The week of August 4th, I had the opportunity to attend two exciting conferences in the cybersecurity world: Black Hat USA 2025 and Squadcon which were held in Las Vegas. The week was packed with technical insights, community driven conversations, and a powerful reminder of why collaboration and community matter in the industry.
Walking into Black Hat felt like stepping into the heart of cybersecurity innovation. The environment was buzzing with conversations about AI threats, how we are keeping data secure, and why security is even more prevalent than ever. Ransomware was also a well talked about topic too and knowing that the more we talk about it, the more threat actors use it as their attack method. The business hall was a part of the buzz with security vendors scattered throughout the floor, live demos displaying how tools are adapting to address today’s threat landscape. AI detection being used in the SOC, cloud security, and identity management dominated the expo hall. I got the opportunity to meet with Juan from Cside and learn about how they are breaking barriers in the cybersecurity industry with their unique approach to addressing the blind spot of modern security, the client side. Overall, Black Hat reaffirmed the importance of staying adaptable and proactive in security. The threats are evolving faster than ever but so are the defenses.
While Black Hat leans heavily into the technical side, Squadcon brought something equally valuable—community, inclusivity, and empowerment.
Squadcon is a women-led security conference that provides a space for anyone interested in all things hacking and cybersecurity and for underrepresented voices in the cybersecurity world. I had the opportunity to learn from Okiima Trotter, about GenAI and the importance of integrating security into AI initiatives. Okiima’s analogy, “Launching AI without security is like building a race car without brakes,” echoed the need for structure when it comes to AI. Something else that stood out to me that Okiima said was “Take the hit and get back up, protect others from getting hit”. Embracing the idea of learning from mistakes and sharing experiences to empower others allowed me to reflect on how this not only relates to cybersecurity, but also in my personal growth journey. The ethos of community and support at Squadcon underscored the notion that victory is truly achieved through collective efforts.
The insightful conversations kept going with Alex Waintraub who is the founder of Waintraub Cyber Solutions LLC spoke on the “Rage Against the Latency”. In his discussion he highlighted the growing sophistication and costly impact of ransomware, noting that 81% of attacks occur after hours, with the average breach costing $4.5 million in 2023–2024. Threat actors frequently exploit timing, launching attacks during holiday weekends, critical software releases, or late on a Friday afternoon. Using cobalt tools, attackers can escalate privileges rapidly, sometimes gaining domain admin access across hundreds of systems simply by accessing files on a compromised machine. Alex shared real-world cases, such as one where a ransom was negotiated down to $250,000, only for the organization to be reinfected months later due to an open RDP port left unsecured. He also referenced how responders have adapted, including innovative techniques like using Google Sheets for real-time incident response tracking, underscoring both the persistence of attackers and the need for vigilance in defense.
I learned so much attending both conferences. While there are so many companies’ selling different software, the one thing that everyone had in common was wanting to keep people’s data and systems safe. Whether you do it through training and awareness, AI, cloud security, or simple routine password reset. Something else I was able to take away was there is no victory in the challenges cybersecurity might bring without having community. As the cybersecurity community continues to work together to keep people and systems safe, I look forward to seeing the future innovations and discoveries that lie ahead!
About the Author
Victoria Hargrove is an award-winning independent Reporter for Cyber Defense Magazine and a 2024 graduate of George Mason University, where she earned a Bachelor of Science in Management Information Systems. Her academic journey included a comprehensive focus on cybersecurity, with coursework in networks and security, information security and assurance, programming, and networking, among other areas. Building on this foundation, she is attending Old Dominion University where she is earning her Master’s degree in Cybersecurity which will be completed in Spring 2026. Currently employed as a full-time Cybersecuity Threat Analyst at TJX Companies, Victoria’s role involves critical responsibilities such as identifying security threats, investigating phishing attacks, and remediating various security issues. Her experience in these areas allows her to apply her theoretical knowledge to real-world challenges, positioning her as a skilled professional in the cybersecurity domain. In addition to her academic and professional goals, Victoria is deeply committed to community engagement, particularly in supporting underrepresented groups in technology. She believes that education is a powerful tool for creating opportunities, and she is passionate about mentoring and outreach. In her own words: “Education has opened doors for me, and I aspire to do the same for others. Mentorship and outreach for underrepresented groups in technology is something I’m passionate about. I know true success is measured by how much we can lift others as we climb.” As she continues to advance her knowledge and expertise, Victoria remains eager to engage in research and tackle the evolving challenges of the Cybersecurity landscape. Victoria can be reached online at [email protected].
