Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do you think you are secure?
Search
Jakub Gadkowski
April 07, 2016
Technology
0
100
Do you think you are secure?
Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.
Jakub Gadkowski
April 07, 2016
Tweet
Share
More Decks by Jakub Gadkowski
See All by Jakub Gadkowski
Software Architecture Anti-patterns
jakubgg
1
280
I want to be a Hacker v3.0
jakubgg
0
210
I want to be a hacker... but I only look good in a white hat v2.0
jakubgg
0
86
I want to be a hacker... but I only look good in a white hat
jakubgg
0
260
Other Decks in Technology
See All in Technology
QAを"自動化する"ことの本質
kshino
1
110
AI × クラウドで シイタケの収穫時期を判定してみた
lamaglama39
0
220
Redux → Recoil → Zustand → useSyncExternalStore: 状態管理の10年とReact本来の姿
zozotech
PRO
14
7.5k
AIを前提に、業務を”再構築”せよ IVRyの9ヶ月にわたる挑戦と未来の働き方 (BTCONJP2025)
yueda256
1
620
re:Invent完全攻略ガイド
junjikoide
1
320
第65回コンピュータビジョン勉強会
tsukamotokenji
0
110
マイクロリブート ~ACEマインドセットで実現するアジャイル~
sony
1
340
機密情報の漏洩を防げ! Webフロントエンド開発で意識すべき漏洩パターンとその対策
mizdra
PRO
9
3.2k
エンジニアに定年なし! AI時代にキャリアをReboot — 学び続けて未来を創る
junjikoide
0
180
CDKの魔法を少し解いてみる ― synth・build・diffで覗くIaCの裏側 ―
takahumi27
1
150
ステートレスなLLMでステートフルなAI agentを作る - YAPC::Fukuoka 2025
gfx
8
1.2k
AIと自動化がもたらす業務効率化の実例: 反社チェック等の調査・業務プロセス自動化
enpipi
0
470
Featured
See All Featured
What’s in a name? Adding method to the madness
productmarketing
PRO
24
3.8k
Building Flexible Design Systems
yeseniaperezcruz
329
39k
RailsConf 2023
tenderlove
30
1.3k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
333
22k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4.1k
Why You Should Never Use an ORM
jnunemaker
PRO
60
9.6k
StorybookのUI Testing Handbookを読んだ
zakiyama
31
6.3k
Agile that works and the tools we love
rasmusluckow
331
21k
Writing Fast Ruby
sferik
630
62k
GraphQLとの向き合い方2022年版
quramy
49
14k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
194
17k
A better future with KSS
kneath
239
18k
Transcript
Do you think you are secure?
Who are we?
Of course I am
None
Passwords
I changed all my passwords to “incorrect” So whenever I
forget, it will tell me “Your password is incorrect.”
Passwords
Passwords I’m about to tell you a secret
Passwords - common sense Image © 2015 BBC
Passwords Source: https://haveibeenpwned.com/
Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND
2.0) https://www. flickr.com/photos/92054945@N08/
PIN
Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi
ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards
Software
None
Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows
8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137
Vulnerabilities
Mobiles
Browsers
I don’t care, I have an antivirus
Antivirus
Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/
Antivirus
None
Antivirus - common sense
Physical access
Unlocked devices
Hacker USBs
USB Killer
Physical Access / Keys
Trust issues
LIST OF WI-FI’s I TRUST
Untrusted networks
Untrusted networks
HTTP Data Data
HTTPS
Untrusted networks
VPN
Sniffing around
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Pentests Unvalidated Redirects and Forwards
Thank you!
Question time
jakubgg
kshino
.jpg){kind=avatar}
lamaglama39
zozotech
yueda256
junjikoide
tsukamotokenji
sony
mizdra
takahumi27
gfx
.jpeg){kind=avatar}
enpipi
productmarketing
yeseniaperezcruz
tenderlove
caitiem20
kastner
jnunemaker
zakiyama
rasmusluckow
sferik
quramy
afnizarnur
kneath
