Midnight Sun Archive
Midnight Sun 2026
Archive resources for Midnight Sun 2026.
2026 Gallery
Snapshots from Midnight Sun 2026






































Talks
Opening Speech
Opening remarks for Midnight Sun CTF & Conference 2026 and the two-track conference program.
Harri Larsson is co-founder of Cparta Cyber Defense with a background in national defense leadership. David Olgart is Director of Cybercampus Sweden with extensive cybersecurity and cyber defense experience.
Key Note speaker: Civil defence - resilience and a whole-of-society approach
Civil defence requires coordinated efforts across public, private and societal sectors. The talk outlines how resilience is evolving in a complex security environment with growing digital dependencies.
Mikael Frisell is Director General of the Swedish Civil Defence and Resilience Agency and a Major General with long experience in defense leadership.
The Good, The Bad and The Ugly of technology in turbulent times
An exploration of how technology and AI are used in cyber, hybrid and information influence operations, and how societies can improve resilience while protecting democratic values.
Carl Heath is a senior researcher at RISE and the University of Gothenburg, focused on digital resilience, democracy, AI and innovation management.
The Calm Before the Storm Before the Calm
How generative AI is shifting cyber offense and defense, and what this means for risk prioritization, remediation speed and practical security leadership.
Pontus Johnson is professor at KTH and deputy director of Cybercampus Sweden, with research in cyber defense and attack simulation.
The Policy Frontier: Where Tech Meets Geopolitics
Policy perspective on the intersection of technology, cyber resilience, and geopolitics in the NATO-era defense landscape.
Lisa Gustafsson leads Swedish Ministry of Defence policy coordination on intelligence, cyber defence and hybrid threats.
Space Security as a Pillar of National and Civil Resilience
How space-dependent civilian services create new resilience requirements, including cyber threats, disruption risks and public-private coordination needs.
Dr Kristoffer Hultgren leads space security work at the Swedish Civil Defence and Resilience Agency and serves in key Swedish space security authority functions.
Beyond Collaboration: Coordinated Action for Cyber Resilience in the Energy Sector From National Strategy to Operational Security
Energy production is local but increasingly exposed to geopolitical cyber pressure. The session links national strategy to practical, lifecycle-aware OT/IT security execution.
Lasse Larsson leads Energi-CERT with long industrial cybersecurity experience. Kristina Blomqvist leads OT security in Vattenfall Group and has broad operational and governance experience.
Quantum is Here. Is Your Security?
A practical session on quantum computing impact and post-quantum cryptography priorities for organizations planning resilient long-term security.
Mans Sandsjo and Victor Grane work with cybersecurity, identity and cryptographic modernization with a focus on quantum-safe transition.
Cyber Defence in the Financial Supply Chain
How security collaboration and trusted information-sharing in financial ecosystems can reduce collective risk beyond organizational boundaries.
Tobias Calas leads threat intelligence and cyber defence at SEB. Susanne Ohrn works in first-line business security with a broad security and risk background.
Between Regulation and Reality: Cyber Challenges for Saab
A defense-industry perspective on balancing modernization speed, regulatory pressure, data protection needs and real-world resilience.
Peter Klippmark is CISO at Saab and leads global cybersecurity efforts in high-assurance environments.
Keynote speaker - Automated cyber defenses
As AI accelerates attack capability, defenders need automation and intelligence-driven security operations to preserve balance.
Staffan Truve is co-founder and CTO of Recorded Future with a background in AI, visualization and cybersecurity.
What happens if you let a security novice hack your company for five years?
A practical journey from novice to professional bug hunter, showing how persistence and curiosity can build real offensive security skills.
Johan Carlsson is a full-time bug bounty hunter based in Gothenburg, known for high-impact findings across major platforms.
Tales from the V8 VRP - A Post-Mortem
A retrospective on V8 vulnerability research, bug classes, exploitation approaches, and how changing incentives reshaped the landscape.
Matthias Pleschinger (Popax21) is an independent researcher focused on low-level vulnerability research and exploit development.
Chronomaly: Tick, Tock, Root
Technical walkthrough of a Linux/Android kernel vulnerability (CVE-2025-38352) and the Chronomaly exploit development process.
Faith is a lead security researcher with vulnerability research experience across blockchain and low-level systems.
How to Reverse Engineering a BLE Gizmo
A practical BLE reverse-engineering case study including traffic capture, protocol understanding, and custom client implementation.
Travis Goodspeed is an embedded systems reverse engineer and author with long experience in hardware and firmware security.
The Disruptive Impact of Large Language Models on Capture the Flag Competitions and the Path Toward Fair Play
Findings from benchmarks, case studies and interviews, with a proposed framework for fairer competition in the LLM era.
A Warwick-led team presenting research and field observations on LLM impact, fairness and safeguard models in modern CTF competitions.
Trigon: Expoliting a single vulnerability across versions and architectures
How one iOS kernel vulnerability was exploited deterministically across many versions and architectures with different technical strategies.
Alfie is an iOS vulnerability researcher known for exploit and jailbreak work across multiple iOS generations.