Attended @MSFTBlueHat by @msftsecresponse Learned so much, got awesome swags + MVR token. Big thanks to @msftsecresponse for an amazing event 🔐✨ #BlueHatAsia #bugbounty #BlueHat #Microsoft #CyberSecurity #InfoSec #BugBounty #HackerCommunity

Thank you to everyone who joined us this week for BlueHat Asia. BlueHat is more than just a conference, it’s a community. One where the security community from inside and outside Microsoft come together as peers to share, challenge, and learn from one another. From deep

Women in security, learning and leading together at #BlueHatAsia @MSFTBlueHat @msftsecresponse @RebeccaPattee

At BlueHat Asia, Spandan Pokhrel (@Spandan0x50 ), Independent Security Researcher & Web Pentester, revealed how subtle flaws in OAuth social login flows can lead to devastating account takeovers, even in major platforms. Highlights from Spandan’s talk: ➤ Social logins & OAuth:

#BlueHatAsia has been a blast! Really enjoyed networking, learning & winning some goodies! @MSFTBlueHat has hit the SIX again by organizing yet another insightful instance of #BlueHat! Thanks to all the speakers for the amazing sessions! @SravanAkkaram

A huge thanks to the entire IoT Village team at @MSFTBlueHat 2025 by @msftsecresponse the CTF was brilliantly orchestrated, and the hints were spot-on! 😄 #IoTVillage #CTF #BlueHatAsia

At BlueHat Asia, Parul Garg and Sriharsha Pallekonda from Microsoft’s Azure Security team shared how variant hunting transforms security from reactive bug fixing to proactive, scalable assurance. Their session covered: ➤ What is variant hunting? It’s not just threat hunting or

Vishal Chand, Security Researcher at BharatGen, IIT Bombay, and Nikhil Srivastava, CEO, P.I.V.O.T. Security took the BlueHat Asia stage to expose the evolving threat landscape around Model Context Protocol (MCP), the backbone of AI-native, context-aware applications. Highlights

At BlueHat Asia, Abhilasha Bhargav-Spantzel, Partner Security Architect, Microsoft AI, delivered a powerful keynote on the future of trustworthy AI and security. With her mother in the audience for the first time in 25 years, Abhilasha shared how relentless support and a mindset

At BlueHat Asia, Cameron Vincent (@SecretlyHidden1), Senior Security Researcher, Microsoft, and Brian McNulty (@brianjmcnulty), MSRC Summer Intern and University of Michigan graduate student, shared their journey hunting security variants across the Microsoft ecosystem.

Good morning, BlueHat Asia! We're ready to kick off Day 2 with opening remarks from Tom Gallagher (@secbughunter), VP of Engineering, MSRC, followed by the Day 2 keynote from Abhilasha Bhargav-Spantzel, Partner, Microsoft AI. After the keynote, dive into more incredible

Day 1 of BlueHat Asia has officially wrapped. Huge thank you to everyone who joined us. Your energy, curiosity, and collaboration made today memorable. Here’s what we explored together: Tom Gallagher opened BlueHat Asia by celebrating Asia’s incredible security research

How do you catch fileless attacks and in-memory threats in modern Linux environments? At #BlueHatAsia, Srinivasan Govindarajan, Pranjal Gupta, and Rajesh Kumar Natarajan unveiled a cutting-edge framework that combines Retrieval-Augmented Generation (RAG) with Large Language

Ever wondered what happens when you follow a single thread in cloud security research? Sometimes, you unravel more than you expect. At #BlueHatAsia, Tzah Pahima (@TzahPahima) shared his journey through Azure Purview and Synapse, exposing how cross-tenant vulnerabilities can let

Shibsankar Das and Rituraj Jodha presented a practical framework for investigating and disrupting risky OAuth cloud applications using evidence-driven, AI-powered risk assessment at #BlueHatAsia. Some highlights from their talk: ➤ The challenge: SOC teams face fragmented data,

Rahul Sasi’s @fb1h2s take hits hard: If we look at security in 2D, we only see what’s on the surface. Real attacks live in layers, depth, and movement. Security has to be understood in 3D 💯 #bluehatasia @MSFTBlueHat

At #BlueHatAsia, Rahul Sasi (@fb1h2s), Co-Founder & CEO at CloudSEK, delivered an afternoon keynote on how the security landscape is evolving, and why we must think in 3D. In 2D security, we protect endpoints. In 3D security, every endpoint has endpoints of its own. Attack chains

CI/CD pipelines power modern software delivery, but are they as secure as we think? At #BlueHatAsia, Harish Poornachander (NetApp, MSRC Most Valuable Security Researcher 2024) revealed how common misconfigurations in GitHub Actions, Azure DevOps, CircleCI, and AWS CodeBuild can

At #BlueHatAsia, Craig Nelson, VP, Microsoft Red Team at Microsoft, shared how AI is transforming the future of Red Teaming and defense. Microsoft has long led the way in proactive security, with Red Teaming built on “Assume Breach” and “Embrace the Red,” simulating real-world