logo
episode-header-image
Apr 2021
47m 52s

Why Your Ecommerce Platform is Still at ...

MISSION
About this episode

Maggie Louie remembers the moment her career changed forever. Working with the L.A. Times on digital and mobile products, Maggie, now the founder and CEO of Otto, remembers a friend asking her to look into an issue they were having with their website.

“[they asked] me to look at their ad tags and figure out why their traffic was going through the roof, but they weren't making any more money. They couldn't figure it out. I had suspected that their ad techs were either misconfigured or there's something easy there, and after 24 hours looking through their code. I discovered that they indeed were being stolen internally. The head developer was hijacking all of the ad tags and just doing all sorts of crazy stuff.” 

The lines of code hidden in the JavaScript were driving traffic and stealing money, and it was that revelation that opened Maggie’s eyes to underground ad fraud and bot traffic, and this ad fraud wreaked havoc. On this episode of IT Visionaries, Maggie details how that moment led her to launch Otto and she discusses the company’s efforts to democratize access to internet security for all, its Chrome extension to protect consumers when online shopping, and the variety of enterprise solutions for businesses her team has developed.

Main Takeaways

  • New Frontier: Hackers are always looking for new industries with vulnerabilities to disrupt. Ad tech is one of the fastest-growing industries underserved by cybersecurity solutions. This is due to the complex nature of ad tech, which makes it difficult for cyber security experts to easily shift solutions into.
  • Safety is a Fallacy: Popular ecommerce platforms want you to believe that just because you use their service and tools that your company is safe from bad actors. The truth is that just because you use popular no-code or low-code operating systems, bad actors still target vulnerable people who don’t secure their code.
  • Always Be Testing: Just because your platform is safe today, doesn’t mean that it is safe tomorrow. The more your platform is customizable the more vulnerable your JavaScript becomes to outside bad actors. A general rule of thumb when it comes to security is to constantly be testing and looking over your code.

IT Visionaries is brought to you by the Salesforce Platform - the #1 cloud platform for digital transformation of every experience. Build connected experiences, empower every employee, and deliver continuous innovation - with the customer at the center of everything you do. Learn more at salesforce.com/platform

Up next
Today
Turning 90 Years of Data into AI-Powered Insights
Discover how to turn decades of data into a competitive edge, build lasting customer relationships beyond the first click, and apply AI in ways that truly drive impact. Joining us is Vineet Mahajan, CTO of US News & World Report, who shares how he’s led the 90-year-old brand thro ... Show More
37m 3s
Jun 26
What IT Leaders Can Learn from How the Government Buys Tech
IT leaders in regulated industries know the pain of navigating outdated, slow procurement systems – especially when critical missions depend on modern tools. In this episode, Bryana Tucci, Lead of the AWS Marketplace for the US Intelligence Community, shares how government agenci ... Show More
44m 4s
Jun 5
AI in Content Management | Opportunities and Challenges
Feeling buried under content chaos? You're not alone. Ravi Singh, President and Chief Product Officer at Brightspot, joins us to break down how IT leaders can regain control, cut through AI-generated noise, and build scalable, secure content systems. He shares the secrets behind ... Show More
52m 56s
Recommended Episodes
Nov 2021
From engineering to product (JS Party #203)
Liana Leahy tells Amal and KBall all about her journey from software engineer to product manager. Along the way we learn what a PM does, how to be great at it, how to know if it’s for you, why the role is in such demand these days, and much more. - It’s UNIX, I know this! Discuss ... Show More
1h 5m
Jun 2021
94: Mariposa
Chris Davis has been stopping IT security threats for decades. He’s currently running the company Hyas that he started. In this episode he tells a few tales of some threats that he helped stop.SponsorsSupport for this show comes from Exabeam. Exabeam lets security teams see what ... Show More
44m 8s
Sep 2019
Thu. 09.26 - Uber Wants To Be ‘the operating system for your everyday life’
Uber wants to become “the OS for everyday life,” Peloton’s IPO is a good news/bad news situation, the FTC sues Match.com for allegedly catfishing people, stuff I missed from yesterday’s Amazon event, and an “interesting raise” startup that wants to turn renters into home owners.S ... Show More
15m 55s
Jul 2021
96: The Police Station Incident
Nicole Beckwith wears a lot of hats. She’s a programmer, incident responder, but also a cop and a task force officer with the Secret Service. In this episode she tells a story which involves all of these roles.https://twitter.com/NicoleBeckwithSponsorsSupport for this show comes ... Show More
53m 26s
Sep 2022
In Machines We Trust: How retail is using AI to prevent fraud
Retailers face an evolving landscape of fraud tactics each day. It’s why companies are increasingly turning to AI to try and catch threat patterns never seen before, and block attacks before they happen. While this approach lends itself to efficiency, it’s also one that relies on ... Show More
16m 12s
Nov 2022
127: Maddie
Maddie Stone is a security researcher for Google’s Project Zero. In this episode we hear what it’s like battling zero day vulnerabilities. SponsorsSupport for this show comes from Zscalar. Zscalar zero trust exchange will scrutinize the traffic and permit or deny traffic based on ... Show More
54m 12s
Sep 2023
Agent Tesla still hits unpatched systems. Hot wallet hacks. AI and DevSecOps. Notes on Fancy Bear and NoName057(16). And some curious trends in the cyber labor market.
There’s a new Agent Tesla variant. Lost credentials and crypto wallet hacks. Tension between DevSecOps and AI. Fancy Bear makes an attempt on Ukrainian energy infrastructure. A look at NoName057(16). Tim Starks from the Washington Post's Cybersecurity 202. Simone Petrella and Hel ... Show More
31m 23s
Listen to millions of songs and podcasts on Anghami