Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do you think you are secure?
Search
Jakub Gadkowski
April 07, 2016
Technology
0
99
Do you think you are secure?
Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.
Jakub Gadkowski
April 07, 2016
Tweet
Share
More Decks by Jakub Gadkowski
See All by Jakub Gadkowski
Software Architecture Anti-patterns
jakubgg
1
270
I want to be a Hacker v3.0
jakubgg
0
210
I want to be a hacker... but I only look good in a white hat v2.0
jakubgg
0
85
I want to be a hacker... but I only look good in a white hat
jakubgg
0
250
Other Decks in Technology
See All in Technology
Android Studio の 新しいAI機能を試してみよう / Try out the new AI features in Android Studio
yanzm
0
280
【 LLMエンジニアがヒューマノイド開発に挑んでみた 】 - 第104回 Machine Learning 15minutes! Hybrid
soneo1127
0
120
Figma + Storybook + PlaywrightのMCPを使ったフロントエンド開発
yug1224
10
2.9k
VPC Latticeのサービスエンドポイント機能を使用した複数VPCアクセス
duelist2020jp
0
260
Devinを使ったモバイルアプリ開発 / Mobile app development with Devin
yanzm
0
190
事業価値と Engineering
recruitengineers
PRO
3
1.1k
mruby(PicoRuby)で ファミコン音楽を奏でる
kishima
1
290
トヨタ生産方式(TPS)入門
recruitengineers
PRO
4
460
Preferred Networks (PFN) とLLM Post-Training チームの紹介 / 第4回 関東Kaggler会 スポンサーセッション
pfn
PRO
1
250
.NET開発者のためのAzureの概要
tomokusaba
0
230
『FailNet~やらかし共有SNS~』エレベーターピッチ
yokomachi
1
100
制約理論(ToC)入門
recruitengineers
PRO
5
920
Featured
See All Featured
The MySQL Ecosystem @ GitHub 2015
samlambert
251
13k
How STYLIGHT went responsive
nonsquared
100
5.7k
How to Ace a Technical Interview
jacobian
279
23k
Become a Pro
speakerdeck
PRO
29
5.5k
Producing Creativity
orderedlist
PRO
347
40k
StorybookのUI Testing Handbookを読んだ
zakiyama
30
6k
Documentation Writing (for coders)
carmenintech
73
5k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
229
22k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
194
16k
Practical Orchestrator
shlominoach
190
11k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4k
Optimizing for Happiness
mojombo
379
70k
Transcript
Do you think you are secure?
Who are we?
Of course I am
None
Passwords
I changed all my passwords to “incorrect” So whenever I
forget, it will tell me “Your password is incorrect.”
Passwords
Passwords I’m about to tell you a secret
Passwords - common sense Image © 2015 BBC
Passwords Source: https://haveibeenpwned.com/
Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND
2.0) https://www. flickr.com/photos/92054945@N08/
PIN
Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi
ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards
Software
None
Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows
8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137
Vulnerabilities
Mobiles
Browsers
I don’t care, I have an antivirus
Antivirus
Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/
Antivirus
None
Antivirus - common sense
Physical access
Unlocked devices
Hacker USBs
USB Killer
Physical Access / Keys
Trust issues
LIST OF WI-FI’s I TRUST
Untrusted networks
Untrusted networks
HTTP Data Data
HTTPS
Untrusted networks
VPN
Sniffing around
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Pentests Unvalidated Redirects and Forwards
Thank you!
Question time