• Marek Sušický
• April 5, 2025
• No Comments

At the end of the week, the relatively new BSides Prague 2025 conference took place. This was the second year, and we must admit that we did not participate in the first year. ( But some of the 2024 lectures are available here: https://www.youtube.com/playlist?list=PLydF1lVc7uqYe7-6k8vP2XEdqYrN36M0C )

The organizers chose an interesting place, many Prague residents have probably never heard of Gabriel Loci. The opening day started with a slightly depressing lecture by Ondřej Vlček (ex-Avast), who emphasized the constantly worsening situation with vulnerabilities and the accelerating world thanks to AI. The second day started with an unforgettable lecture on ransomware groups by Vangelis Stykas.

We were in the main hall for the whole conference, and there were also workshops in the side rooms. What do we take away from the conference? A very nice idea of finding vulnerabilities in image libraries from Emil Lerner, insight into how EDR tools work from Jan Marek, the aforementioned ransomware talk, and much more, such as strange DNS records, wild microsoldering, using acupuncture needles to reach connectors, and much, much more.

The organizers did a good job with only minor buts: for next year it might be nice to make the entrance fee more expensive and provide more food/lunch, and the venue was beautiful, but from an ecological point of view, heating the space with propane burners was rather unfortunate.

We look forward to next year!