Fwd:cloudsec
fwd:cloudsec
fwd:cloudsec is a non-profit conference on cloud security. At this conference you can expect discussions about all the major cloud platforms, both attack and defense research, limitations of security features, the pros and cons of different security strategies, and generally the types of things cloud practitioners want to know, but that don't fit neatly into a vendor conference schedule.
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
The domain takeover challenge: Detecting and defeating it at scale - Ramesh & Eli F 02.06.2026 40:33
Speaker: Ramesh & Eli F Talk: Managing tens of thousands of DNS records across multiple cloud providers and registrars introduces significant risk—especially when bug bounty reports for domain takeover vulnerabilities begin to surge. Scaling remediation is both critical and complex. In this talk, we share how our security team built a cloud-native, event-driven automation system that delivered...
Release the Kraken: Putting Tentacles on Your AI "Paved Road" - Sakina Mithani 02.06.2026 20:59
Speaker: Sakina MithaniTalk:Agentic coding tools are the new frontier of developer velocity…but giving an autonomous agent access to your proprietary IP and an internet connection? Sounds like a data exfiltration nightmare. In the world of AI-assisted engineering, we found that exfiltration is often just one clever prompt injection away. This talk presents a production-hardened architecture built...
Pattern matching and head scratching with our new friends The Neoclouds - Matthew Gladney 02.06.2026 21:24
Speaker: Matthew Gladney Talk: Neoclouds are here whether we planned for them or not - and the security assumptions we carry over from the hyperscalers don't transfer cleanly. The IAM ergonomics and audit trails we'd taken for granted aren't a given. How are secrets stored? If you hand an AI agent an access key, can you scope it to read-only - and can you even tell afterward which acti...
Stop Building Custom Agent Identity - Sarah Cecchetti 02.06.2026 43:48
Speaker: Sarah Cecchetti & Clawdrey Hepburn (AI) Talk: Your agents need identity infrastructure. Real identity infrastructure — not a service account with a sticky note that says "this is the AI." Right now, every team building agentic systems is solving the same problem independently: how does an agent authenticate, how do you express delegation, how do you audit what it did and on...
Stop Training Engineers to Ignore You: Cloud Security Alerting at Scale - Paul Benoit 02.06.2026 19:49
Speaker: Paul Benoit Talk: Sending cloud security alerts at scale is an absolute minefield. False positives, wrong attribution, alert floods, missing context, stale findings, and unclear remediation expectations burn trust with the engineers who have to respond. The cloud makes it worse. Ownership is fragmented across platform, app, and data teams, resources are ephemeral, and tools that work fine...
In git we trust: Defending Lovable projects from malicious code attacks at scale - Marcus Hallberg & Samuel Kelemen 02.06.2026 24:39
Speaker: Marcus Hallberg & Samuel Kelemen Talk: This talk covers how the Lovable security team identified and tracked a global attack attempted to compromise our users' Github projects with malicious code. We analysed millions of Lovable projects across hundreds of thousands of customers and tracked the campaign through its different phases meanwhile we built tools to intercept and prevent...
What Building an AI Worm Taught Us About Stopping One - Kinnaird McQuade 02.06.2026 25:54
Speaker: Kinnaird McQuade Talk: In virology, gain-of-function research means deliberately making a pathogen more dangerous so you can study how to stop it. We took the same approach with AI coding agents and fine-tuned guardrail-less models - and built an AI worm. Unlike prompt injection research that attacks AI systems, this worm uses the AI agent as the attack engine itself. We give it lean prom...
OCInferno: An Offensive Security Toolkit for OCI - Scott Weston 01.06.2026 21:39
Speaker: Scott Weston Scott is a Labs Researcher at NetSPI. He has performed work in the past regarding open source tooling for AWS as well as GCP. He has spoken at past conferences including fwd:cloudsec and the Defcon Cloud Village. He has published a tool called gcpwn for GCP enumeration and pentesting. He is originally from the Southern California area and is currently working out of Minnesota...
Zapocalypse: Compromising every Zapier user through a Lambda memory leak - Yair Balilti 01.06.2026 29:33
More on Zapocalypse: https://www.token.security/zapocalypse Slides: https://docs.google.com/presentation/d/1ex96KlF1vPJboHeVoRXg4hb5hUJ9h3QIvb_DQ8IJ0Kk/edit?usp=sharing Speaker: Yair Balilti I’m Yair Balilti, Security Research Team Leader at Token Security. With over 8 years of experience in vulnerability research and offensive security, I now lead my team in uncovering vulnerabilities and securin...
Sub:jugation - Hijacking Cloud Identities by Recycling Namespaces in Global OIDC Issuers - Tal Skverer 01.06.2026 20:03
Speaker: Tal Skverer Tal holds an M.Sc. in Computer Science and has a decade of experience in reverse engineering, web hacking and cryptography. Tal is the Head of Research at Astrix Security, where he leads security research focused on non-human identity and AI agents. His work spans identity security, vulnerability discovery and threat detection. Tal has presented at DEF CON (2023, 2025), RSA Co...
Push-Pull-Pwn: Hacking the Cloud through Container Registry Poisoning - Hillai Ben-Sasson & Nir Ohfeld 01.06.2026 23:01
Speaker: Hillai Ben-Sasson & Nir Ohfeld Hillai Ben-Sasson (@hillai) is a Security Researcher based in Israel. As part of the Wiz Research Team, Hillai specializes in research and exploitation of web applications, application security, and finding vulnerabilities in complex high-level systems. Hillai is a frequent speaker in security conferences and has been recognized in MSRC's Most Valuab...
2026 Introduction - Patrick Sanders 01.06.2026 8:33
An introduction to fwd:cloudsec North America 2026 by Patrick Sanders
Defenders hate it! Compromise vulnerable SaaS applications with this one weird trick (Eric Woodruff) 01.07.2025 49:03
https://youtu.be/rQxc9N4gBqA Speaker: Eric WoodruffThroughout his 25-year career in the IT field, Eric has sought out and held a diverse range of roles. Currently the Chief Identity Architect for Semperis; Eric previously was a member of the Security Research and Product teams. Prior to Semperis, Eric worked as a Security and Identity Architect at Microsoft partners, spent time working at Microsof...
Putting Workload Identity to Work: Taking SPIFFE past day 0 (Dave Sudia) 01.07.2025 25:39
https://youtu.be/oHlPGzpFT_c Speaker: Dave SudiaDave Sudia went from Platform Engineering to Product Engineering; in both roles he has had to stand up infrastructure in repeatable but constantly evolving architectures, taking into account usability, security, and scalability. He is the world's biggest fan of Infrastructure-as-Code. By day you'll find him enabling developers to do their bes...
Happy Little Clouds: Painting Pictures with Microsoft Cloud and Identity Data (Matt Graeber) 01.07.2025 44:49
https://youtu.be/nwYzVTL8Y4Y Speaker: Matt GraeberMatt is a threat researcher focused on detecting Microsoft cloud and identity threats. Coining the term and establishing the strategy of "living off the land" in 2013 along with Chris Campbell, he has an extensive history of identifying ways to abuse native functionality in Microsoft products. Matt is dedicated to helping make defense acc...
Introducing GRC Engineering: A New Era of AWS Compliance (AJ Yawn) 01.07.2025 27:19
https://youtu.be/nEM7z266D6o Speaker: AJ YawnAJ Yawn is an experienced cybersecurity leader specializing in cloud compliance, governance, risk, and compliance (GRC) engineering, with nearly 15 years of experience. AJ currently serves as Director of GRC Engineering at Aquia, leading innovative approaches to compliance automation and cloud security. He previously founded ByteChek, a compliance autom...
Staying Sneaky in the Office (365) (Christian Philipov) 01.07.2025 25:07
https://youtu.be/l5lpIF_QZCE Speaker: Christian PhilipovChris is a principal security consultant and leads the specialist services within Reversec. As part of his day to day he leads the global team that deals with various different types of engagements of both a transactional and more bespoke nature. Chris specialises in Microsoft Azure predominantly with GCP and AWS as an additional background....
Not So Secret: The Hidden Risks of GitHub Actions Secrets (Amiran Alavidze) 01.07.2025 21:46
https://youtu.be/k3DBur7iEHM Speaker: Amiran AlavidzeAmiran is a passionate product security professional with over 20 years of experience spanning systems engineering, security operations, GRC, and product and application security. As a security engineering leader, he champions a pragmatic, scalable approach to security - where collaboration between security, developer, and platform teams turns s...
Trust Issues: What Do All these JSON files actually mean? (David Kerber) 01.07.2025 24:25
Speaker: David KerberDave is an engineer and longtime AWS practitioner with a focus on IAM and AWS security tooling. He’s led product and engineering teams at startups and billion-dollar companies, raised millions from VCs, built two CSPMs, and now consults on AWS security for Fortune 500 companies. He maintains open-source projects in the AWS IAM space and is currently obsessed with perfecting hi...
Inviter Threat: Managing Security in a new Cloud Deployment Model (Meg Ashby) 01.07.2025 25:37
https://youtu.be/ilnOvSV0QtY Speaker: Meg AshbyMeg does cloud security for Alloy, a fintech in NYC. Previous to Alloy she worked at Marcus by Goldman Sachs, but that was way less fun. At Alloy, Meg does IAM, networking, data, and kubernetes security (and everything else related or tangentially-related to AWS & security). When detached from her computer, Meg dances and is part of a ballet perfo...
I Didn’t Register for This: What’s Really in Google’s Artifact Registry? (Moshe Bernstein) 01.07.2025 24:49
https://youtu.be/hHe9cKfSfqI Speaker: Moshe BernsteinMoshe is a Senior Security Researcher specializing in cloud vulnerability research at Tenable Cloud Security. With nearly a decade of experience in cybersecurity, Moshe has developed a strong focus on network and operational security, web vulnerability research, and cloud infrastructure security. Talk:We scanned all of the Google-owned container...
No IP, No Problem: Exfiltrating Data Behind IAP (Ariel Kalman) 01.07.2025 21:43
https://youtu.be/g-XCNobgvaM Speaker: Ariel KalmanAriel Kalman is a cloud security researcher based in Israel, actively engaged in cloud-related security research at Mitiga. With a specialization in application security, Ariel excels in discovering new attack vectors associated to cloud environmentTalk:Google Cloud’s Identity-Aware Proxy (IAP) is often seen as the final gatekeeper for internal GCP...
Rebuilding ROADRecon for the Modern Entra Environment (Thomas Byrne) 01.07.2025 24:09
https://youtu.be/dTUeAhzmIu8 Speaker: Thomas ByrneThomas is a security consultant at Reversec. He has experience in a range of areas including application, network and cloud security. He focuses his time mainly on Azure, DevOps and researching cloud specific vulnerabilities outside of work. Talk:In the ever-evolving landscape of cybersecurity, tools that help security professionals enumerate and u...
Inside Microsoft's Battle Against Cloud-Enabled Deepfake Threats (Alessandro Brucato) 01.07.2025 22:32
Speaker: Alessandro BrucatoAlessandro is a senior Threat Research Engineer at Sysdig, working on cloud security. His research mainly focuses on cloud threats and supply chain attacks. In addition to research, he’s keen on bug bounty programs and has received rewards from several large companies. Alessandro is also a contributor to Stratus Red Team, a tool to emulate offensive attack techniques in...
Patience brings prey: lessons learned from a year of threat hunting in the cloud (Greg Foss) 01.07.2025 25:14
Speaker: Greg FossGreg Foss is a seasoned cybersecurity leader with over 15 years of experience spanning threat research, security operations, and offensive security. As the Engineering Manager of Threat Detection Engineering at Datadog, he leads a team of elite threat hunters and detection engineers, developing cutting-edge defenses against sophisticated cloud-native intrusions by nation-state an...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.