Cybersecurity is an ongoing challenge. To defend against constant attacks, we must understand the attackers themselves: their motivations, archetypes, and evolving tactics. This approach, which goes beyond traditional threat modeling, examines the full range of adversaries—from opportunistic actors to sophisticated state-sponsored groups.

Recent events show the diversity of threats. The Snowflake data breach compromised over 160 customers by exploiting weak credentials, leading to data theft and extortion. The Salt Typhoon telecom breach, a Chinese state-backed operation, used unpatched vulnerabilities to infiltrate U.S. telecom providers and steal sensitive data.

These incidents highlight the wide spectrum of adversaries, from insider threats and cybercriminals to nation-states. They use everything from human error to advanced techniques. Understanding who attacks us, why, and how they operate helps organizations sharpen their focus, strengthen defenses, and protect assets.

This talk, drawing on the speaker's background in IT and acting, will be a fun and interactive discussion that invites audience participation.