BlueHat IL 2026 - Netanel Ben Simon, Alon Leviev - Attacking and Securing Windows Recovery
In mid-2024, a global IT outage - triggered by a 3rd party vendor driver update - became the largest in history, impacting roughly 8.5 million devices worldwide. In response, Microsoft introduced the Windows Resiliency Initiative (WRI) - a bold vision for a self-healing, secure Windows platform designed to enable rapid recovery and autonomous remediation, ensuring systems can bounce back from failures without user intervention. At the heart of this initiative is the Windows Recovery Environment (WinRE), a foundational component embedded in over a billion devices. Once a simple recovery utility, WinRE is now evolving into the backbone of system resiliency, redefining how Windows safeguards continuity and reliability. Recognizing its growing importance, we conducted an in-depth security review of WinRE - examining its architecture, interactions with other components, prior research, and potential attack surfaces - with the goal of uncovering new vulnerabilities. This review uncovered 11 new CVEs that allow bypassing BitLocker to extract all the BitLocker-encrypted data. Notably, most of the findings were purely logical in nature. In this talk, we will present selected findings from our research, demonstrate how we discovered and exploited new 0-day vulnerabilities, share key lessons learned, and outline our approach to strengthening WinRE’s security. This talk will not only reveal how we uncovered and exploited new vulnerabilities but also serve as a practical guide to WinRE security research - covering its fundamentals, threat model, and essential tools - while sharing lessons learned to inspire the broader security research community to further explore the security of WinRE.

Yisroel Mirsky

BlueHat IL 2026 - Michal Kamensky, Amir Gombo - Hybrid Cloud: A Novel Vulnerability Playground

Zig 2026: No-AI Policy, $670K Foundation, Left GitHub & Why Zig Isn’t 1.0 - Andrew Kelley Explains

Edward Snowden Reveals How They Spy on You

Kristopher Reese

Andrej Karpathy: From Vibe Coding to Agentic Engineering w/ Stephanie Zhan

BlueHat IL 2026 - Oran Avraham, Ori Lahav - Exploiting Zero-Days via PostgreSQL Internals

Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!

BlueHat IL 2026 - Ezra Caltum, Anders Fogh - Life and death of a CPU bug

Android 17 sucks. So I put Linux on a phone.

Something is jamming GPS over Europe. Here's what we found

Abstract Black and White wave pattern| Height Map Footage| 3 hours Topographic 4k Background
![PINK & ORANGE GRADIENT IN HD [3 HOURS]](https://i.ytimg.com/vi/6ih8zppfQSQ/hqdefault.jpg?sqp=-oaymwE9CNACELwBSFryq4qpAy8IARUAAAAAGAElAADIQj0AgKJDeAHwAQH4Af4JgALQBYoCDAgAEAEYfyAsKBMwDw==&rs=AOn4CLDvw6mQM98bfl572zfE7r4GdUG8dg)
PINK & ORANGE GRADIENT IN HD [3 HOURS]

BlueHat IL 2026 - Daniel Bachmat - The Secret War for the Spectrum

"Hack ANY Cell Phone" - Hacker Shows How Easy It Is To Hack Your Cell Phone

Erik Ubels, Founder of MetisReal

BlueHat IL 2026 - Dan Lahav - Keynote - The Trajectory of Frontier AI Security

Blue gradient background - screensaver, mood lighting, ambiance, TV art, focus, study

BlueHat IL 2026 - Maor Abutbul - Why-So-QUIC!? Racing and Fuzzing HTTP/3 WebApps using QuicDraw-UI

