TLPBLACK at Def.Camp Bucharest
Some thoughts on DefCamp - the largest security conf in Central and Eastern Europe
TLPBLACK TeamDefCamp is Central and Eastern Europe’s leading cybersecurity conference — a hub for experts, researchers, and enthusiasts since 2011. Born as a small infosec meetup, it has grown into a major event that drives innovation, strengthens the cybersecurity community, and boosts regional cyber resilience. Taking place at the world-famous House of the People (aka House of the Parliament) in Bucharest, Romania, this event is attracting a very wide array of speakers, ranging from blue-teaming to pentesting and old good “hacking”.
The TLPBLACK team at DefCamp
This year, DefCamp 2025 took place on November 13-14 and TLPBLACK was there to meet old friends, partners, other researchers and catch up with the latest in the field.
In terms of size, DefCamp is larger than your average BSides - this year it had about 2000 participants, with talks going on simultaneously across four different streams. I found myself bouncing between track 1 and track 2, which is a nice walk; it really helps reach those daily step targets.
The setting for track 1 is pretty impressive BTW, the room looks like an opera hall, unsurprising perhaps, since it was originally designed as a theatre. This alone seats 600 people and is my favorite room at the House of the People, giving a glimpse into the grandeur, scale, and architectural ambition of the building.
Track 1 @ DefCamp
In terms of talks, as is the case for any conference, there’s a mix of higher level and deep dive, with a wide array of speakers. Notable talks were:
- 0-Click Compromise hits the Enterprise – thx AI! by Inbar Raz
- CLR DLL Side-Loading, a secret technique used by APT41 — Georgy Kucherin
- Fake Jobs, Real Malware. Uncovering How Cybercriminals are Exploiting the Employment Market - Ionuț-Alexandru Baltariu: One of our favorites, an excellent talk by a very knowledgeable researcher from Bitdefender
- Browser Side-Channel Vulnerabilities: Discovering Installed Apps via URL Protocol Handlers - Satoki Tsuji + Yuichi Sugiyama
There were many other excellent talks, with the main challenge being that you can only attend one talk at a time, although people were strategically moving between rooms trying to catch more content.
One of the highlights of the conference was the sharing of IOCs 🙂. Ionut-Alexandru Baltariu ended his talk in style with QR codes pointing to VirusTotal collections.
Track 1 @ DefCamp
Here’s the raw link for IOC lovers: https://www.virustotal.com/gui/collection/b3e9afbb9967e14a95038e991b27d492e0a9152d7e5616a05a8999120d2f0e8c/summary
Follow DefCamp on: Facebook | Twitter | Linkedin
In case you ever needed an excuse to visit the House of the People in Bucharest while attending a great security conference, DefCamp is the perfect reason. Don't forget to grab your tickets for 2026, because you won't want to miss next year's event!