"We often talk about the most spectacular threats—zero-days, advanced attacks, and the stuff that grabs the headlines. But when attackers look at an organization in practice, they usually start somewhere else. They look for what is already exposed. We will examine how Denmark appears when seen through the eyes of a hacker."

In this session, I use a cyber insurance tool as a framework to demonstrate what attackers typically see when scanning for opportunities across critical sectors. We will walk through realistic attack paths, from the initial foothold to potential impact, and focus on why it is often the 'small and boring' vulnerabilities that lead to major consequences.The goal is not to scare anyone, but to clarify which actions provide the greatest risk reduction first. Often, it is more about patching, access management,and basic hygiene than defending against the most advanced tools in the box.

‍

About the speaker

Morten von Seelen is Vice President at Truesec and founded Truesec’s Danish branch. He holds a degree in IT Engineering from Aarhus and has a background as both an Offensive Tester and Cyber Incident Manager, having been on the front lines of many of the largest cyber attacks in Denmark over the years. Today, Morten is responsible for Truesec’s partnerships with major insurance companies. He remains deeply involved in individual cases as well as strategic advisory regarding large-scale contingency planning, hybrid threats, and critical infrastructure.

‍