Pavel Kann

Senior Application Security Expert, Swordfish Security

About speaker

Spent 9+ years in AppSec custodies of Exigen and Luxoft. Holder of a security certificate that is too shameful to be displayed :)

June 18
15:00 — 15:30
Second Track
Many of us dream about a dream job. Facebook, Google, Hooli, you name it. We all know that you need to work hard to get your position there. But that’s not always the case...

We’ll show and tell how one simple flaw in a major popular headhunting resource could cause compromise of several commercial and in-house HR systems, feeding on the data from that resource. The compromise that allowed to apply for a job and succesfully climb up all the steps to the final recruitment from none to done.