David has found some pretty stupid security mistakes. Blatantly overlooked controls, or flat out lazy system admins. David will show real-world examples of misuse & abuse, and improper data handling of passwords inside application code. We must remember a breech in one security system, can lead to a breach on another system because of the implicit trust relationships we build to get the job done.