βš™οΈ Technical Spotlight: New Session at BSides Luxembourg 2026

☁️πŸ’₯ π—–π—Ÿπ—’π—¨π—— π— π—œπ—¦π—–π—’π—‘π—™π—œπ—šπ—¨π—₯π—”π—§π—œπ—’π—‘π—¦: π—£π—’π—žπ—˜ π—£π—’π—žπ—˜, 𝗕π—₯π—˜π—”π—–π—› – Kat Fitzgerald ( @rnbwkat ) πŸ”β˜οΈ

Cloud breaches aren’t going awayβ€”they’re evolving.

Forget the classic β€œpublic bucket” mistakes. In 2026, real-world breaches are driven by over-privileged identities, risky SaaS integrations, forgotten environments, and insecure defaults in AI and Kubernetes. These aren’t obvious misstepsβ€”they’re systemic risks hiding in plain sight.

This talk breaks down the modern hierarchy of cloud misconfigurations based on recent breach data, then shifts the focus from reacting to preventing. Using Policy as Code (PaC), security becomes proactiveβ€”blocking risky deployments before they ever reach production.

You’ll also explore the Toxic Trilogy: assets that are publicly exposed, highly privileged, and critically vulnerable. When these overlap, breaches aren’t just possibleβ€”they’re predictable.

Kat Fitzgerald ( @rnbwkat )is a Chicago-based cybersecurity professional with a passion for cloud security, OSS, and creative defensive strategies. Known for blending technical depth with a unique personality (and a certain opinionated flamingo), Kat brings real-world insights into modern cloud risks and how to stop them before they start.

πŸ“± Want to easily navigate all talks, villages, and stages?
Check out the official schedule on Hacker Tracker:
https://hackertracker.app/schedule?conf=BSIDESLUX2026

πŸ“… Conference Dates: 6–8 May 2026 | 09:00–18:00
πŸ“ 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
πŸ“… Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg2026 #CloudSecurity #Misconfiguration #Kubernetes #PolicyAsCode #DevSecOps #CyberSecurity