Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Do you think you are secure?

Avatar for Jakub Gadkowski Jakub Gadkowski
April 07, 2016
Technology
100
0

Do you think you are secure?

Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.

Avatar for Jakub Gadkowski

Jakub Gadkowski

April 07, 2016

More Decks by Jakub Gadkowski

See All by Jakub Gadkowski
Software Architecture Anti-patterns
Avatar for Jakub Gadkowski jakubgg
1
300
I want to be a Hacker v3.0
Avatar for Jakub Gadkowski jakubgg
0
220
I want to be a hacker... but I only look good in a white hat v2.0
Avatar for Jakub Gadkowski jakubgg
0
91
I want to be a hacker... but I only look good in a white hat
Avatar for Jakub Gadkowski jakubgg
0
290

Other Decks in Technology

See All in Technology
自作エディターをOSSにして分かった、一人に刺さる開発が世界を動かす理由
Avatar for Shinya Saita shinyasaita
1
310
20260528_生成AIを専属DSに_Howの次にすべきことを考える
Avatar for NobuakiOshiro doradora09
PRO
0
190
A Harness for Behaviour: how to get AI to generate code that does what we intend, or "TDD in the age of AI"
Avatar for Matteo Vaccari xpmatteo
0
400
Kaggle未経験社員をメダリストに育てる「AIドラゴン桜」
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
530
AI駆動開発でなんでもハンズオン環境をつくってみた
Avatar for yoshimi0227 yoshimi0227
0
120
Python開発環境にハーネス適用を検討する
Avatar for yuuuka yuuka51
1
500
コーディングエージェントはTypeScriptの 型エラーをどう自己修正しているのか
Avatar for Melonps melonps
4
470
AIコーディングエージェントの活用で、コードは静かに肥大化した
Avatar for 篠田 陽介 yosukeshinoda
1
340
実践 TanStack Start ― 新規プロダクトを開発して確立した、サーバーとクライアント境界の設計パターン / Practical TanStack Start Server-Client Boundary Patterns
Avatar for 株式会社カミナシ kaminashi
2
310
社内RAGの導入で気を付けたポイント
Avatar for やくも yakumo
2
150
[みん強]AIの価値を最大化するデータ基盤戦略:Self-Service型Data Meshへの転換とAgentic AI Meshに向けた取り組み with Snowflake他
Avatar for Matsubara y_matsubara
1
180
checker.tsにチキンレースを仕掛けてみた:型エラー(TS2589)が発生する境界線を求めて
Avatar for Hal hal_spidernight
1
200

Featured

See All Featured
Practical Orchestrator
Avatar for Shlomi Noach shlominoach
191
11k
Digital Projects Gone Horribly Wrong (And the UX Pros Who Still Save the Day) - Dean Schuster
Avatar for UX Y'all uxyall
0
1.5k
Information Architects: The Missing Link in Design Systems
Avatar for Michelle Chin soysaucechin
0
930
Building Flexible Design Systems
Avatar for Yesenia Perez-Cruz yeseniaperezcruz
330
40k
What the history of the web can teach us about the future of AI
Avatar for Ines Montani inesmontani
PRO
1
570
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
Avatar for mongodb mongodb
49
9.9k
KATA
Avatar for Megan Lloyd mclloyd
PRO
35
15k
A better future with KSS
Avatar for Kyle Neath kneath
240
18k
How Software Deployment tools have changed in the past 20 years
Avatar for Geshan Manandhar geshan
0
34k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4.3k
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
515
110k
Max Prin - Stacking Signals: How International SEO Comes Together (And Falls Apart)
Avatar for Tech SEO Connect techseoconnect
PRO
0
160

Transcript

  1. Do you think you are secure?

  2. Who are we?

  3. Of course I am

  4. None

  5. Passwords

  6. I changed all my passwords to “incorrect” So whenever I

    forget, it will tell me “Your password is incorrect.”

  7. Passwords

  8. Passwords I’m about to tell you a secret

  9. Passwords - common sense Image © 2015 BBC

  10. Passwords Source: https://haveibeenpwned.com/

  11. Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND

    2.0) https://www. flickr.com/photos/92054945@N08/

  12. PIN

  13. Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi

    ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards

  14. Software

  15. None

  16. Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows

    8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137

  17. Vulnerabilities

  18. Mobiles

  19. Browsers

  20. I don’t care, I have an antivirus

  21. Antivirus

  22. Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/

  23. Antivirus

  24. None

  25. Antivirus - common sense

  26. Physical access

  27. Unlocked devices

  28. Hacker USBs

  29. USB Killer

  30. Physical Access / Keys

  31. Trust issues

  32. LIST OF WI-FI’s I TRUST

  33. Untrusted networks

  34. Untrusted networks

  35. HTTP Data Data

  36. HTTPS

  37. Untrusted networks

  38. VPN

  39. Sniffing around

  40. Emerce Attendees

  41. Emerce Attendees

  42. Emerce Attendees

  43. Emerce Attendees

  44. Emerce Attendees

  45. Pentests Unvalidated Redirects and Forwards

  46. Thank you!

  47. Question time