Dr. Vinny Sakore, Heather Egan, Paul Otto, Joseph Bellott
Time: Thursday, May 7, 2026: 08:50 AM – 11:10 AM
In this interactive tabletop session, participants will walk through a high‑stakes incident in which a third‑party AI vendor is compromised, allowing a threat actor to manipulate AI‑generated outputs and silently siphon sensitive data into their own infrastructure. As the scenario unfolds, the attacker pivots into the internal network, stages data for exfiltration, and ultimately deploys ransomware across multiple systems, forcing difficult decisions about containment, recovery, and potential ransom negotiations under regulatory, contractual, and ethical pressure. The simulated crisis then spills into the public sphere, triggering press inquiries, regulatory scrutiny, and rapid‑fire social media narratives that stress‑test your organization’s legal, communications, and executive response playbooks.
Audience members will collaborate in role‑based teams to make time‑boxed decisions, practice cross‑functional communication, and leave with concrete lessons and templates they can adapt to strengthen their own AI supply‑chain and ransomware response plans.
Dr. Vinny Sakore, Senior VP, Commercial Strategy and Growth, Arete
Heather Egan, Partner, Strategic Advisor, Cyber Crisis Response, Morgan Lewis
Paul Otto, Partner, Hogan Lovells
Joseph Bellott, Former CISO, City of Atlanta
Readings:
Adam Greene
Date and Time
This workshop will take place on Thursday, May 7, 2026, from 08:50 AM – 11:10 AM at the Privacy + Security Forum, May 6-8, 2026, in Washington, DC.
Our Conference
Join us for an exciting event with 60+ sessions, 4 workshops, 3 keynotes, and an expected 900 participants. CLE credit is available. We hope to see you there!
Adam Greene
