How To Not Get Hacked: Uncovering Web Vulnerabilities

Many developers take security for granted, assuming it’s outside their scope and that the security team will "handle the mess." As the security advocate on my team, I’m here to change that mindset. Have you ever questioned how secure the apps you ship with your favorite framework really are? Do you know which vulnerabilities can surface when proper security controls aren’t in place? In this talk we’ll examine real-world breaches from major companies, then walk through a live demonstration of how our intentionally vulnerable "guinea pig" web app can be exploited. You’ll leave with a clear view of the threats that could affect your projects and practical steps you can take immediately to reduce risk and sleep better at night.