Aaron Costello, a SaaS security expert known for his insights on misconfigurations, dives into the complexities of hacking Salesforce, ServiceNow, and Power Pages. He humorously contrasts hacker stereotypes with dedicated bug bounty hunters. Discussion includes the dangers of file upload vulnerabilities and the significance of proper access controls. Notably, he explores Sockle injection vulnerabilities and the intricacies of Salesforce Apex classes, while emphasizing collaboration in identifying security flaws across various SaaS platforms. Tune in for practical techniques and insider insights!

Ben Siegel, founder of CyberNest, and Aaron Costello, chief of SaaS security research at AppOmni, dive into the complexities of knowledge sharing in cybersecurity. They discuss overcoming corporate reluctance to share information, emphasizing community-driven collaboration. Aaron highlights the dangers of SaaS misconfigurations, stressing user responsibility. The conversation also touches on the blurred lines of shared responsibility in cloud services and the evolving dynamics of cybersecurity tools and market consolidation.