Jeremiah Grossman

IRL Name: 
Jeremiah Grossman

Jeremiah Grossman, founder and chief technology officer of WhiteHat Security, is a web application security enthusiast and a founding member of the Web Application Security Consortium (WASC). He is also a frequent speaker at industry events including the Black Hat Briefings, RSA Conference, ISACA, CSI, InfoSec World, OWASP, ISSA, and Defcon as well as a number of large universities. Mr. Grossman is also a featured expert and frequent contributor on TechTarget's He has also hyped Clickjacking as a vulnerability.


Listed in InfoWorld’s Top 25 CTOs for 2007.

He has authored dozens of articles and white papers, is credited with the discovery of many cutting-edge attack and defensive techniques and is a co-author of XSS Attacks: Cross Site Scripting Exploits and Defense.

Former information security officer at Yahoo

He calls CSRF “the sleeping giant” of web vulnerabilities.


Some people call him a media whore for being featured in USA Today, the Washington Post, Information Week, NBC Nightly News, and many others.