Midnight Sun Archive

Midnight Sun 2026

Archive resources for Midnight Sun 2026.

Attendees
~400
Talks
17
CTF Qual Teams
542
CTF Qual Rating
48,17/100
Talks

Opening Speech

Thursday - 09:00

Opening remarks for Midnight Sun CTF & Conference 2026 and the two-track conference program.

Harri Larsson & David Olgart
CEO and co-Founder / Director - Cparta Cyber Defense AB / Cybercampus Sweden

Harri Larsson is co-founder of Cparta Cyber Defense with a background in national defense leadership. David Olgart is Director of Cybercampus Sweden with extensive cybersecurity and cyber defense experience.

Key Note speaker: Civil defence - resilience and a whole-of-society approach

Thursday - 09:15

Civil defence requires coordinated efforts across public, private and societal sectors. The talk outlines how resilience is evolving in a complex security environment with growing digital dependencies.

Mikael Frisell
Director General - The Swedish Civil Defence and Resilience Agency

Mikael Frisell is Director General of the Swedish Civil Defence and Resilience Agency and a Major General with long experience in defense leadership.

The Good, The Bad and The Ugly of technology in turbulent times

Thursday - 10:55

An exploration of how technology and AI are used in cyber, hybrid and information influence operations, and how societies can improve resilience while protecting democratic values.

Carl Heath
Senior Researcher in digital resilience - RISE: Center for Security Design and Innovation

Carl Heath is a senior researcher at RISE and the University of Gothenburg, focused on digital resilience, democracy, AI and innovation management.

The Calm Before the Storm Before the Calm

Thursday - 11:40

How generative AI is shifting cyber offense and defense, and what this means for risk prioritization, remediation speed and practical security leadership.

Pontus Johnsson
Professor of Cybersecurity - KTH Royal Institute of Technology

Pontus Johnson is professor at KTH and deputy director of Cybercampus Sweden, with research in cyber defense and attack simulation.

The Policy Frontier: Where Tech Meets Geopolitics

Thursday - 13:00

Policy perspective on the intersection of technology, cyber resilience, and geopolitics in the NATO-era defense landscape.

Lisa Gustafsson
Director - The Government Offices Sweden

Lisa Gustafsson leads Swedish Ministry of Defence policy coordination on intelligence, cyber defence and hybrid threats.

Space Security as a Pillar of National and Civil Resilience

Thursday - 13:40

How space-dependent civilian services create new resilience requirements, including cyber threats, disruption risks and public-private coordination needs.

Kristoffer Hultgren
Head of Space Security - The Swedish Civil Defence Agency

Dr Kristoffer Hultgren leads space security work at the Swedish Civil Defence and Resilience Agency and serves in key Swedish space security authority functions.

Beyond Collaboration: Coordinated Action for Cyber Resilience in the Energy Sector From National Strategy to Operational Security

Thursday - 14:25

Energy production is local but increasingly exposed to geopolitical cyber pressure. The session links national strategy to practical, lifecycle-aware OT/IT security execution.

Lasse Larsson & Kristina Blomqvist
Managing Director / Acting Director Information and Cyber Security - Energi-CERT / Vattenfall Group

Lasse Larsson leads Energi-CERT with long industrial cybersecurity experience. Kristina Blomqvist leads OT security in Vattenfall Group and has broad operational and governance experience.

Quantum is Here. Is Your Security?

Thursday - 15:25

A practical session on quantum computing impact and post-quantum cryptography priorities for organizations planning resilient long-term security.

Mans Sandsjo & Victor Grane
Solution Engineers - IBM

Mans Sandsjo and Victor Grane work with cybersecurity, identity and cryptographic modernization with a focus on quantum-safe transition.

Cyber Defence in the Financial Supply Chain

Thursday - 16:00

How security collaboration and trusted information-sharing in financial ecosystems can reduce collective risk beyond organizational boundaries.

Tobias Calas & Susanne Ohrn
Head of Threat Intelligence and Cyber Defence / Business Security Officer - SEB

Tobias Calas leads threat intelligence and cyber defence at SEB. Susanne Ohrn works in first-line business security with a broad security and risk background.

Between Regulation and Reality: Cyber Challenges for Saab

Thursday - 16:15

A defense-industry perspective on balancing modernization speed, regulatory pressure, data protection needs and real-world resilience.

Peter Klippmark
CISO - Saab

Peter Klippmark is CISO at Saab and leads global cybersecurity efforts in high-assurance environments.

Keynote speaker - Automated cyber defenses

Friday - 09:00

As AI accelerates attack capability, defenders need automation and intelligence-driven security operations to preserve balance.

Staffan Truve
co-founder and CTO - Recorded Future

Staffan Truve is co-founder and CTO of Recorded Future with a background in AI, visualization and cybersecurity.

What happens if you let a security novice hack your company for five years?

Friday - 09:45

A practical journey from novice to professional bug hunter, showing how persistence and curiosity can build real offensive security skills.

Johan Carlsson
Bug bounty hunter - Independent

Johan Carlsson is a full-time bug bounty hunter based in Gothenburg, known for high-impact findings across major platforms.

Tales from the V8 VRP - A Post-Mortem

Friday - 10:45

A retrospective on V8 vulnerability research, bug classes, exploitation approaches, and how changing incentives reshaped the landscape.

Matthias Pleschinger
Cybersecurity Researcher - Independent

Matthias Pleschinger (Popax21) is an independent researcher focused on low-level vulnerability research and exploit development.

Chronomaly: Tick, Tock, Root

Friday - 11:30

Technical walkthrough of a Linux/Android kernel vulnerability (CVE-2025-38352) and the Chronomaly exploit development process.

Faith
Lead Security Researcher

Faith is a lead security researcher with vulnerability research experience across blockchain and low-level systems.

How to Reverse Engineering a BLE Gizmo

Friday - 14:25

A practical BLE reverse-engineering case study including traffic capture, protocol understanding, and custom client implementation.

Travis Goodspeed
Reverse engineer, author

Travis Goodspeed is an embedded systems reverse engineer and author with long experience in hardware and firmware security.

The Disruptive Impact of Large Language Models on Capture the Flag Competitions and the Path Toward Fair Play

Friday - 15:40

Findings from benchmarks, case studies and interviews, with a proposed framework for fairer competition in the LLM era.

Michael Macaulay, Guo Gen, Harmony Bouabid, Rob
Researchers and CTF practitioners - University of Warwick

A Warwick-led team presenting research and field observations on LLM impact, fairness and safeguard models in modern CTF competitions.

Trigon: Expoliting a single vulnerability across versions and architectures

Friday - 16:25

How one iOS kernel vulnerability was exploited deterministically across many versions and architectures with different technical strategies.

Alfie CG
iOS vulnerability researcher and exploit developer - Cellebrite Labs

Alfie is an iOS vulnerability researcher known for exploit and jailbreak work across multiple iOS generations.

Sponsors