We are excited to inform you that Amichai Shulman, CTO at Nokod, has been selected to speak at OWASP 2024 Global AppSec San Francisco.
In his session, “O My Data: OData Injection Attack and Other Injections in Microsoft Power Platform & UiPath,” Amichai will present a new attack technique called “OData Injection” that affects many API-based environments, particularly Microsoft Power Automate, part of the Microsoft Power Platform.
Attackers can use the technique to extract sensitive data and bypass access controls. Furthermore, Amichai argues that if you think that “No Code” = “No Vulnerabilities,” you are in for a BIG surprise. Not only are applications and automations written by citizen developers vulnerable to good ol’ injection attacks, but external attackers could also exploit these. We prove our points using demos of the attacks and vulnerabilities that simulate our findings in the field.
Join Amichai’s session to discuss LCNC app security and robotic process automation. Let’s fortify our defenses against these threats!
Amichai Shulman
Amichai Shulman, Nokod Security’s CTO and co-founder, is a cyber security researcher, entrepreneur, and investor with 30+ years of cybersecurity expertise across military, government, and commercial sectors.
Co-founding Imperva in 2002, he served as CTO at Imperva for over 15 years and drove innovation and thought leadership. Over the last two decades, Amichai has impacted the advancement of cybersecurity through groundbreaking research, making him a sought-after speaker at conferences such as RSAC, Infosec, BlackHat, and OWASP Appsec. His findings and commentary are frequently featured in industry publications, including The Register and Dark Reading, and reached the general press, such as the New York Times
As a seed investor and advisor, he played a pivotal role in guiding successful startups like Intsights, SkyFence, Lacoon, and Indegy.
Amichai is also an Adjunct Teacher at the Technion-Israel Institute of Technology. Amichai holds B.Sc and M.Sc degrees in Computer Science.