Sean Satterlee’s CYBR.HAK.CON. presentation used the deadly Therac-25 radiation overdoses to expose how modern connected medical devices still repeat many of the same dangerous cybersecurity and safety failures.
Featured
Stephen Cravey’s “A Brief Introduction to Cognitive Warfare” explores how modern influence operations exploit human psychology, identity, emotion, and social dynamics much like attackers exploit vulnerabilities in technical systems.
Built by the team behind HOU.SEC.CON. (now CYBR.SEC.CON.) and partnered with renowned penetration tester Phil Wylie, CYBR.HAK.CON. aims to reconnect cybersecurity conferences with their grassroots hacker culture through hands-on training, community collaboration, and practitioner-first experiences.
Sponsored
Community Corner
See allFrom the CYBR.SEC.Community
CYBR.SEC.Media 2.0: How CYBR.SEC.Community Is Building a More Human Cybersecurity Media Platform
The new version of CYBR.SEC.Media puts community voices, practitioner insight, podcasts, videos, and visual storytelling front and center.
The Vulnpocalypse Isn’t Your Problem
But it might be your company’s problem.
One Sector, A Million+ Data Environments
What a nonprofit collects, captures, manages, and is responsible for protecting isn't uniform. And in many cases, the sensitivity of that data maps directly back to their unique mission in ways that should fundamentally shape how we approach security for these organizations.
Cybersecurity Is More Than Keyboards and Dashboards
Cybersecurity is more than keyboards, dashboards, and job titles. At CYBR.SEC.Community, we’re researching the broader ecosystem of roles, skills, and people that make this community work—and why that broader view should encourage more people to find their place in it.
Stop Securing Nonprofits. Start Securing Their Missions
Cybersecurity treats nonprofits as a single category, despite vast differences in mission, data sensitivity, and risk. From animal shelters to domestic violence services to hospitals, each faces a distinct threat landscape.
Latest Articles
See all
Medical Device SecurityVulnerability Management
Highlights from CYBR.HAK.CON. 2026
Among the topics: Cognitive warfare and medical device mayhem.
Incident Response
Manufacturing: NIST Wants to Upgrade the Incident Response Playbook
NIST releases its first concrete OT recovery playbook and it looks nothing like an IT runbook. The document is formally aimed at manufacturing, but the problem it addresses is structural across every operational technology environment where stopping production has physical consequences.
CYBR.HAK.CON.
Shall We Play a Game? WOPR a Special Guest at CYBR.HAK.CON.
A replica of WOPR, built for HouSecCon 2015's WarGames theme, has become a fan favorite at CYBR.SEC.Community events -- a fixture that taps into the hacker nostalgia and cautionary spirit of the 1983 film.
AI SecurityVulnerability Management
AI Scanning's Hidden Tax: $128K in Triage Before a Fix
AI security scanners promise to reduce AppSec workload, but Contrast Labs' testing shows they systematically multiply it, turning a $315 API fee into an estimated $128,000 triage burden, before fixing a single vulnerability.
vulnerabilities
NGINX Rift: Eighteen Years in Plain Sight
An 18-year-old heap overflow in NGINX's rewrite engine is now under active exploitation. Patches exist, but attackers moved faster than most organizations can respond.
Alert FatigueMental HealthVulnerability Management
Cognitive Warfare Has Entered the SOC. What it is, How to Respond
Information overload, cognitive warfare, and nonstop digital noise are turning human attention into a vulnerable attack surface.
Penetration TestingVulnerability Management
Pentesting Theater: When the Pentest Report Lands, and the Vulnerabilities Remain
Organizations spend real money on penetration testing and too often walk away afterwards with the same vulnerabilities they started with. The test happened. The report landed. The checkbox got checked. Nothing significant has changed.
Podcasts & Video
See all
Podcast
CYBR.HAK.CAST Episode 14: Tim Medin
In this episode, hosts Michael Farnum and Phillip Wylie sit down with penetration tester and Red Siege founder Tim Medin to talk about turning attacker tactics into practical defensive wins.
Video
OT Resilience in Action: A Framework for Utilities
Podcast
CYBR.HAK.CAST Episode 13: Winn Schwartau
Winn Schwartau argues that the biggest threat facing defenders isn’t just technical, but cognitive: overwhelming information flows that push humans into “mental DDoS.” He has introduced the concept of “critical ignoring” as a prerequisite to critical thinking.
Video
Enhancing OT Cybersecurity in Maritime Environments
Video
The Executive Imperative: Acting Decisively When You Need to Defend OT
Video
Agentic AI in OT: The Ultimate Insider Threat
Video
From Static Controls to Dynamic Risk: How OT Cybersecurity Risk is Finally Becoming Actionable
Sponsored
Sponsored