| Who | Tal |
| What | Hacking |
| When | Hopefully, forever! |
| Blog? | https://talsk.github.io/ |
| https://twitter.com/TalSkverer |
Almost 8 years since #PokémonGo launched and took the world by storm, it's time to tell the story of how I broke its anti-cheating mechanism together with a group of fellow hackers, all just to catch some new Pokémon
Part 1 is live on #TalTechTreks:
https://talsk.github.io/2024/04/06/Hacking-Pokemon-Go.html
Today I sat and reviewed the huge security breach disclosed by the research team at wiz.io just a few days ago.
After shortly explaining what went wrong to lead to this incident, I suggest two actions organizations should employ in order to avoid making similar mistakes that could lead to such catastrophic consequences from happening in their own environments.
https://www.youtube.com/watch?v=ZAZvIEIjGYU
My talk from DEFCON is live on Youtube!
Honestly, I was very nervous - giving the talk to a huge audience consisting of extremely smart, talented hackers was frightening.
Yesterday, I anxiously watched this video, scared to see the outcome...
But to my surprise it's quite good!
There are still some bits where I stutter or mess up my English, but overall I look confident and was able to highlight what I wanted about the vulnerability and my vision for the future.
So I invite you to watch and let me know if you did!
This #defcon is going to be spoooooky~ 👻
In a little over 3 weeks, I'm going to deep dive into the #GhostToken 0-day vulnerability at @defcon, and the faults in the #OAuth protocol that led to it.
Hope to you see there, Aug 11, 12pm!
