Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The API attack surface is rapidly expanding, with 50% of known exploited vulnerabilities now API-related (CISA). Security leaders must prioritize API security, implement real-time monitoring, and foster cross-team collaboration to stay ahead of threats. Strengthen your defenses now!

Speakers: Jack Poller, Principal Analyst at Paradigm Technica Ev Kontsevoy, CEO & Co-Founder at Teleport The Identity Attack Era: Is Your Infrastructure Secure? Cyberattacks are evolving, and identity compromise is now the primary tactic used by adversaries to infiltrate organizations. With credential theft, phishing, and social engineering driving most breaches, traditional security measures struggle to keep up. At the same time, the complexity and scale of modern infrastructure—spanning distributed systems, multi-cloud access, and AI-driven operations—have vastly expanded the attack surface.

As cyber threats grow in sophistication, organizations must evolve to stay ahead. This session focuses on preparing for future challenges by adopting strategies that prioritize adaptability, proactive defense, and a robust security posture.

Join Pawel Staniec, CTO of Catalogic Software, in this detailed demonstration on how to install and utilize the CloudCasa Rancher extension for seamless Kubernetes backup and recovery. T his video guides you through configuring your API key, deploying the CloudCasa agent, and managing backups directly from your Rancher or Rancher Prime dashboard. Whether you're a seasoned admin or new to Kubernetes, this tutorial ensures your data is protected efficiently and effectively.

What happens when hackers weaponize Microsoft Copilot? In this eye-opening session, Inbar Raz takes a red-team-level deep dive into how attackers can abuse Copilot to exfiltrate data, bypass security controls, and even social engineer victims—automated by AI. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.

A Web Application Firewall (WAF) protects websites from cyber threats like SQL injection, XSS, and DDoS attacks by filtering and blocking malicious traffic.

How can organizations make DevSecOps accessible and effective for every team? Platform Engineering is the answer. In this talk, Erik explores how developer portals and golden paths help streamline security, automate remediation, and create scalable, secure development workflows without adding friction. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.

As AI reshapes industries, it also introduces a wave of emerging security risks—some known, others yet to be discovered. In this DevSecNext panel discussion, experts from engineering, cloud business, venture capital, and security innovation dive deep into the intersection of AI disruption and the evolving threat landscape. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.

Software supply chain attacks are on the rise, exploiting gaps in CI/CD pipelines to introduce malicious code. In this talk, Yonit Gruber-Hazani dives deep into common CI/CD vulnerabilities and how to mitigate them using the SLSA (Supply-chain Levels for Software Artifacts) framework. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.

What is GitHub Copilot's NEW Agent Mode?