A system under tight surveillance. Millions of dollars at stake. And a single line of code, quietly slipped in, that changed everything. This isn’t a movie plot—it’s the real story of a hack that defied probability. How could a subtle modification, invisible at first glance, turn a random number generator into a carefully orchestrated winning machine?

In this session, we’ll go behind the scenes of a remarkable technical exploit and uncover how, for us as developers, deep knowledge of a system can become its most critical weakness. We’ll explore the lessons we can take away to protect our applications from malicious changes—whether they come from insiders, supply chain attacks, or even a rogue AI agent.

The point of this talk is to dig into the american lottery hack which allowed a developer to trick results and pocket millions of dollars. The goal is to draw attention to code safety and mecanisms that can allow us to avoid such a scenario: peer reviews, SAST and SCA analysis, etc.