Kevin McSheehan

Kevin McSheehan (born July 7, 1986) is an American cybersecurity researcher and ethical hacker from Plymouth, New Hampshire. His hometown is Lebanon, Maine. McSheehan is best known for finding cybersecurity vulnerabilities in social media and cryptocurrency software.

Kevin McSheehan
Born	(1986-07-07) July 7, 1986 (age 37)[1] Plymouth, New Hampshire, U.S.[citation needed]
Occupation(s)	Cybersecurity researcher and programmer
Known for	Cybersecurity, ethical hacking, software engineering

He has discovered several CVSS High and Critical exploits. Most notably, patching the Central Intelligence Agency's Russian spy funnel on X.^[2][3][4] In 2023, he discovered a Peer-to-peer denial of service attack on Bitcoin,^[5] along with Remote code execution on Slack.^[6]

In 2015, he created software that would reveal Google, Microsoft, and other email services account names through a vulnerability with the Google Maps Engine.^[7]

As an entrepreneur, he founded the penetration testing startup Envadr and co-invented^[8] an economic model for an experimental stablecoin.

References

1. "Kevin McSheehan (@123456) / X". Retrieved June 21, 2024.
2. "Twitter glitch allows CIA informant channel to be hijacked". BBC. October 17, 2023. Retrieved 2024-06-21.
3. "Man Exploited CIA X Glitch to Reroute Russia Informants to His Telegram". Business Insider. October 18, 2023. Retrieved 2024-06-21.
4. "A Researcher Hijacked the CIA's Secure Contact Link for Informants Due to a Flaw in X". Vice. October 18, 2023. Retrieved 2024-06-21.
5. "CVE-2023-33297". The National Vulnerability Database. May 22, 2023. Retrieved June 21, 2024.
6. "Slack vulnerability allowed attackers to smuggle malicious files onto victims' devices". The Daily Swig. July 9, 2020. Retrieved June 21, 2024.
7. "Google Drive and Maps Engine Leak Name Info for Email Accounts". January 21, 2015. Retrieved June 21, 2024.
8. "US20190114707A1 - Distribution of Blockchain Tokens". Google Patents. Retrieved June 21, 2024.