Think your organization is locked down? Think again. Even without breaching your firewall, attackers can gather a surprising amount of intel just by using publicly available information. This session dives into the world of Open-Source Intelligence (OSINT) and how hackers use it to build attack strategies without ever touching your internal systems.

We’ll explore how data from your website, job postings, social media, metadata, DNS records, GitHub repos, and even Google searches can be pieced together to map your digital footprint. You’ll see real-world examples of how seemingly harmless information, such as employee roles, email naming conventions, and forgotten subdomains, can provide attackers with everything they need to craft phishing emails, bypass security questions, or find vulnerable infrastructure.

This talk is ideal for IT professionals, security teams, and leadership looking to understand their organization’s public exposure from an attacker’s perspective. We’ll walk through simple, free OSINT tools and techniques you can use to audit your own organization and show you how to reduce your attack surface before someone else takes advantage of it.

Don’t wait for an incident to find out what the internet knows about you. Join us to learn how to spot and seal those digital leaks before they become real-world threats.