Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
The security issue that killed a financial prod...
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
Cucumber
April 04, 2019
Technology
0
38
The security issue that killed a financial product launch - Nicola Sedgwick
Cucumber
April 04, 2019
Tweet
Share
More Decks by Cucumber
See All by Cucumber
Don't restrict your living documentation to a living documentation - Laurent Py and Vincent Pretre
cucumberbdd
0
61
Examples, Emotion, Entropy - An experience report of working with Cucumber people and methods to make better things and things better - Chris Young
cucumberbdd
0
39
Why silos are corporate chocolate cake - Katherine Kirk
cucumberbdd
0
48
Fighting crime and protecting vulnerable people using Gherkin, autism and a half-built kit car. Jamie Knight and Mike Southgate
cucumberbdd
0
100
Whole team quality: In the same boat or up the creek? - Alex Schladebeck
cucumberbdd
1
120
Between quality and time to market. How to specify and test an application in an agile context with a BDD approach - Christine Groebel
cucumberbdd
0
43
Doodle-Driven Development - Ciaran McNulty
cucumberbdd
0
91
Antifragility or taming the hydra - Katja Obring
cucumberbdd
0
46
Domain Storytelling - How to learn a domain language with examples from healthcare
cucumberbdd
0
40
Other Decks in Technology
See All in Technology
僕、S3 シンプルって名前だけど全然シンプルじゃありません よろしくお願いします
yama3133
1
200
聲の形にみるアクセシビリティ
tomokusaba
0
170
GitLab Duo Agent Platform + Local LLMサービングで幸せになりたい
jyoshise
0
290
猫でもわかるKiro CLI(AI 駆動開発への道編)
kentapapa
0
140
実践 Datadog MCP Server
nulabinc
PRO
1
100
タスク管理も1on1も、もう「管理」じゃない ― KiroとBedrock AgentCoreで変わった"判断の仕事"
yusukeshimizu
5
2.6k
Oracle Database@Google Cloud:サービス概要のご紹介
oracle4engineer
PRO
5
1.2k
OCHaCafe S11 #2 コンテナ時代の次の一手:Wasm 最前線
oracle4engineer
PRO
1
110
Yahoo!ショッピングのレコメンデーション・システムにおけるML実践の一例
lycorptech_jp
PRO
1
200
アーキテクチャモダナイゼーションを実現する組織
satohjohn
0
380
Kubernetesにおける推論基盤
ry
1
320
kintone開発のプラットフォームエンジニアの紹介
cybozuinsideout
PRO
0
860
Featured
See All Featured
How to Grow Your eCommerce with AI & Automation
katarinadahlin
PRO
1
140
For a Future-Friendly Web
brad_frost
183
10k
My Coaching Mixtape
mlcsv
0
70
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
tomoyanonymous
2
540
Practical Orchestrator
shlominoach
191
11k
How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.
livdayseo
0
83
What’s in a name? Adding method to the madness
productmarketing
PRO
24
4k
B2B Lead Gen: Tactics, Traps & Triumph
marketingsoph
0
75
Building Flexible Design Systems
yeseniaperezcruz
330
40k
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
konakalab
0
380
Balancing Empowerment & Direction
lara
5
940
The Straight Up "How To Draw Better" Workshop
denniskardys
239
140k
Transcript
None
the security issue that killed a financial product launch (that
was missed by the professional penetration testers and security ‘experts’)
#Cukenfest | nicolasedgwick me. (ex)Tester Agile Coach Rocket Scientist Mead
Maker CultureCon Co-Creator
bounty. Image credit https://internetbugbounty.org/ crowd. #Cukenfest | nicolasedgwick
crowd. Photo credit Rob Curran on Unsplash #Cukenfest | nicolasedgwick
reputation. crowd. #Cukenfest | nicolasedgwick
competition. Photo credit Patryk Sobczak on Unsplash crowd. #Cukenfest |
nicolasedgwick
reward. Photo credit Christian Dubovan on Unsplash crowd. #Cukenfest |
nicolasedgwick
story. Photo credit Sharon McCutcheon on Unsplash #Cukenfest | nicolasedgwick
vulnerable. Photo credit Mihály Köles on Unsplash story. #Cukenfest |
nicolasedgwick
ethics. story. Photo credit Cristian Newman on Unsplash #Cukenfest |
nicolasedgwick
challenge. Photo credit Luke van Zyl on Unsplash #Cukenfest |
nicolasedgwick
shopping. challenge. Photo credit rawpixel on Unsplash #Cukenfest | nicolasedgwick
practicalities. Photo credit Fancycrave on Unsplash challenge. #Cukenfest | nicolasedgwick
situation. Photo credit Matt Botsford on Unsplash #Cukenfest | nicolasedgwick
owasp. https://www.owasp.org situation. #Cukenfest | nicolasedgwick
professionals. Photo credit Hello I'm Nik on Unsplash crowd. #Cukenfest
| nicolasedgwick
tools. situation. #Cukenfest | nicolasedgwick
understanding. Photo credit John Carlisle on Unsplash situation. #Cukenfest |
nicolasedgwick
photo. #Cukenfest | nicolasedgwick analysis. Photo credit Luke van Zyl
on Unsplash #Cukenfest | nicolasedgwick
protected. Photo credit Robert Hickerson on Unsp analysis. #Cukenfest |
nicolasedgwick
impenetrable. Photo credit Ben Hershey on Unsplash analysis. #Cukenfest |
nicolasedgwick
landscape. Photo credit Luo Lei on Unsplash analysis. #Cukenfest |
nicolasedgwick
sense. Photo credit Vladislav Klapin on Unspla analysis. #Cukenfest |
nicolasedgwick
hacking. Photo credit Markus Spiske on Unsplash #Cukenfest | nicolasedgwick
vulnerability. Photo credit Hans-Peter Gauster on Unsplash hacking. #Cukenfest |
nicolasedgwick
system. Photo credit rawpixel on Unsplash hacking. #Cukenfest | nicolasedgwick
transmission. Photo credit Jack Price-Burns on Unsplash hacking. #Cukenfest |
nicolasedgwick
breach. Photo credit Ben Hershey on Unsplash hacking. #Cukenfest |
nicolasedgwick
disbelief. Photo credit Jonathan Hoxmark on Unsplash #Cukenfest | nicolasedgwick
denied. Photo credit B J on Unsplash disbelief. #Cukenfest |
nicolasedgwick
perhaps. Photo credit Mike Wilson on Unsplash disbelief. #Cukenfest |
nicolasedgwick
repetition. Photo credit Tine Ivanič on Unsplash #Cukenfest | nicolasedgwick
footsteps. Photo credit eberhard grossgasteiger o repetition. #Cukenfest | nicolasedgwick
advice. Photo credit Melinda Gimpel on Unsplash repetition. #Cukenfest |
nicolasedgwick
realisation. Photo credit Jez Timms on Unsplash repetition. #Cukenfest |
nicolasedgwick
Photo credit Stephanie Watters Flores on Unsplash outcome. #Cukenfest |
nicolasedgwick
bounty. Photo credit Brian Mann on Unsplash outcome. #Cukenfest |
nicolasedgwick
#Cukenfest | nicolasedgwick takeaways. • You already have the skill
you need to find security issues … your brain! • Critical thinking skills are perfect for locating security problems. • Engage security assessment as part of architecture planning and throughout development.
#Cukenfest | nicolasedgwick summary. experts CAN be wrong penetration tests
are NOT security think security at ALL points this is NOT an isolated situation
None
cucumberbdd
yama3133
tomokusaba
jyoshise
kentapapa
nulabinc
yusukeshimizu
oracle4engineer
lycorptech_jp
satohjohn
ry
cybozuinsideout
katarinadahlin
brad_frost
mlcsv
tomoyanonymous
shlominoach
livdayseo
productmarketing
marketingsoph
yeseniaperezcruz
konakalab
lara
denniskardys
