Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do you think you are secure?
Search
Jakub Gadkowski
April 07, 2016
Technology
0
100
Do you think you are secure?
Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.
Jakub Gadkowski
April 07, 2016
Tweet
Share
More Decks by Jakub Gadkowski
See All by Jakub Gadkowski
Software Architecture Anti-patterns
jakubgg
1
280
I want to be a Hacker v3.0
jakubgg
0
210
I want to be a hacker... but I only look good in a white hat v2.0
jakubgg
0
85
I want to be a hacker... but I only look good in a white hat
jakubgg
0
250
Other Decks in Technology
See All in Technology
ユニットテストに対する考え方の変遷 / Everyone should watch his live coding
mdstoy
0
130
Large Vision Language Modelを用いた 文書画像データ化作業自動化の検証、運用 / shibuya_AI
sansan_randd
0
110
リーダーになったら未来を語れるようになろう/Speak the Future
sanogemaru
0
280
動画データのポテンシャルを引き出す! Databricks と AI活用への奮闘記(現在進行形)
databricksjapan
0
140
Access-what? why and how, A11Y for All - Nordic.js 2025
gdomiciano
1
110
神回のメカニズムと再現方法/Mechanisms and Playbook for Kamikai scrumat2025
moriyuya
4
530
Exadata Database Service on Dedicated Infrastructure(ExaDB-D) UI スクリーン・キャプチャ集
oracle4engineer
PRO
2
5.4k
DataOpsNight#8_Terragruntを用いたスケーラブルなSnowflakeインフラ管理
roki18d
1
340
AI駆動開発を推進するためにサービス開発チームで 取り組んでいること
noayaoshiro
0
170
SwiftUIのGeometryReaderとScrollViewを基礎から応用まで学び直す:設計と活用事例
fumiyasac0921
0
140
E2Eテスト設計_自動化のリアル___Playwrightでの実践とMCPの試み__AIによるテスト観点作成_.pdf
findy_eventslides
0
120
BirdCLEF+2025 Noir 5位解法紹介
myso
0
190
Featured
See All Featured
Navigating Team Friction
lara
189
15k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
52
5.6k
Writing Fast Ruby
sferik
629
62k
It's Worth the Effort
3n
187
28k
Agile that works and the tools we love
rasmusluckow
331
21k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
667
120k
Embracing the Ebb and Flow
colly
88
4.8k
Scaling GitHub
holman
463
140k
Building Better People: How to give real-time feedback that sticks.
wjessup
368
20k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
eileencodes
36
2.5k
The Language of Interfaces
destraynor
162
25k
Making the Leap to Tech Lead
cromwellryan
135
9.5k
Transcript
Do you think you are secure?
Who are we?
Of course I am
None
Passwords
I changed all my passwords to “incorrect” So whenever I
forget, it will tell me “Your password is incorrect.”
Passwords
Passwords I’m about to tell you a secret
Passwords - common sense Image © 2015 BBC
Passwords Source: https://haveibeenpwned.com/
Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND
2.0) https://www. flickr.com/photos/92054945@N08/
PIN
Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi
ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards
Software
None
Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows
8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137
Vulnerabilities
Mobiles
Browsers
I don’t care, I have an antivirus
Antivirus
Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/
Antivirus
None
Antivirus - common sense
Physical access
Unlocked devices
Hacker USBs
USB Killer
Physical Access / Keys
Trust issues
LIST OF WI-FI’s I TRUST
Untrusted networks
Untrusted networks
HTTP Data Data
HTTPS
Untrusted networks
VPN
Sniffing around
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Pentests Unvalidated Redirects and Forwards
Thank you!
Question time