Menu
Home
People
Places
Arts
History
Plants & Animals
Science
Life & Culture
Technology
Reference.org
Sam Curry
open-in-new
<h2 id="biography">Biography</h2> <p>Curry grew up in <a href="/facts/Omaha,_Nebraska/05378f5l">Omaha, Nebraska</a> and attended Elkhorn High School. He began hacking at the age of 12,<a class="footnote-ref" id="fnref:6" href="#fn:6"><sup>6</sup></a> ethically disclosing vulnerabilities to various vendors over email.<a class="footnote-ref" id="fnref:7" href="#fn:7"><sup>7</sup></a> At <a href="/facts/University_of_Nebraska_Omaha/jyLBHEdr">University of Nebraska Omaha</a>, Curry worked with students through the cyber security club NULLify.<a class="footnote-ref" id="fnref:8" href="#fn:8"><sup>8</sup></a><a class="footnote-ref" id="fnref:9" href="#fn:9"><sup>9</sup></a> </p> <h2 id="publications-and-articles">Publications and articles</h2> <ul><li>"Researchers Secure Bug Bounty Payout to Help Raise Funds for Infant’s Surgery". <i>vice.com</i>. Retrieved June 2, 2021.<a class="footnote-ref" id="fnref:10" href="#fn:10"><sup>10</sup></a></li> <li>"Pega Infinity hotfix released after researchers flag critical authentication bypass vulnerability" <i>portswigger.net</i>. Retrieved June 2, 2021.<a class="footnote-ref" id="fnref:11" href="#fn:11"><sup>11</sup></a></li> <li>"We Hacked Apple for 3 Months: Here’s What We Found". <i>samcurry.net</i>. Retrieved April 9, 2021.<a class="footnote-ref" id="fnref:12" href="#fn:12"><sup>12</sup></a></li> <li>"Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty". <i>samcurry.net</i>. Retrieved November 3, 2019.<a class="footnote-ref" id="fnref:13" href="#fn:13"><sup>13</sup></a></li> <li>"Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More". <i>samcurry.net</i>. Retrieved November 26, 2023. <a class="footnote-ref" id="fnref:14" href="#fn:14"><sup>14</sup></a></li> <li>"Hackers Could Have Scored Unlimited Airline Miles by Targeting One Platform". <i>wired.com</i>. Retrieved March 23, 2024. <a class="footnote-ref" id="fnref:15" href="#fn:15"><sup>15</sup></a></li> <li>"Hackers Found a Way to Open Any of 3 Million Hotel Keycard Locks in Seconds". <i>wired.com</i>. Retrieved March 23, 2024. <a class="footnote-ref" id="fnref:16" href="#fn:16"><sup>16</sup></a></li></ul> <h2 id="references">References</h2> <ol> <li id="fn:1"><p>Ganz, Amy (30 July 2018). "Teen makes six figures hacking Google, Facebook legally". Fox Business. Retrieved 24 March 2020. <a href="https://www.foxbusiness.com/technology/teen-makes-six-figures-hacking-google-facebook-legally" target="_blank">https://www.foxbusiness.com/technology/teen-makes-six-figures-hacking-google-facebook-legally</a> <a href="#fnref:1" class="footnote-back-ref">↩</a></p></li> <li id="fn:2"><p>"The Talks that Define DEF CON 27". Bugcrowd. 5 August 2019. Retrieved 24 March 2020. <a href="https://www.bugcrowd.com/blog/the-talks-that-define-def-con-27/" target="_blank">https://www.bugcrowd.com/blog/the-talks-that-define-def-con-27/</a> <a href="#fnref:2" class="footnote-back-ref">↩</a></p></li> <li id="fn:3"><p>Murphy, Margi (10 August 2019). "Inside Black Hat, the world's biggest ethical hacker conference in Las Vegas". Telegraph. Retrieved 24 March 2020. <a href="https://www.telegraph.co.uk/technology/2019/08/10/inside-black-hat-worlds-biggest-ethical-hacker-conference-las/" target="_blank">https://www.telegraph.co.uk/technology/2019/08/10/inside-black-hat-worlds-biggest-ethical-hacker-conference-las/</a> <a href="#fnref:3" class="footnote-back-ref">↩</a></p></li> <li id="fn:4"><p>Vidas, Tim. "Kernelcon Speakers". Kernelcon. Retrieved 24 March 2020. <a href="https://kernelcon.org/speakers" target="_blank">https://kernelcon.org/speakers</a> <a href="#fnref:4" class="footnote-back-ref">↩</a></p></li> <li id="fn:5"><p>"null Dubai Meet 16 March 2023 March Special Meet". null.community. Retrieved 2023-03-24. <a href="https://null.community/" target="_blank">https://null.community/</a> <a href="#fnref:5" class="footnote-back-ref">↩</a></p></li> <li id="fn:6"><p>Haworth, Jessica (23 April 2019). "School's out: Meet the teen hackers swapping books for bugs". Portswigger. Retrieved 24 March 2020. <a href="https://portswigger.net/daily-swig/schools-out-meet-the-teen-hackers-swapping-books-for-bugs" target="_blank">https://portswigger.net/daily-swig/schools-out-meet-the-teen-hackers-swapping-books-for-bugs</a> <a href="#fnref:6" class="footnote-back-ref">↩</a></p></li> <li id="fn:7"><p>Paul, Kari. "This 18-year-old's hacking side hustle has earned him $100,000—and it's totally legal". MarketWatch. Retrieved 24 March 2020. <a href="https://www.marketwatch.com/story/this-18-year-olds-hacking-side-hustle-has-earned-him-100000-and-its-legal-2018-07-23" target="_blank">https://www.marketwatch.com/story/this-18-year-olds-hacking-side-hustle-has-earned-him-100000-and-its-legal-2018-07-23</a> <a href="#fnref:7" class="footnote-back-ref">↩</a></p></li> <li id="fn:8"><p>Denney, Vanessa (18 December 2018). "NULLify Capture The Flag". University of Nebraska Omaha. Retrieved 24 March 2020. <a href="https://www.unomaha.edu/college-of-information-science-and-technology/engagement/nullify-ctf.php" target="_blank">https://www.unomaha.edu/college-of-information-science-and-technology/engagement/nullify-ctf.php</a> <a href="#fnref:8" class="footnote-back-ref">↩</a></p></li> <li id="fn:9"><p>"Globally Used Points.com Loyalty System Hacked for Good". www.hackread.com. 4 August 2023. <a href="https://www.hackread.com/points-com-loyalty-system-hacked-for-good/" target="_blank">https://www.hackread.com/points-com-loyalty-system-hacked-for-good/</a> <a href="#fnref:9" class="footnote-back-ref">↩</a></p></li> <li id="fn:10"><p>Franceschi-Bicchierai, Lorenzo. "Researchers Secure Bug Bounty Payout to Help Raise Funds for Infant's Surgery". vice.com. Retrieved 2 June 2021. <a href="https://www.vice.com/en/article/m7eaqv/researchers-secure-bug-bounty-payout-to-help-raise-funds-for-infants-surgery" target="_blank">https://www.vice.com/en/article/m7eaqv/researchers-secure-bug-bounty-payout-to-help-raise-funds-for-infants-surgery</a> <a href="#fnref:10" class="footnote-back-ref">↩</a></p></li> <li id="fn:11"><p>Pritchard, Stephen (10 May 2021). "Pega Infinity hotfix released after researchers flag critical authentication bypass vulnerability". portswigger.net. Retrieved 2 June 2021. <a href="https://portswigger.net/daily-swig/pega-infinity-hotfix-released-after-researchers-flag-critical-authentication-bypass-vulnerability" target="_blank">https://portswigger.net/daily-swig/pega-infinity-hotfix-released-after-researchers-flag-critical-authentication-bypass-vulnerability</a> <a href="#fnref:11" class="footnote-back-ref">↩</a></p></li> <li id="fn:12"><p>Curry, Samuel. "We Hacked Apple for 3 Months: Here's What We Found". samcurry.net. Retrieved 3 November 2019. <a href="https://samcurry.net/hacking-apple/" target="_blank">https://samcurry.net/hacking-apple/</a> <a href="#fnref:12" class="footnote-back-ref">↩</a></p></li> <li id="fn:13"><p>Curry, Samuel (November 2019). "Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty". samcurry.net. Retrieved 3 November 2019. <a href="https://samcurry.net/filling-in-the-blanks-exploiting-null-byte-buffer-overflow-for-a-40000-bounty/" target="_blank">https://samcurry.net/filling-in-the-blanks-exploiting-null-byte-buffer-overflow-for-a-40000-bounty/</a> <a href="#fnref:13" class="footnote-back-ref">↩</a></p></li> <li id="fn:14"><p>Curry, Samuel (November 2019). "Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More". samcurry.net. Retrieved 3 November 2019. <a href="https://samcurry.net/web-hackers-vs-the-auto-industry" target="_blank">https://samcurry.net/web-hackers-vs-the-auto-industry</a> <a href="#fnref:14" class="footnote-back-ref">↩</a></p></li> <li id="fn:15"><p>Newman, Lily (August 2023). "Hackers Could Have Scored Unlimited Airline Miles by Targeting One Platform". wired.com. Retrieved 23 March 2024. <a href="https://www.wired.com/story/points-travel-rewards-platform-flaws/" target="_blank">https://www.wired.com/story/points-travel-rewards-platform-flaws/</a> <a href="#fnref:15" class="footnote-back-ref">↩</a></p></li> <li id="fn:16"><p>Greenberg, Andy (March 2024). "Hackers Found a Way to Open Any of 3 Million Hotel Keycard Locks in Seconds". wired.com. Retrieved 23 March 2024. <a href="https://www.wired.com/story/saflok-hotel-lock-unsaflok-hack-technique/" target="_blank">https://www.wired.com/story/saflok-hotel-lock-unsaflok-hack-technique/</a> <a href="#fnref:16" class="footnote-back-ref">↩</a></p></li> </ol>