Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Do you think you are secure?

Jakub Gadkowski
April 07, 2016
Technology
0
98

Do you think you are secure?

Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.

Jakub Gadkowski

April 07, 2016
Tweet

More Decks by Jakub Gadkowski

See All by Jakub Gadkowski
Software Architecture Anti-patterns
jakubgg
1
240
I want to be a Hacker v3.0
jakubgg
0
210
I want to be a hacker... but I only look good in a white hat v2.0
jakubgg
0
84
I want to be a hacker... but I only look good in a white hat
jakubgg
0
220

Other Decks in Technology

See All in Technology
AWS Community Builderのススメ - みんなもCommunity Builderに応募しよう! -
smt7174
0
180
生成AI × 旅行 LLMを活用した旅行プラン生成・チャットボット
kominet_ava
0
160
駆け出しリーダーとしての第一歩〜開発チームとの新しい関わり方〜 / Beginning Journey as Team Leader
kaonavi
0
120
Docker Desktop で Docker を始めよう
zembutsu
PRO
0
170
なぜfreeeはハブ・アンド・スポーク型の データメッシュアーキテクチャにチャレンジするのか?
shinichiro_joya
2
470
WantedlyでのKotlin Multiplatformの導入と課題 / Kotlin Multiplatform Implementation and Challenges at Wantedly
kubode
0
250
商品レコメンドでのexplicit negative feedbackの活用
alpicola
1
360
メンバーがオーナーシップを発揮しやすいチームづくり
ham0215
2
120
機械学習を「社会実装」するということ 2025年版 / Social Implementation of Machine Learning 2025 Version
moepy_stats
5
1.1k
【NGK2025S】動物園(PINTO_model_zoo)に遊びに行こう
kazuhitotakahashi
0
230
FODにおけるホーム画面編成のレコメンド
watarukudo
PRO
2
280
新卒1年目、はじめてのアプリケーションサーバー【IBM WebSphere Liberty】
ktgrryt
0
120

Featured

See All Featured
Producing Creativity
orderedlist
PRO
343
39k
Statistics for Hackers
jakevdp
797
220k
BBQ
matthewcrist
85
9.4k
Designing Experiences People Love
moore
139
23k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
28
4.5k
The Web Performance Landscape in 2024 [PerfNow 2024]
tammyeverts
3
360
Designing on Purpose - Digital PM Summit 2013
jponch
116
7.1k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
30
2.1k
[RailsConf 2023] Rails as a piece of cake
palkan
53
5.1k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
19
2.3k
Rails Girls Zürich Keynote
gr2m
94
13k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
330
21k

Transcript

  1. Do you think you are secure?

  2. Who are we?

  3. Of course I am

  4. None

  5. Passwords

  6. I changed all my passwords to “incorrect” So whenever I

    forget, it will tell me “Your password is incorrect.”

  7. Passwords

  8. Passwords I’m about to tell you a secret

  9. Passwords - common sense Image © 2015 BBC

  10. Passwords Source: https://haveibeenpwned.com/

  11. Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND

    2.0) https://www. flickr.com/photos/92054945@N08/

  12. PIN

  13. Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi

    ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards

  14. Software

  15. None

  16. Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows

    8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137

  17. Vulnerabilities

  18. Mobiles

  19. Browsers

  20. I don’t care, I have an antivirus

  21. Antivirus

  22. Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/

  23. Antivirus

  24. None

  25. Antivirus - common sense

  26. Physical access

  27. Unlocked devices

  28. Hacker USBs

  29. USB Killer

  30. Physical Access / Keys

  31. Trust issues

  32. LIST OF WI-FI’s I TRUST

  33. Untrusted networks

  34. Untrusted networks

  35. HTTP Data Data

  36. HTTPS

  37. Untrusted networks

  38. VPN

  39. Sniffing around

  40. Emerce Attendees

  41. Emerce Attendees

  42. Emerce Attendees

  43. Emerce Attendees

  44. Emerce Attendees

  45. Pentests Unvalidated Redirects and Forwards

  46. Thank you!

  47. Question time