Artificial intelligence is fundamentally changing the cyber threat landscape: attackers are using AI for automated phishing campaigns, deceptively realistic deepfakes and highly personalised social engineering campaigns.

The presentation highlights how organisations can effectively secure their own AI systems whilst simultaneously developing employees into a strong ‘human firewall’.

This presentation outlines what has actually changed in regulatory terms, who the new requirements affect, and why information security and risk management structures in particular must now be demonstrated to be robust.

From social engineering and malware infections to ransom demands and perpetrators who have been caught, this session reveals what goes on in this shadowy world.

What and who are we actually defending our data against? How does a cybercriminal choose their victims? Philipp Frenzel and Merlin Stottmeister offer an insight into the depths of the darknet.

The presentation provides an overview of the phenomenon of doxing and highlights risks as well as possible protective measures for organisations and individuals.

This presentation explains why traditional full-scale recoveries following cyber attacks are often too slow and risky in practice. Instead, it introduces the ‘Minimum Viable Company’ approach, whereby businesses specifically prioritise only business-critical systems in order to quickly regain operational capability.

Using concrete examples, the presentation explains how a secure restart of the IT and production environment can be prepared in a structured manner.

What do canaries, Alan Turing, Star Trek and cyber security have in common? This talk will explain the connections and, in particular, why you absolutely must keep canaries in your company.

This presentation examines the current attack vectors targeting AI agents, the resulting risks to IT security, and how these can be addressed.

Starting with a brief overview of social and geopolitical developments, we will first examine the ‘classic’ threats to digital sovereignty: cybercrime and espionage. We will then turn to home-grown problems such as underfunded open-source software, the monocultures of American tech conglomerates, global dependencies, and Europe’s role in the age of AI.

he presentation highlights the similarities, differences and synergies between the various reporting regimes, as well as ways to make them more effective. It also looks ahead to upcoming developments – such as those brought about by the Cyber Resilience Act (CRA) or the Cyber Defence Act.

Modern control centres face the challenge of considering physical security systems and cyber security requirements together within an increasingly networked infrastructure. The presentation demonstrates how integrated PSIM platforms can help consolidate information from building, security and IT systems into a single situational overview, thereby improving responsiveness and situational awareness.

This presentation demonstrates why, although traditional cybersecurity training courses impart knowledge on phishing, social engineering or password security, they often fail to lead to secure decisions in day-to-day work.