Juho Nurminen

Juho Nurminen has nearly a decade of experience in application security starting from his first submissions to the Google VRP as a high school kid. He's seen the software industry from both the developer's and pentester's perspectives, and over the years he's been credited for several CVEs in Chrome, Firefox, Safari as well as a few more unconventional browsers. While breaking web technologies themselves has become something of a trademark for Juho, he hasn't shied away from applications running inside the browser, either: Juho has wreaked havoc in everything from online banking protocols and ERP systems to JavaScript UI frameworks. His recent research into Electron security has been a natural progression from those two areas.

Presentations: