A Hot Security Conference On Cold Iceland

When I think about Iceland I do not immediately think about a place where top IT-security researchers from all over the world meet once a year to present and discuss some of the most recent and relevant security topics, but this is actually the case. It is the second year that the Nordic Security Conference has taken place here on Iceland. It is quite funny because when I’m in Las Vegas for DEFCON and BLACKHAT I always complain about the insane heat, and during the Nordic Security Conference the weather is terrible. When can someone arrange a conference at a location where it’s not insanely warm or cold?

I’ve had the great opportunity to present at both events. This year I gave a presentation about one of the weakest links in IT-security; the human factor. For over 6 months I have done several research projects, some of them on my own, and some together with other security researchers such as Martin Jartelius from Outpost24. We tried to answer the question: “How easy is it to hack a country?” by performing various social engineering experiments, with great success.

Syndis, an Icelandic security firm is the brain behind the security conference, and they have done a great job inviting amazing researchers from all over the world, such as: Chris Valasak, Don Bailey, Katie Moussouris, Stephen Watt, Chris Eng, Allison Miller and many more. If you are interested in the agenda, check it out here:


Parallel to the Nordic Security Conference the University of Reykjavik also arranged a hacking/CTF competition, which was extremely entertaining. While the contestants were going crazy and hacking they had provocative and entertaining interviews with the security researchers.


What makes this event such a great success is the size of the event. This year there were about 200 participants. This gives everyone the opportunity to network and talk to each other. After a long day of presentations and discussions the organizers arranged very good social events, which allowed everyone to show off their other skills. This year one of the speakers, who call himself Dr. Raid, did some crazy freestyle rapping!


This is a Conference I can highly recommend to anyone who likes awesome research and terrible weather 🙂

A Hot Security Conference On Cold Iceland

Your email address will not be published. Required fields are marked *



LuminousMoth APT: Sweeping attacks for the chosen few

We recently came across unusual APT activity that was detected in high volumes, albeit most likely aimed at a few targets of interest. Further analysis revealed that the actor, which we dubbed LuminousMoth, shows an affinity to the HoneyMyte group, otherwise known as Mustang Panda.

WildPressure targets the macOS platform

We found new malware samples used in WildPressure campaigns: newer version of the C++ Milum Trojan, a corresponding VBScript variant with the same version number, and a Python script working on both Windows and macOS.

Ferocious Kitten: 6 years of covert surveillance in Iran

Ferocious Kitten is an APT group that has been targeting Persian-speaking individuals in Iran. Some of the TTPs used by this threat actor are reminiscent of other groups, such as Domestic Kitten and Rampant Kitten. In this report we aim to provide more details on these findings.

Andariel evolves to target South Korea with ransomware

In April 2021, we observed a suspicious Word document with a Korean file name and decoy. It revealed a novel infection scheme and an unfamiliar payload. After a deep analysis, we came to a conclusion: the Andariel group was behind these attacks.

Subscribe to our weekly e-mails

The hottest research right in your inbox