Buy Tickets
 

Abdullah Al-Sultani

Product Security Engineer TikTok

BIOGRAPHY

Abdullah is a security engineer at TikTok London office, originally from Iraq, passionate about breaking into systems to make them more secure. With experience dating back to his teenage years. He participated in many bug bounty programs such as Google, Twitter, PayPal, and other well-known companies. Moreover, he contributed to many open-source projects such as WordPress, Joomla, Drupal, Moodle, and others by reporting security issues on these projects. He enjoys sharing his knowledge and experiences with the wider security community, helping to build a stronger and more resilient digital world for everyone.

Cloud-squatting: the never-ending misery of deleted and forgotten cloud assets

In recent years, the adoption of cloud services has significantly increased, enabling organizations to leverage the benefits of scalability, availability, and cost-efficiency. However, this shift towards cloud-based infrastructure has also brought new security challenges, including the emergence of cloud-squatting attacks.

 Cloud squatting happens when a company leases space and IP addresses on a public server, uses them, releases the space, and sends them back to the cloud vendors. The server space providers such as Amazon, Google, or Microsoft assign the same addresses to other companies. If the new company is a bad actor, it could take advantage of the information coming into the address intended for the previous organization. 

In this talk, we will explain how we solved this issue on a scale at TikTok. The talk will be useful for security engineers to help them build a similar system or be aware of this issue if they use a cloud provider in their infrastructure. Moreover, the talk will help bug bounty hunters to look for these assets in an automated way.

Are you the next cyber security superstar?

If you are passionate about an information security topic or you have strong technical skills developing researches on your own, you should definitely Apply at Call for Papers. By submitting you will have the chance to showcase your work to +2000 attendees.

Other speakers joining this year

Walter Belgers

CTO Security Officer Philips Research

Maksim Iavich

President of SCSA, Professor Caucasus University

Inbar Raz

VP of Research Zenity

Ready for this year's presentations?

By registering you will unlock access to 60+ speakers and two full days with cyber security news & showcases from worldwide leaders.

REGISTER FOR DEFCAMP
SPEAKERS
0
COUNTRIES
0
ATTENDEES
0
HACKING
COMPETITIONS
0
COMPANIES
0

Sponsors & Partners

They help us make this conference possible.

POWERED BY

Orange Business is a key division of Orange Romania, specializing in providing cutting-edge communication, technology, and digital transformation solutions tailored to businesses of all sizes. With a strong emphasis on innovation, Orange Business offers a wide array of services, including high-speed connectivity, cloud computing, cybersecurity, Internet of Things (IoT), and managed services. Their mission is to support organizations in their digital transformation journey by enhancing operational efficiency, improving customer experience, and maintaining a competitive edge in a rapidly changing digital environment.

Orange Business combines deep technological expertise with a customer-centric approach, ensuring that each solution is customized to meet the specific needs of their clients. Their commitment to innovation and excellence makes them a trusted partner for businesses seeking to thrive in the digital age.

PLATINUM PARTNERS
GOLD PARTNERS

 

SILVER PARTNER

BRONZE PARTNERS

HACKING VILLAGE PARTNERS

EXHIBITORS

VIP LOUNGE POWERED BY
ORGANIZER
INTERNATIONAL COMMUNITY PARTNERS
MEDIA PARTNERS
Become our partner

Add Your Heading Text Here