11-14, 15:30–16:00 (Asia/Bangkok), Stage 2
The explosive growth of Web3 has brought about innovation, decentralization, and financial opportunity. But let’s be honest—Web3 security is a disaster. In this talk, we’ll confront embarrassing truths: drainer attacks, weak wallet protections, and overlooked vulnerabilities. But we won’t stop there; I’ll share practical fixes to protect users and show how Web3 developers can raise the bar. If we want Web3 to thrive, we have to stop attackers beating us with low-effort attacks. We can do better!
Andrew has been working in infosec for over a decade, starting Paterva where he worked on building Maltego for 10+ years. Later moving to the US to work at BitMEX (IR), Robinhood (IR/D&R), Uniswap (Head of Security) and finally Privy (Principal Security Eng). He has spoken at many different conferences including Blackhat, DEF CON as well as having taught more than 16 different Black Hat courses. He enjoys cat memes, security and punk rock and wants to do better at protecting users in web3!