Name: BSM August 2020 - Virtual Meetup
Start: 2020-08-20T18:45:00-04:00
End: 2020-08-20T20:45:00-04:00

Thanks to this month's sponsor: GitHub.

* Please take a moment to familiarize yourselves with our Code of Conduct and Vendor/Recruiter policies at https://www.meetup.com/The-Boston-Security-Meetup/about/

As always we would like a diverse set of speakers presenting at our meetup. If you have a talk that you would like to present please submit it at https://forms.gle/eqFV9RQz5uefnmqY6

This months talk(s):

Talk 1

Talk Title: Imzy Profile Linking by Tim McCormack

Abstract: My favorite exploit was in a now-extinct social media website which had first-class support for multiple usernames per account, supposedly unlinkable. I was able to match up *all* usernames, potentially deanonymizing thousands of users. I present the vulnerable API endpoint and walk through the multiple vulnerabilities that combined to permit a full exploit, along with suggestions for remediation. Some opportunities for audience participation, of the "spot the probable weakness" variety. Involves databases, chained vulnerabilities, and a cool side channel leak.

Speaker Bio: Tim McCormack is a programmer with a love for application pen-testing and secure development practices.

Talk 2 -

Talk Title: The fall of the Privacy Shield by May Haim Kotlarsky

Abstract: Last week, the Court of Justice of the European Union (CJEU) ruled the EU-US Privacy Shield, a mechanism governing personal data transfers from the EU to the US, is invalid due to concerns about US government access to EU personal data. Companies that relied on the EU-US Privacy Shield now must have an alternative basis with sufficient privacy protections to be able to transfer personal data to the United States. What does it mean for trans Atlantic personal data transfer?

Speaker Bio: May is a Director, Privacy Counsel at GitHub. In her role she is responsible for all things privacy at GitHub. Her background in privacy, technology, and Law has given her a perspective on the importance of data protection and using technology for a greater good.

Zoom Meeting Link will be available to those who RSVP

Agenda is as follows:
6 30 PM - Zoom is open for guests to join
6 45 PM - Announcements
7:00 PM - Talk 1 - Tim McCormack
7:30 PM - Break and general chatter
7:45 PM - Talk 2 - May Haim Kotlarsky
8:15 PM - Break and general chatter
9:00 PM - Meetup ends

Nivi

Sarah

Andrew Hoffman

O'Shea B

Joseph Henrich

Boston Security Meetup

New England Information Security Alliance

Strike48 provides logistical support for our meetup events.

Strike48

Pentera provides logistical support for our meetup events.

Pentera

Bishop Fox provides logistical support for our meetup events.

Bishop Fox

Wellington Management Company LLP

FHLBank Boston is one of our venue sponsors for Boston Security Meetup.

FHLBank Boston

Recorded Future

DomainTools provides logistical support for Boston Security Meetup.

DomainTools

Mobb

GreyNoise

TrustCloud

Rapid7 is one of our venue sponsors for Boston Security Meetup.

Rapid7

Technology

White Hat Hacking

Web Security

Network Security

Application Security

Ethical Hacking

Computer Security

Web Application Security

Entrepreneurship

Information Security

Cybersecurity

Hacking

Cloud Security

Software Security

Computer & Information Network Security