February 2024 Chapter Meeting: Simple Bugs, Catastrophic Impact

Tuesday, February 20, 2024 - 5:30pm

Synopsis: Minor oversights in public-facing web applications can lead to major security disasters. This talk will highlight real-life cases where such vulnerabilities, including logic flaws, insecure direct object references (IDOR), and API security lapses, could have resulted in massive data breaches and financial losses. Through interactive hacking demos, the session will illustrate the potential for millions in losses from retail giants and sensitive data exposure, such as passport information leaks. Attendees will leave with a clear understanding of the monumental impact that even the smallest appsec bugs can have, and the crucial role of proactive security in preventing them.

Thank you to our supporters!

Event Sponsor: Snyk

Event Host: Malwarebytes


Farzan Karimi

Farzan Karimi has 20 years experience in professional hacking. He is currently the Senior Director of Security Operations, Attack & Response at Moderna. Formerly, he managed the Android Red Team at Google, where he led red team operations targeting mobile devices built on Android, such as Pixel.








3975 Freedom Cir,

Santa Clara, CA 95054, USA

(2nd tower bldg next to Malwarebytes)