Cyber Warfare Lessons: Dmytro Kuleba Headlines Infosecurity Europe 2026

The battlefield has evolved. It’s no longer just trenches and tanks; it’s servers, networks, and digital influence campaigns. This June, one of the architects of a nation’s defense against this modern warfare will take the stage in London.

Infosecurity Europe has confirmed Dr. Dmytro Kuleba, Ukraine’s former Minister of Foreign Affairs, as the headline keynote speaker for its 2026 conference. The event runs from June 2nd to 4th at ExCeL London.

From the Diplomatic Front to the Digital Frontline

Kuleba served as Ukraine’s top diplomat from 2020 to 2024, a period defined by full-scale invasion. Alongside President Volodymyr Zelensky, he helped shape the nation’s strategic response to a multi-domain assault. His keynote, scheduled for Wednesday, June 3rd, carries a stark title: ‘Ukraine’s Hybrid War and the New Cyber Frontline.’

What can the global cybersecurity community learn from a nation under sustained digital siege? Kuleba plans to share critical, hard-won insights. He will detail the Russian playbook, where cyber-attacks on telecommunications were synchronized with kinetic missile strikes. He’ll explain how disinformation was weaponized to sow chaos and undermine morale.

Perhaps most urgently, his talk will argue that Western corporations are now the primary front line. In an era of “permanent shock,” what must their security teams understand to survive? The lessons from Kyiv are no longer theoretical; they are a blueprint for resilience.

A Continent Divided by Tension

Kuleba’s appearance underscores a central theme for the 2026 event: the inseparable link between geopolitics and cybersecurity. This focus is timely, given new research commissioned by Infosecurity Europe.

The 2026 Cybersecurity Trends study, conducted by Zing Insights among 396 professionals across six European nations, reveals a troubling trend. 59% of cybersecurity experts say rising geopolitical tensions are actively hampering collaboration across Europe.

The sense of fragmentation is pronounced. Majorities in the UK (62%), France (68%), and Denmark (69%) report that cooperation is becoming more difficult. Only 16% of respondents felt tensions had no impact.

Confidence in European cyber cooperation is split almost down the middle. While 42% believe their country is doing enough to collaborate, 43% say it is not. This concern is highest in the UK (53%) and Germany (57%), where professionals feel current models are falling short.

Yet, the value of working together remains undeniable. When asked about the benefits, 33% cited threat intelligence sharing as the top advantage. Another 27% pointed to stronger cross-border incident response coordination. The challenge is bridging the gap between clear need and political reality.

Setting the Strategic Stage

The geopolitical tone will be set early. On Tuesday, June 2nd, the morning sessions will be chaired by Ciaran Martin, a professor at Oxford University and former founding CEO of the UK’s National Cyber Security Centre (NCSC).

Martin’s experience is profound. He led the NCSC’s response to over 2000 nationally significant cyber-attacks, helping cement the UK’s reputation as a global cybersecurity leader. His perspective will frame a program designed around real-world state-level threats.

Further deepening the strategic discussion, a senior NCSC representative will deliver a separate keynote on ‘Cyber Security 2026 – State of the Nation’ on Tuesday. This session promises a clear-eyed assessment of the UK’s threat landscape and national priorities.

Attendees can expect a breakdown of how the threat picture is shifting and where the NCSC will focus its efforts in the coming years. The talk will also outline practical steps for security leaders in government, industry, and critical national infrastructure to align with national strategy and build large-scale resilience.

Securing Your Place at the Discussion

Registration for Infosecurity Europe 2026 is now open. Entry is free until May 5th, after which a £49 fee applies. This grants access to the expansive exhibition floor and all theatre sessions, including the keynotes by Dmytro Kuleba and the NCSC.

For cybersecurity professionals navigating an increasingly volatile world, the 2026 conference offers something rare: a direct line to the strategic thinking shaping our digital defenses. The lessons from Ukraine are not just history; they are a warning, and a guide, for what comes next.

Operation Alice: How Police Took Down 370,000+ Dark Web Sites

Imagine a criminal marketplace so vast it spans hundreds of thousands of hidden websites. Now picture that entire network being a police trap. That’s exactly what happened in a recent international sting operation that crippled a major dark web fraud scheme.

The Five-Year Honeypot Operation

For nearly five years, a platform called “Alice with Violence CP” operated on the dark web. It advertised child sexual abuse material (CSAM) and cybercrime-as-a-service offerings like stolen credit card data. Thousands of customers worldwide flocked to it, paying in Bitcoin for illegal content.

There was just one problem: none of it was real. The entire operation was a sophisticated scam designed to swindle criminals out of their money. What the customers didn’t know was that law enforcement had been watching the entire time.

German authorities, leading what they called Operation Alice, turned this criminal enterprise into one of the largest honeypots in cyber policing history. From March 9-19, they finally pulled the trigger, dismantling the entire network.

Unmasking the Criminal Customers

While the sites were fake, the criminal intent of the customers was very real. This presented a unique opportunity for investigators. As would-be buyers provided email addresses and made Bitcoin payments for non-existent content, they were essentially handing police their digital fingerprints.

International cooperation through Europol allowed authorities to identify 440 individuals who attempted to purchase illegal material. Over 100 of these cases are now under active investigation. When children were believed to be in immediate danger, police moved swiftly.

In one August 2023 case, Bavarian police searched the home of a 31-year-old father who tried to buy €20 worth of CSAM. He was subsequently convicted. These targeted interventions demonstrate how digital investigations translate into real-world protection.

The Mastermind Behind the Fraud

Police traced the operation to a 35-year-old Chinese national who had been running the scheme since 2019. His technical setup was staggering: over 373,000 .onion sites distributed across 287 servers, with 105 of those servers located in Germany alone.

Between February 2020 and July 2025, he advertised his fake wares through more than 90,000 different onion domains. Customers could purchase “packages” ranging from €17 to €215, supposedly containing anywhere from a few gigabytes to several terabytes of illegal material.

The profits were substantial. Investigators estimate he made over €345,000 from approximately 10,000 duped customers worldwide. An international arrest warrant has now been issued for his capture.

Global Law Enforcement Collaboration

Operation Alice wasn’t a solo effort. Twenty-two countries participated in the takedown, including the United States, United Kingdom, Ukraine, Switzerland, Sweden, Spain, Italy, France, Canada, Australia, and Belgium. This level of international coordination is becoming increasingly crucial in fighting borderless cybercrime.

The success follows another major victory against dark web CSAM platforms. Last year’s Operation Stream, also led by Bavarian authorities with Europol support, took down the Kidflix platform. That operation identified 1,393 suspects worldwide from over 1.8 million registered users.

Unlike Alice with Violence CP, Kidflix actually distributed real child abuse material. The contrast between these two operations shows law enforcement’s evolving strategies: sometimes they dismantle genuine criminal platforms, other times they turn fraudulent ones into intelligence-gathering tools.

What does this mean for the future of dark web policing? The message is clear: even in the most hidden corners of the internet, criminal activity leaves traces. And international law enforcement is getting better at following those traces back to their source.

When a Morning Run Becomes a Security Breach

Imagine starting your day with a brisk jog on the deck of a nuclear-powered aircraft carrier. The sea air, the rhythmic sound of your footsteps—it’s a unique way to stay fit. For one French Navy officer aboard the Charles de Gaulle, that routine run turned into a major security lapse. He logged his workout on Strava, the popular fitness app, and in doing so, publicly broadcast the warship’s precise location as it sailed toward the Middle East.

French newspaper Le Monde first broke this story, but it’s far from an isolated case. Fitness tracking apps have repeatedly created privacy nightmares, especially for military personnel. Remember when Strava data revealed the locations of secret U.S. military bases a few years back? Or when journalists tracked French President Emmanuel Macron’s movements by finding the public Strava accounts of his security detail? This latest incident proves the problem hasn’t gone away.

Why Strava Poses Such a Persistent Threat

Here’s the core issue: Strava accounts default to public. Every time you record a run, cycle, or swim, the app can map your exact route for anyone to see. For most users, that’s harmless—sharing a neighborhood jog with friends. For military members, it’s a different story entirely. That map data can reveal patterns, bases, and movements that should remain confidential.

The French Armed Forces confirmed the officer’s actions violated their security protocols. “This behavior does not comply with current guidelines,” a spokesperson told Le Monde, adding that sailors receive regular reminders about operational security. While President Macron had already announced the carrier’s deployment, broadcasting its real-time coordinates is an entirely different level of exposure. It gives away tactical information that could be exploited.

What This Means for Your Digital Footprint

You might think, “I’m not in the military, so this doesn’t affect me.” Think again. Every piece of data you share publicly creates a digital footprint. That morning run map shows where you live, where you work, and the routes you take daily. For someone with malicious intent, that’s a goldmine of information.

How many people actually check their privacy settings on these apps? Most just download, sign up, and start tracking. The convenience overshadows the risk. Yet with a few simple clicks, you can switch your account to private mode, share activities only with approved followers, or disable map sharing entirely. It’s a small effort for significant protection.

Balancing Fitness and Security in a Connected World

Technology promises to make our lives easier and healthier. Fitness apps motivate us, track our progress, and connect us with communities. But they also collect and display astonishing amounts of personal data. The Strava incident aboard the Charles de Gaulle serves as a stark reminder: our digital and physical worlds are now inextricably linked.

Security isn’t just about strong passwords and antivirus software anymore. It’s about understanding what our devices and apps reveal about us. For military organizations, this means continuous training and strict enforcement of digital policies. For everyday users, it means taking a moment to review app permissions and privacy settings. That quick check might just prevent your next workout from becoming tomorrow’s headline.