Black Hat Asia 2026: Addressing AI Threats and Supply Chain Security
Black Hat Asia 2026 returns to Singapore this April to address record cybersecurity investments in the Asia Pacific region. Explore new research on AI-powered threats, DNS cache poisoning and cloud vulnerabilities.
Harry Taruva 
Singapore - Black Hat, the premier global cybersecurity event series, has unveiled its 2026 Asia-Pacific program as regional security investments reach record highs.
The conference, scheduled for April 21-24 at the Marina Bay Sands Expo & Convention Centre in Singapore, arrives as organizations across the Asia-Pacific (APAC) region face escalating threats from weaponized generative artificial intelligence and systemic supply chain vulnerabilities.
Data projections for 2026 indicate that the APAC region will lead global cybersecurity spending, a shift driven by both a deteriorating threat landscape and tightening regulatory requirements.
"Black Hat Asia 2026 represents a pivotal moment for cybersecurity in the region," stated Suzy Pallett, President of Black Hat.
"The research unveiled here will fundamentally reshape how we approach cybersecurity in an AI-driven world," Pallett said.
The upcoming Briefings program, set for April 23 and 24, will feature world-renowned researchers presenting critical findings on infrastructure and consumer device security.
These will include smartphone ecosystems where research will demonstrate how a single Boot ROM vulnerability can compromise entire smartphone platforms through secure boot bypasses.
A presentation on "Breaking Hybrid Boundaries" will also reveal four zero-day vulnerabilities in Windows Admin Center that allow full compromise across on-premises and Azure environments.
Experts will introduce "RebirthDay," a new DNS cache poisoning attack exploiting flaws in widely used DNS software, affecting hundreds of thousands of servers globally.
The 2026 agenda places significant emphasis on "AI Red Teaming" and "Agentic Workflows." Intensive training sessions will equip defenders to identify vulnerabilities in Large Language Models (LLMs) and multimodal systems.
The event’s Arsenal program will also showcase open-source innovation, including an AI-integrated tool designed to detect malicious software packages within the software development life cycle (SDLC).
It will also include a structural approach to string analysis for rapid malware triage and an updated release for continuous cloud security monitoring and compliance auditing across NIST and GDPR frameworks.
The event has drawn extensive corporate backing, with Platinum sponsors including Bitdefender and Broadcom, alongside Sustaining Partners such as Cisco, CrowdStrike, and Google.
