Feature

Meet Jeremiah Grossman, CTO Of WhiteHat Security

Larry Greenemeier

See more from Larry
Connect directly with Larry: Bio  |  Contact

Jeremiah Grossman, a former information security officer at Yahoo, is on a quest to make Web apps more secure. He's ambitious, having founded WhiteHat Security in 2001--when many tech companies were closing up shop--to provide continuous security monitoring of Web-based apps, which he knew would play a major factor in the Web's resurgence. And he's not afraid to break a sweat.

Larry Greenemeier | February 24, 2007 12:00 AM

Jeremiah Grossman
CTO Of WhiteHat Security
Interview by Larry Greenemeier


 Jeremiah Grossman, CTO Of WhiteHat Security -- Photograph by Jeffery Newbury

Photograph by Jeffery Newbury

More Insights

Webcasts

More >>

White Papers

More >>

Reports

More >>

1
GONE PHISHIN'
Keeping out every phishing attack is important, Grossman says. "It only takes one phishing attack, and nobody wants to click on your links anymore. Once customers lose trust, it's really hard, if not impossible, to get it back."

2
JUST BROWSING
At last summer's Black Hat conference, Grossman predicted IT departments were 18 months away from attacks that would infect users' Web browsers with JavaScript malware embedded in the Web sites they visit. Once the browser is infected, the corporate network is next. Since that time, "I've only been confirmed in my belief, especially with the focus on cross-site scripting attacks on the Web."

3
SECURITY ADVOCATE
A founder of the Web Application Security Consortium and a contributing member of the Center for Internet Security Apache Benchmark Group, Grossman regularly posts his insights on several security e-mail lists. One clear message: "The payloads being delivered by Web application attacks are much more severe than in years past."

4
AYE, MATE
A fan of contact sports, Grossman has played Australian rules football in the Bay Area for three years. In football, "I play the ruck. That's the guy who always goes up for the ball and gets hit."

5
DEFENSE IN DEPTH
When he's not defending Web apps, Grossman is studying self-defense. He took up Brazilian jujitsu last year. "I've been an Ultimate Fighting Championship fan for years, and the jujitsu style of fighting is a lot of ground and pound; I really wanted to give it a try."

About The Author
Larry Greenemeier covers security for InformationWeek, including hot topics such as hacking, identity management, the gamut of worms/viruses/spyware/phishing, and vulnerability assessment. Larry has an MS ...
See more from Larry
Connect directly with Larry: Bio  |  Contact

Related Reading

News

Commentary

Most Popular

On the Web

More On the Web»

Video

Slideshow

Informationweek Discussions

Start the Discussion


InformationWeek encourages readers to engage in spirited, healthy debate, including taking us to task. However, InformationWeek moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. InformationWeek further reserves the right to disable the profile of any commenter participating in said activities.

Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.
Subscribe to RSS

Resource Links