thursday 

Room 5 

16:20 - 17:20 

(UTC+01

Talk (60 min)

Lightning Talks 2

Lightning talks (approx 10-15 minutes each)

Application Security
Bug Bounties
Culture
Experience report
Fun

Talk 1: What my cats taught me about implementing a new framework - Inge Amdal Halvorsen
Learning a new framework is hard. So hard, in fact, that even my cats had opinions. In this talk, I’ll share the unexpected lessons I learned from installing a chip-controlled cat flap: how early adopters embrace change, how traditionalists resist, and why users will always find creative workarounds.
No previous knowledge of cats necessary.

Talk 2: Chasing Unicorns: A Lovable Security Story - Bendik Schartum Thorbjørnsen & Karim El-Melhaoui
Are the fastest unicorns and vibe-coding platforms, mostly vibe-coded? We've conducted security research into the fastest companies to become unicorn in our decade, and will present how we uncovered the same authentication vulnerability allowing us to break their multi-tenancy design and gain access to enterprise customers.

Talk 3: One shop's timing issue is another mans free dogfood - Even Tillerli
Join in a fun talk about how I accidentally did a time based attack on a big Nordic pet shop. I will touch on the events leading up to the finding, the vulnerability, the disclosure process and the end result.
This will be a non technical talk where you will leave with a fun story, knowledge on an actual vulnerability and how being patient helps.

Talk 4: Ctrl+Alt+Deceit - The Game Jam Scam - Sean Sinclair
I would have lost all of my crypto if I had any. This is a story about when I was asked to test out an indie game which turned out to be something completely different. You'll walk away from this talk with a nice reminder about the importance of "trust but verify".

Inge Amdal Halvorsen

Inge Halvorsen is a historian, philosopher, teacher, and developer. With a genuine interest in quirky and esoteric knowledge, and a penchant for diving into rabbit holes, Inge is a fountain of footnotes and fun facts. He also writes code and enjoys reading fantasy books.

Bendik Schartum Thorbjørnsen

I am a Senior Security Engineer at O3 Cyber with years of experience with hyperscalers as both an architect and a hands-on technical lead, specializing in designing and implementing security solutions for cloud-native environments.

Karim El-Melhaoui

Karim is a seasoned and renowned thought leader within cloud security. At O3 Cyber, he conducts research and development and works with our clients, primarily in Financial Industry. Karim has a background in building and operating platform services for security on private and public clouds, developing and executing a cyber security strategy for the world’s largest sovereign wealth fund, and overseeing the execution of adapting a traditional security organization to a ‘cloud operating model.’

Karim blogs at https://blog.karims.cloud

Even Tillerli

Developer gone AppSec. He found security could be fun and went with it.

Sean Sinclair

I work as a Security Engineer by day, but my background is in software development and game programming. I’m currently especially interested in AI and security.

I like digging into systems, finding what breaks, and figuring out how to make them better. Outside of tech, I’m a hobby game dev, a bit of a kitchen nerd, and always curious about how stuff works.