BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//program.why2025.org//why2025//URLM9N
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-why2025-SELH79@program.why2025.org
DTSTART;TZID=CET:20250809T190000
DTEND;TZID=CET:20250809T195000
DESCRIPTION:Compromising a well-protected enterprise used to require carefu
 l planning\, proper resources\, and ability to execute. Not anymore! Enter
  AI.\n\nFrom Initial Access to Impact and Exfiltration. AI is happy to obl
 ige the attacker. In this talk we will demonstrate access-to-impact AI vul
 nerability chains in most flagship enterprise AI assistants: ChatGPT\, Gem
 ini\, Copilot\, Einstein\, and their custom agent . Some require one bad c
 lick by the victim\, others work with no user interaction – 0click attac
 ks.
DTSTAMP:20250731T184522Z
LOCATION:Delphinus
SUMMARY:0click Enterprise compromise – thank you\, AI! - Inbar Raz
URL:https://program.why2025.org/why2025/talk/SELH79/
END:VEVENT
END:VCALENDAR