Ali Kabeel
Ali Kabeel is a Security and Privacy Engineering Lead at Bending Spoons. With a passion for security, Ali has contributed to the discovery of numerous vulnerabilities across major platforms as a Bug Bounty Hunter. He holds a Bachelor’s degree in Computer Science and has published research on microservice security. Ali is committed to advancing web and application security, sharing his knowledge through conference talks, active community engagement and mentoring.
Session
Invitation systems in social media platforms often appear simple, but they can hide critical business logic vulnerabilities. In this talk, I’ll reveal how I exploited these flaws in platforms like Facebook and Snapchat to gain unauthorized access, maintain connections indefinitely, and even block users from their own accounts. These real-world examples demonstrate how overlooked invitation mechanics can expose significant security risks, leading to privacy breaches and persistent access issues. Attendees will gain insight into how these vulnerabilities can be exploited and what measures can be taken to defend against them.