Description: Abstract:E-Commerce merchants love credit card tokenization as a way to minimize PCI regulations��"but can tokenization stop adversaries? In this talk, we will exploit tokenization services to steal credit cards through subtle design flaws, lazy web practic
Bio: Tim MalcomVetter (@malcomvetter) has fifteen years in defending, building, and breaking systems, built upon a thorough academic foundation. Currently, Tim holds the position of “Director, Advanced Security Testing" Red Team” at the world’s largest commercial entity, Walmart, where he is privileged to lead a team of very skilled Red Team engineers. Before that, Tim was a Principal Consultant in Optiv’s Software Security Group, their top offensive security blogger during his tenure, performing penetration tests and code reviews on web apps, web services, mobile apps, point of sale systems, proprietary TCP socket services, and even fuel pumps and car washes (yes, fuel pumps!). Before that, Tim led agile e-commerce dev teams, led PCI compliance projects at Level 1 merchants, and was the security generalist wearer-of-many-hats. Tim has presented in numerous venues, including Black Hat USA Tools Arsenal, Security BSides, ArchC0N, Secure World Expo, St. Louis Day of .NET, and other developer conferences. Born and raised in the Show Me State, right here in St. Louis, Tim also donates time to coach the Missouri S&T Collegiate Cyber-Defense Team, and spent way too much time in school, including a couple campuses of the University of Missouri system.
For More Information Please Visit:- http://showmecon.com/
http://www.irongeek.com/i.php?page=videos/showmecon2016/mainlist
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.