Serverless breaches expose dangerous missteps in securing function chains, IAM policies, and API gateways. We unravel serverless compromises to reveal the overlooked risks lurking in your infrastructureless apps. Arm yourself with actionable lessons to lock down your functions and avoid headlines.

As organizations rapidly adopt serverless, they expose themselves to new risks not secured by traditional controls. Real-world serverless breaches have already exposed overlooked flaws and misconfigurations resulting in catastrophic data theft and service disruption.

In this talk, we conduct a deep forensic analysis of high-profile serverless compromises involving misconfigured S3 buckets, overly permissive functions, vulnerable web frameworks, and Common missteps in serverless permissions and secrets management.

Walk away with actionable lessons to avoid becoming the next serverless breach headline. We’ll provide concrete steps to reduce your attack surface, implement least privilege access, monitor anomalous activity, and instill a “secure by default” posture across your infrastructureless apps.

Babar Khan Akhunzada is a 24-year-old cyber wizard, Founder & CEO of SecurityWall - Stacked on AI & Big Data technology to help enterprises and individuals enhance security capabilities through capability building, risk management and hybrid security audit.

Babar have helped numerous enterprises to tackle financial cyber crime issues on business application and infrastructure scale. Enterprises improved 95% of their security alignments and protected against cyber criminals for zero-paid orders leading to financial crisis.

Babar is acknowledged by well-known tech companies for contributing to their products' security including Adobe, eBay, Apple, Nokia, Microsoft, Oracle, Sony, Redhat, Yahoo, DuckDuckGo, StackOverflow, NextCloud, and a 100+ more.

Babar have many years of experience of bug bounty hunting and ethical work, which make him unique in all at such young age. Babar has served as a Security Consultant for Directorate of Information Technology and was responsible for security matters of Government Data Center during his tenure.

Recently, Babar has been featured in 25-Under-25 as a young high achiever. Babar have been to many conferences and events including BlackHatMEA, High Technology Crime Investigation Association, UC EXPO, OWASP Romania, Cyber Security Indonesia, EC-Council for Annual Halted Conference, HITCON Taiwan and many more.