Michele Spagnuolo - Staff Information Security Engineer

Hi, I'm Miki 👋.

I am a Staff Information Security Engineer at Google Zürich 🇨🇭. I currently lead the Agent & Web Observability area in the Information Security team, building infrastructure to maintain an inventory of AI agents across Alphabet and making the security properties of terabytes of daily web traffic query-able. This enables large-scale, data-driven security remediations and supports the deployment of modern web security features.

I co-authored 'strict-dynamic' in the CSP3 W3 specification, which now protects more than a third of the Internet's HTML traffic against Cross-Site Scripting (XSS). Internally, I built Security Signals, a comprehensive system providing security measurability across thousands of Google's web services handling traffic from billions of users, and I'm currently defining a common methodology for holistic product security measurability.

My other notable work includes Rosetta Flash, a Pwnie Awards-nominated exploitation technique that abused the Flash SWF format to bypass the Same Origin Policy, and BitIodine, the first open-source Bitcoin blockchain analysis framework, cited by over 480 academic publications. I also bring extensive technical experience in blockchains, serving as an expert witness in legal cases and advising fintech companies.

Born in Italy 🇮🇹, I studied computer engineering at Politecnico di Milano 🇮🇹 and UIC 🇺🇸. You can read more about my research and thoughts on my blog.

🌟 Expertise & Impact

🌐 Web Platform Security

Expert in modern web security primitives. Co-author of CSP3 'strict-dynamic', driving XSS mitigations across vast swathes of the Internet. Deep understanding of browser internals and exploitation.

🏗️ Security Infrastructure

Designed, built and operated web observability infrastructure handling terabytes of traffic daily for services spanning billions of global users.

🌍 Security Engineering at Scale

Led the deployment of web security features (CSP, Trusted Types, Fetch Metadata, COOP/COEP, etc.) across thousands of Google services, protecting billions of users.

🤖 AI & Agent Observability

Authored the technical strategy for building a metadata-rich inventory of the rapidly expanding ecosystem of AI Agents across Alphabet's infrastructure.

🔬 Vulnerability Research

Proven track record of high-impact research, including the Pwnie-nominated Rosetta Flash exploit and numerous CVEs across major software products (Adobe, libFLAC, PCRE).

⛓️ Blockchain & Crypto

Expert in blockchain analysis and security. Author of BitIodine, the first open-source Bitcoin blockchain analysis framework, cited by over 480 academic publications. Expert witness in legal cases and advisor to fintech companies.

⏱️ Timeline

December 2025 - Presented an introduction to web security and XSS at init.g(malaga) in Málaga, Spain.
March 2025 - Presented Security Signals: Making Web Security Posture Measurable At Scale at Workshop on Measurements, Attacks, and Defenses for the Web (MADWeb) 2025 in San Diego, CA.
September 2024 - Published Security Signals: Making Web Security Posture Measurable At Scale on Google Research.
November 2022 - Presented Securing web apps with modern features at Politecnico di Milano in Milan.
October 2019 - Presented The web is broken: let's fix it! at Codemotion in Milan and Hack In Bo in Bologna.
May 2019 - Presented Content Security Policy: A successful mess between hardening and mitigation at Hack In The Box: Amsterdam in Amsterdam.
April 2019 - Presented Content Security Policy: A successful mess between hardening and mitigation at LocoMocoSec in Hawai'i.
June 2018 - Presented Defense-in-depth techniques for modern web applications at CONFidence in Krakow.
May 2018 - Presented Defense-in-depth techniques for modern web applications at Hack In The Box: Amsterdam in Amsterdam and ScaleUp Porto Masterclass in Porto.
November 2017 - Guest of Gynvael's Hacking Livestream in Hacking Livestream #40: Cryptocurrency and blockchain.
November 2017 - Presented at TEDx Lake Como about the potential of blockchain technology 🇮🇹 in Como, Italy.
May 2017 - Presented So we broke all CSPs... You won't guess what happened next! at OWASP AppSec EU in Belfast, Northern Ireland.
April 2017 - Presented So we broke all CSPs... You won't guess what happened next! at Hack In The Box: Amsterdam in Amsterdam and OWASP AppSec NZ in Auckland, New Zealand.
January 2017 - Presented Extracting knowledge from cryptocurrencies at Global Conference on Money Laundering and Digital Currencies in Doha, Qatar.
November 2016 - Presented Breaking Bad Content Security Policies at ETH in Zürich.
November 2016 - Presented Adopting Strict Content Security Policy for XSS Protection at IEEE SecDev in Boston, MA.
October 2016 - Presented CSP is Dead, Long Live CSP: On the Insecurity of Whitelists and the Future of the Content Security Policy at the 23rd ACM Conference on Computer and Communications Security in Vienna.
June 2016 - Presented Making CSP great again! at OWASP AppSec EU in Rome. Also presented at Area41 in Zürich and at VOXXED Days in Lugano.
May 2016 - Presented CSP Oddities at Hack In The Box in Amsterdam.
May 2015 - Presented Rosetta Flash at OWASP AppSec EU in Amsterdam.
January 2015 - Presented Rosetta Flash at Tetcon in Saigon, Vietnam.
October 2014 - Presented Rosetta Flash at Hack In The Box: Malaysia in Kuala Lumpur, Malaysia.
July 2014 - Released details of Rosetta Flash, an exploit for manipulating SWF files in order to abuse JSONP endpoints on most high-profile websites (writeup: abusing JSONP with Rosetta Flash, slides). Won an Internet Bug Bounty and got nominated for a Pwnie Award.
January 2014 - Featured in Opera Security Blog for finding a Local File Inclusion vulnerability on opera.com.
January 2014 - Joined Google as an Information Security Engineer (ISE) in Zürich.
December 2013 - Graduated from Politecnico di Milano - Laurea Magistrale in Computer Engineering (110L/110, with honors).
September 2013 - Featured in Shopify Security Hall of Fame.
August 2013 - Won a Google Security Reward for finding a vulnerability (writeup).
July 2013 - Won a Google Security Reward for finding a critical vulnerability on google.com main domain (writeup). Featured on Google Security Hall of Fame.
May 2013 - Graduated from University of Illinois at Chicago - Master of Science in Computer Science (GPA 4.0/4.0).
February 2013 - Featured on eBay Responsible Disclosure Acknowledgements page.
July 2012 - Won a Google Security Reward for finding a Stored XSS vulnerability in GMail (writeup). Featured on Google Security Hall of Fame.
November 2011 - Featured on Google Security Hall of Fame for discovering a vulnerability in Google Sites.
July 2011 - Graduated from Politecnico di Milano - Master of Science in Computer Engineering.
2008 - High school diploma (Liceo scientifico PNI) - 100/100+L. Awarded a merit-based scholarship and added to the national INDIRE Registry of Excellence.
September 2007 - Become the youngest Offensive Security Certified Professional (OSCP), certificate holder ID: OS-101-02045.

📄 Papers

Security Signals: Making Web Security Posture Measurable At Scale

Draft on Google Research - September 2024

The area of security measurability is gaining increased attention, with a wide range of organizations calling for the development of scalable approaches for assessing the security of software systems and infrastructure. In this paper, we present our experience developing Security Signals, a comprehensive system providing security measurability for web services, deployed in a complex application ecosystem of thousands of web services handling traffic from billions of users. The system collects security-relevant information from production HTTP traffic at the reverse proxy layer, enabling large-scale security improvements to our services, prioritized rollouts of security enhancements, and an automated regression monitoring system for web security.

Security Signals: Making Web Security Posture Measurable At Scale - Google Research

CSP is Dead, Long Live CSP: On the Insecurity of Whitelists and the Future of the Content Security Policy

Presented at the 23rd ACM Conference on Computer and Communications Security in Vienna - October 2016

Content Security Policy is a web platform mechanism designed to mitigate cross-site scripting (XSS), the top security vulnerability in modern applications. In this paper, we take a closer look at the practical benefits of adopting CSP and identify significant flaws in real-world deployments that result in bypasses in 94.72% of all distinct policies.

We base our Internet-wide analysis on a search engine corpus of approximately 100 billion pages, finding that 14 out of the 15 domains most commonly whitelisted for loading scripts contain unsafe endpoints. As a consequence, 75.81% of distinct policies use script whitelists that allow attackers to bypass CSP.

Finally, we propose the 'strict-dynamic' keyword, an addition to the specification that facilitates the creation of policies based on cryptographic nonces, without relying on unsafe domain whitelists.

CSP is Dead, Long Live CSP: On the Insecurity of Whitelists and the Future of the Content Security Policy - Google Research

Abusing JSONP with Rosetta Flash

First presented at Hack In The Box: Kuala Lumpur - October 2014

In this paper we present Rosetta Flash (CVE-2014-4671, CVE-2014-5333), an exploitation technique that involves crafting charset-restricted Flash SWF files in order to abuse JSONP endpoints and allow Cross-Site Request Forgery (CSRF) attacks against domains hosting JSONP endpoints, bypassing Same Origin Policy.

With this attack it is possible to make a victim perform arbitrary requests to the domain with the JSONP endpoint and exfiltrate potentially sensitive data to an attacker-controlled site. Rosetta Flash was nominated for a Pwnie Award and won an Internet Bug Bounty by HackerOne.

Rosetta Flash paper - Slides

Rosetta Flash - GitHub

BitIodine: Extracting Intelligence from the Bitcoin Network

Master thesis work - University of Illinois at Chicago - Politecnico di Milano

Bitcoin allows users to benefit from pseudonymity, by generating an arbitrary number of aliases (or addresses) to move funds. However, the complete history of all transactions ever performed in the network is public.

In this thesis we present a modular framework, BitIodine, which parses the blockchain, clusters addresses that are likely to belong to a same user or group of users, classifies such users and labels them, and visualizes complex information extracted from the network.

We tested BitIodine on several real-world use cases, finding early links between the founder of the Silk Road and cold wallets exceeding 111,114 BTC. In another example, we investigated the CryptoLocker ransomware, accurately quantifying the number of ransoms paid and extracting information about the victims.

BitIodine: Extracting Intelligence from the Bitcoin Network - Thesis .

Michele Spagnuolo, Federico Maggi and Stefano Zanero - BitIodine: Extracting Intelligence from the Bitcoin Network (Financial Cryptography and Data Security 2014).

BitIodine - Slides

BitIodine - GitHub

Using Parse Tree Validation to Prevent SQL Injection Attacks

Based on Using Parse Tree Validation to Prevent SQL Injection Attacks by Gregory T. Buehrer, Bruce W. Weide, and Paolo A. G. Sivilotti

An SQL injection attack targets interactive web applications that employ database services. Such applications accept user input, such as form fields, and then include this input in database requests, typically SQL statements. In SQL injection, the attacker provides user input that results in a different database request than was intended by the application programmer. That is, the interpretation of the user input as part of a larger SQL statement, results in an SQL statement of a different form than originally intended. We describe a technique to prevent this kind of manipulation and hence eliminate SQL injection vulnerabilities. The technique is based on comparing, at run time, the parse tree of the SQL statement before inclusion of user input with that resulting after inclusion of input.

I wrote a simple Bison grammar for a subset of SQL and a lexer in Flex, then a PHP frontend that presents the user differences between parse trees of two queries: a reference query and a query to test.

Using Parse Tree Validation to Prevent SQL Injection Attacks

💻 Projects

dns-over-tls-forwarder (GitHub) - A simple, fast DNS-over-TLS forwarding server with hybrid LRU/MFA caching written in Go.
BitIodine (GitHub, paper) - Rust Bitcoin blockchain parser with clustering capabilities, allowing to group together addresses in ownership clusters. Please contact me if you are interested in using BitIodine for any real-world use case.

🐞 My CVEs

CVE-2014-4500, buffer overflow in libicu.
CVE-2014-4671, in Adobe Flash. Writeup: abusing JSONP with Rosetta Flash.
CVE-2014-5333, in Adobe Flash. Writeup: Adobe fixed Rosetta Flash today.
CVE-2014-8962 and CVE-2014-9028, in libFLAC. oCERT advisory #2014-008.
CVE-2014-8964, in PCRE (bug).
CVE-2014-8145, in sox. oCERT advisory #2014-010.
CVE-2014-8139, CVE-2014-8140 and CVE-2014-8141, in unzip. oCERT advisory #2014-011.
CVE-2015-3042, in Adobe Flash. Adobe Security Bulletin.
CVE-2016-4167, in Adobe DNG SDK. Adobe Security Bulletin.

📬 Contact

If you want to send me unencrypted email, you can contact me at miki@miki.it. If you prefer GPG-encrypted email, please use my GPG key. If you want to send me an encrypted file, please use age with my ed25519 SSH key.