Alejandro Muñoz-McDonald is a Senior Security Researcher and Smart Contract Lead Triager at Immunefi, with over eight years of experience in Web3 security. He joined Immunefi in January 2022 as one of the earliest members of the company’s 24/7 triage team.

Immunefi has facilitated more responsible disclosures than any other organization in the crypto ecosystem. In his role, Alejandro has personally handled thousands of vulnerability reports and has been directly involved in hundreds of critical incident response events across DeFi, bridges, and core blockchain infrastructure. This hands-on exposure to real-world exploits, near-misses, and complex attack paths has given him a rare, practical perspective on where crypto systems fail in practice.

Andrew has been living on-chain since the "early days"—a journey that began with mining a million Dogecoin on his laptop. After founding a college crypto-investing group in 2013, he spent the next decade navigating the ecosystem as a smart contract developer and strategic investor.

Professionally, Andrew is a veteran of the traditional security world, having spent ten years as a global consultant securing multinational financial institutions across four continents. Now a Web3 security expert at Google Mandiant, he blends his "OG" intuition with enterprise-grade logic to protect the next generation of decentralized protocols from the hackers of today.

Andrew has been breaking, building, and defending things in infosec for over two decades (wow old). Starting at Paterva he spent 10+ years creating Maltego before moving to the US for security roles at BitMEX (IR), Robinhood (IR/D&R), Uniswap (Head of Security), and now Privy (Principal Security Engineer). He’s spoken at Black Hat, DEF CON, DSS, EthCC and countless others, teaching courses and drinking malibu on the way. When not thinking about security, he’s into cat memes, punk rock, and getting involved in just the right amount of unhinged shit to keep security interesting.

Benjamin Speckien is a veteran of the digital trenches, a cybersecurity professional who's successfully managed to keep the $200M+ cloud assets at cLabs from becoming a thrilling news headline. As their former Head of Security, he didn't just "lead" incident response; he personally ensured over 500 potential dumpster fires were quickly extinguished, achieving a mean time to detect (MTTD) in mere seconds thanks to some clever cloud security posture management. He's a certified, degree-holding hacker (CISSP, M.S. in Cybersecurity) with expertise spanning the Financial, Defense, and Blockchain sectors. When he's not busy making software supply chains less of a liability, you can probably find him contemplating the simple, secure life back in the peaceful Northwoods of Wisconsin.

Cantina and Spearbit work with financial services and blockchain organizations to protect the world's most critical and complex code by combining a world-class security researcher network with purpose-built tools, delivering scalable and effective solutions pre-deployment through runtime all in one platform.

CEO of zeroShadow

zeroShadow Co-founder | Head of Threat Intel

Consensys Diligence is a security research team that's been auditing smart contracts since Ethereum's earliest days. Eight years of institutional memory, hundreds of audits, and a front-row seat to every major evolution in Web3 security. Our aim isn't to be the biggest shop, but the most thorough one. Our work spans protocol auditing, tool development, and ongoing research into emerging threat patterns. We believe security is a continuous process, not a checkbox, and we're committed to sharing what we learn with the broader community.

Daniel Gordon has over a decade of experience hunting, researching, tracking, and stopping North Korean hacking groups across both public and private sector. He has a bunch of degrees and certifications, and has published blogs for DarkReading, War on the Rocks, and Risky.biz and given talks on North Korean hacking at SleuthCon and FTSCon.

Elliot Friedman is a smart contract engineer focused on security and keeping users safe. He previously ran Solidity Labs, a boutique consulting firm that wrote smart contracts for leading DeFi protocols. He's spoken at the DeFi Security Summit on emerging threat vectors and is currently building Kleidi, a wallet system designed to protect high-value holders from the attacks that multisigs can't stop.

Everett Hildenbrandt has spent over 6 years leading the technical direction for RV's software tooling. He is passionate about providing high-quality and consistent developer tooling for all programming languages that emphasizes usability and power. In his journey from studying physics to working on validating the safety of distributed Web3 applications, he's seen that formal methods can play a crucial role in improving the quality of software for everyone. During his time at RV, he's driven broader adoption of formal verification through both education and bringing the verification tooling to the developers via improved UX.

A security researcher at Consensys Diligence, George is fascinated by Math, Technology, and their human aspects - privacy, game theory, digital identity, and so on. Eventually he found Ethereum, a promising world that fit his interests, where he focuses on audits to safeguard the future of finance.

I’ve been a well known member of the Ethereum community since 2015 & received the first degree ever given in digital currency, a Masters degree in 2016.

As community manager for Slock.it and TheDAO, I helped form the community around TheDAO and led every angle of the crisis response effort following TheDAO Hack. I co-founded the White Hat Group, which secured the at-risk funds (10% of the total supply of ETH) during TheDAO hack and one year later rescued $210 million dollars worth of crypto assets following the Parity Multisig Hack among other exploits. I also audited Aragon and MakerDAO systems with the WHG.

In 2016 I co-founded Giveth, a crypto donation platform that radically empowers individuals and communities to affect real change in a transparent, decentralized way. I co-founded DAppNode in early 2018 and co-founded the Commons Stack in 2019. The Commons Stack launched the Token Engineering Commons in 2022. I co-founded General Magic in 2021, a web3 design and dev studio focused on web3 impact projects. Via GM I led the creation of Praise (reputation tool), and Pairwise (voting tool), Unicorn.eth (simple and safe wallet infra); and q/acc (token launchpad). I am currently spearheading an effort to create a $300M Ethereum security fund.

I have contributed to dozens of other projects as well, most notably, BrightID, Treegens, and Thrive and support these and many other projects in an advisory capacity.

I am a top delegate for ENS, Arbitrum, Gitcoin and Optimism, and sit on the Security Council for ENS and Arbitrum and on the bridge multisig for Gnosis.

I also have led/co-led 3 crypto focused burning man camps Decentral, Dogecentral and BlockHaus ;-)

J.M. has twenty-five years of experience in cybersecurity, including five in crypto. He is currently on his third CISO role, this time at Berachain.

Dr Kelsie Nabben is an ethnographic researcher specialising in the social outcomes of emerging technologies, particularly decentralised digital infrastructure. Her Open Access book on blockchain security, titled 'Decentralised Security: Code, crisis, community', comes out in 2026

Ken is the Head of Security at Filecoin Foundation and a security practitioner that focuses on software security from applications, to cloud and web3 technologies. He is also the host and producer of Relating to DevSecOps, a podcast focused on cultivating security relationships in organizations. With 15+ years of experience in the security industry, he has had the opportunity to serve in many roles from hacking on governments to building robust security programs from the ground up. In his spare time, he builds drones, sings karaoke, and makes things out of wood.

Kurt Opsahl is the Associate General Counsel for Cybersecurity and Civil Liberties Policy for the Filecoin Foundation. Opsahl has been working for close to 30 years on technology law and policy, representing Internet startups in the dot-com boom, protecting digital rights at the Electronic Frontier Foundation, and now focusing on protecting the decentralized web. Opsahl volunteers as the President of the Security Research Legal Defense Fund, Special Counsel for EFF, and on the board of the Financial Privacy Foundation. Formerly, Opsahl was the Deputy Executive Director and General Counsel of the EFF, and litigated key cases, protecting civil liberties online. Opsahl was also the lead attorney defending security researchers at EFF;s Coders' Rights Project, and continues to assist EFF with that work as Special Counsel. From 2014 -22, Opsahl served on the USENIX Board of Directors, and a member of the CISA Cybersecurity Advisory Committee’s Technical Advisory Council from 2023-24.

Michael Lewellen is a blockchain security and software architect with over 14 years of experience in web3 systems. As Head of Solutions Engineering at Turnkey, he advises leading financial institutions and protocols on secure key management and infrastructure design. He has worked with major protocols including Arbitrum, Compound, and the EF during his time at OpenZeppelin. He currently teaches blockchain technology at UT Dallas and is a long-time contributor to the Security Alliance.

Dr. Neville Grech is a white-hat hacker with 15 years of experience in software engineering, security, and program analysis, and the lead author of MadMax. He is a co-founder of Dedaub and has spoken at events such as Web3 Summit and ETHTaipei, presenting how decompilation and static analysis uncover hidden smart contract vulnerabilities across EVM chains.

Nikita is a security engineer at Anza, a Solana-focused research and development firm behind the Agave validator client and core developer tooling, where he works on security across development, upgrades, and releases.

Before Anza, Nikita was a Senior Security Engineer at Quantstamp, where he contributed to and led protocol and infrastructure security reviews for major blockchain projects securing over $10B in assets, including TON, Alchemy, and Trust Wallet. He is a co-author of the ERC-6900 modular smart contract account standard and has published research on cross-chain bridge security. Nikita holds an MEng from Imperial College London and co-founded the Imperial Blockchain Group.

Nikita is the CEO and co-founder of ChainPatrol. After working at Coinbase, Nikita started ChainPatrol to protect users from phishing attacks. Today ChainPatrol protects leading Web3 communities including Consensys, Arbitrum, ZkSync, Polymarket, and many more. ChainPatrol develop systems to crawl domains and social media to identify and takedown phishing.

Nikita has given numerous Security presentations in the past 4 years to the wider crypto ecosystem.

• DSS 2025 Security Talk
• Security Panel at DevConnect 2023 User Security Summit
• Multiple Metamask Event Security Talks
• Speaker at Eth Denver 2023
• ETH NYC Finalist and Presenter 2022

Pablo Sabbatella, a.k.a pablito.eth is a Web3 Operational security researcher. He founded Opsek, a company dedicated to Operational security audits and trainings for web3 organizations and HNWI. He is also a SEAL contributor and the host of the Blockchain Security Series podcast.

Dr. Sebastian Banescu is the founder of Adevar Labs, a security firm dedicated to hardening the Web3 ecosystem. With over 15 years in digital security and 7 years specifically in blockchain, his experience spans from securing industrial systems at BMW, Philips, and Deloitte to conducting over 100 smart contract audits since 2018. A former researcher with a PhD from TU Munich and over 1,200 citations on Google Scholar, Sebastian Banescu specializes in the intersection of formal verification and real-world exploit analysis. He notably founded the first regulated insurance company for smart contract risks, pioneering the use of actuarial standards in DeFi.

Sharon leads strategic product development and programming at Cantina, bringing bespoke security programs to teams across web3 and web2.

I am a Tech Lead and Security Researcher at Certora with over three and a half years of experience securing DeFi protocols. I work closely with core protocol teams on security driven design and have contributed to the architecture of major Ethereum protocols including Aave and Lido and many more.

founder @theredguild
initiative lead @seal
security knowma

Most recently, Stef spent 3.5 years as Head of Technical Programs at the Filecoin Foundation, with responsibility for security, UX, and funding initiatives across the Filecoin ecosystem, including supporting SEAL.

Prior to joining Filecoin Foundation, Stefan Magdalinski spent 30 years building internet companies and non-profits, as a CEO, COO and CTO, across multiple sectors in the UK, USA, Africa and Asia.

He is a founder of the Open Rights Group (https://openrightsgroup.org), and a veteran of the OG Crypto Wars in the UK. He is passionate about making the web work for the benefit of everybody, and worries about harms to consumers, above all.