While the full program is still being shaped, here’s a preview of the kinds of talks you will see this year:

• The AI Frontier: We're moving beyond the hype to look at pwnable AI agents, mapping the fragile dependency webs in ML, and building local gates to kill false positives in security scans.

• Offensive Tactics & Threat Hunting: Expect deep dives into weaponizing DNS TXT records for fileless attacks, practical TLS exploitation and real-world case studies on Interlock Ransomware.

• Privacy & Sovereign Capability: Our sessions explore digitally resisting authoritarian regimes, the security implications of a "post-ownership" world, and how Australia can protect its engineering talent from state-sponsored recruitment.

• Critical Infrastructure & Engineering: Learn system design lessons directly from Ukraine’s frontline and how to verify OT remote access before it ever touches the plant.

• Threat Intelligence: Go behind the scenes of OSINT platforms for Telegram and the mechanics of taking down over 20,000 scams.

Whether you are here for the Cloud & DevSecOps breakthroughs, Hardware/IoT hacking, or the latest in Security Automation, there is a seat for you. BSides is about the community, the "un-conference" spirit, and the technical deep dives you won't find anywhere else.

Be prepared to hear professionals and passionate security:

• Technical Deep Dives

• Real incident response lessons learned

• New research of experimental work

• Offensive or defensive techniques

• Engineering secure systems

• Practical demonstrations or tooling

• Honest discussions about what work and what didn’t