Program

Evaluations of Machine Learning Privacy Defenses are Misleading
Michael Aerni, Jie Zhang, Florian Tramèr
ACM CCS 2024

Privacy Attacks in Decentralized Learning
Abdellah El Mrini, Edwige Cyffers, Aurélien Bellet
ICML 2024

Multi-modal Identity Extraction
Ryan Webster, Teddy Furon
ICCV 2025

Attackers Can Do Better: Over- and Understated Factors of Model Stealing Attacks
Daryna Oliynyk, Rudolf Mayer, Andreas Rauber
IEEE SaTML 2025

Architectural Neural Backdoors from First Principles
Harry Langford, Ilia Shumailov, Yiren Zhao, Robert Mullins, Nicolas Papernot
IEEE SSP 2025

Break

SoK: On the Offensive Potential of AI
Saskia Laura Schröer, Giovanni Apruzzese, Soheil Human, Pavel Laskov, Hyrum S. Anderson, Edward W. N. Bernroider, Aurore Fass, Ben Nassi, Vera Rimmer, Fabio Roli, Samer Salam, Ashley Shen, Ali Sunyaev, Tim Wadhwa-Brown, Isabel Wagner, Gang Wang
IEEE SaTML 2025

Large Language Model guided Protocol Fuzzing
Ruijie Meng, Martin Mirchev, Marcel Böhme, Abhik Roychoudhury
NDSS 2024

YuraScanner: Leveraging LLMs for Task-driven Web App Scanning
Aleksei Stafeev, Tim Recktenwald, Gianluca De Stefano, Soheil Khodayari, Giancarlo Pellegrino
NDSS 2025

Robotic Security: Defending against Stealthy Intrusion with Cybersecurity AI PentestGPT / CAI
Pentest GPT: Evaluating and Harnessing Large Language Models for Automated Penetration Testing
Gelei Deng, Yi Liu, Víctor Mayoral-Vilches, Peng Liu, Yuekang Li, Yuan Xu, Tianwei Zhang, Yang Liu, Martin Pinzger, Stefan Rass
Usenix Security 2024
Game-theoretic APT defense: An experimental study on robotics
Stefan Rass, Sandra König, Jasmin Wachter, Víctor Mayoral-Vilches,
Emmanouil Panaousis
Journal of Computers & security, 2023

Break

FlowChronicle: Synthetic Network Flow Generation through Pattern Set Mining
Joscha Cüppers, Adrien Schoen, Gregory Blanc, Pierre-François Gimenez
CoNEXT 2024

SpAIware & More Revisited: Advanced Prompt Injection Exploits in LLM Apps and Coding Agents
Johann Rehberger
Black Hat Europe 2024