The largest annual hacking and cybersecurity conference in Central and Eastern Europe, DefCamp, will hold its 14th edition at the Palace of Parliament from November 28 to 29. A real demonstration highlighting the effectiveness of public information and its role in assisting official investigations to find missing individuals will be included for the first time.
This year, DefCamp organizers plan to place a special focus on teaching and the application of practical knowledge in order to promote the development of future cybersecurity specialists. Over the course of the two-day event, which is a part of the Hacking Village, DefCamp will host a number of educational activities and live hacking competitions in addition to expert-led presentations on trends and innovations. This will allow experts and enthusiasts to actively contribute to the security of commonly used applications in a safe and completely legal environment.
Among them are the DefCamp Capture the Flag (D-CTF), the largest CTF competition in Central and Eastern Europe, which attracted nearly 800 teams from 92 countries in its qualifiers, up 30% from 2023, as well as the Trace Labs OSINT Search Party CTF, the Adobe Live Hacking Event where participants can discover vulnerabilities in real Adobe software products, The Vulnerability Vault, and 13 other initiatives.
Over 2,000 cybersecurity experts and professionals from around the world are expected to attend the DefCamp 2024 conference in Bucharest to discuss the latest trends, emerging challenges, and solutions in cybersecurity. While the event’s competitions and activities have always focused on developing skills and pushing boundaries, this year’s edition will offer participants the chance to make a real difference and directly impact the lives of those in need.
In partnership with local authorities, the Trace Labs OSINT Search Party CTF will provide a unique experience where teams of ethical hackers will use OSINT (Open Source Intelligence) techniques to help locate missing people. This Capture the Flag (CTF) type of competition is not just a cybersecurity challenge or technical exercise, but a real mission: the information collected by participants, who analyse public online data to identify relevant clues to real missing persons cases, can support official investigations and bring hope to families searching for their loved ones.
“Each edition of DefCamp has fostered our growth, both as professionals and as individuals, helping us to build an extraordinary community united by a shared drive for knowledge and innovation. With the rapid pace of technological change requiring closer collaboration between governments, private companies and research institutions, DefCamp provides an ideal framework for sharing knowledge and resources among all stakeholders. As society becomes increasingly dependent on digital technologies, public education and awareness of the risks and ethical implications associated with AI, quantum computing and other advanced technologies is essential. Meanwhile, the ongoing evolution of regulations such as GDPR, DORA, the AI Act and the NIS 2 Directive continue to shape cybersecurity priorities, requiring professionals to navigate complex compliance requirements while protecting sensitive data. The balance between privacy and security is becoming increasingly challenging. DefCamp plays a key role in preparing professionals for these challenges by providing real-world scenarios through hands-on activities and workshops”, Andrei Avădănei, Founder of DefCamp, explained.
A ‘Hands-on’ Opportunity
The Adobe Live Hacking Event is a hands-on opportunity to see how technology, ethics, and innovation come together to make a real impact on digital security. This bug bounty-type competition challenges participants to identify vulnerabilities in Adobe products in real time within a set timeframe. The event provides valuable insight into how ethical hackers help secure software used by millions of users. Participants will also have the opportunity to work directly with the Adobe team to discuss proposed security solutions and further strengthen online security.
Put theory into practice with The Vulnerability Vault competition, organized by the young team at Pentra, an innovative cybersecurity start-up recently funded by Innovation Labs. This competition not only tests entrants’ pentesting skills, but also demonstrates the effectiveness of their app’s automatically generated reports. The contestants have a clear goal: to find and document as many vulnerabilities as possible.
With Pentra’s AI-powered platform, which automates report generation based on context gathered during testing, participants can focus solely on identifying vulnerabilities and leave the documentation to the technology. The competition provides a hands-on, interactive experience tailored to cybersecurity professionals, enthusiasts, and beginners alike, helping them to build their skills and explore the benefits of automated reporting.
A total of 17 competitions and educational activities within the Hacking Village, many hosted on the CyberEDU education platform, will allow participants to test their skills in an applied environment. These activities are designed not only to develop technical skills, but also to foster an informed and resilient community.
The main event, DefCamp Capture the Flag (D-CTF), attracted nearly 800 teams this year – a 30% increase from 2023 – representing 92 countries. Of these, 16 teams qualified for the live final on 28 November, with participants expected from Romania, as well as Italy, Japan, South Korea, Norway, the Vatican, India, Croatia and France.
Emerging Technologies and Attack Trends
Top experts from around the world will also lead discussions on emerging technologies and attack trends, ensuring that attendees stay abreast of the latest industry developments and best practices. DefCamp will consolidate its position as the premier platform for knowledge exchange. For the first time, Mathew Caplan will take the stage at this year’s conference to discuss the security risks associated with third-party relationships, which are becoming increasingly common as services are outsourced. He will address the impact that cyber attacks on external partners can have on the integrity of organizational systems and the importance of effectively managing supply chain risk.
In addition, Youngjoo Lee will examine how certain browser security flaws can be exploited by attackers to bypass protections, allowing unauthorised access to sensitive information with a single click. Samantha Humphries will also discuss the challenges and limitations of the attribution process for cyber attacks, emphasizing the importance of identifying those responsible and how this process can sometimes distract from essential solutions.
”DefCamp is a vital platform for connecting cybersecurity professionals and fostering collaboration within the community. At Data Core Systems, we are honored to support this year’s event as a partner, reinforcing our commitment to strengthening cybersecurity through shared expertise and innovation. Together, we can tackle the challenges of securing the digital future”, Cristian Mănescu, CEO of Data Core Systems, stated.
“Over the next five years, cybersecurity professionals will face significant challenges, including managing advanced persistent threats (APTs) and state-sponsored attacks, AI-driven attacks, securing emerging technologies such as 5G, IoT and quantum computing, and addressing the talent shortage in the field. In this context, DefCamp fosters a community where professionals, researchers, and industry leaders can share information and build critical partnerships to stay ahead of sophisticated attacks. The event has a strong focus on emerging technologies and future threats, with dedicated sessions on AI, quantum computing, IoT security and 5G, preparing attendees for the next wave of challenges in the field. In short, DefCamp provides cybersecurity professionals with the tools, knowledge, and community they need to stay at the forefront of the industry and tackle future challenges”, Andrei Avădănei concluded.