Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Do you think you are secure?
Search
Jakub Gadkowski
April 07, 2016
Technology
100
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Do you think you are secure?
Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.
Jakub Gadkowski
April 07, 2016
More Decks by Jakub Gadkowski
See All by Jakub Gadkowski
Software Architecture Anti-patterns
jakubgg
1
310
I want to be a Hacker v3.0
jakubgg
0
220
I want to be a hacker... but I only look good in a white hat v2.0
jakubgg
0
91
I want to be a hacker... but I only look good in a white hat
jakubgg
0
290
Other Decks in Technology
See All in Technology
AIと共生する開発者プラットフォーム:バクラクのモノレポ×マイクロサービス基盤
sakajunquality
2
3.2k
最近評価が難しくなった
maroon8021
0
280
Oracle Base Database Service 技術詳細
oracle4engineer
PRO
15
110k
知らん間に、回ってる
ming_ayami
0
380
クラウド上のデータ復旧で見落としがちな制約: 医療系 SaaS の BCP 設計から得た教訓
kakehashi
PRO
0
3.2k
Terraform共通モジュールをチーム横断で“変えられる”運用へ ― リリースと適用の分離
kekke_n
1
2.5k
AI Agent SaaS を支える自社仮想化基盤への挑戦と実運用 / ai-agent-saas-virtualization
flatt_security
2
3.6k
Road to SRE NEXTの今までとこれから
hiroyaonoe
0
270
生成AI活用によるODC欠陥分析の分類高速化の実践と導入効果 / 20260703 Suguru Ishii
shift_evolve
PRO
2
120
グローバルチームと挑むプロダクト開発
sansantech
PRO
1
170
人を動かすのは時間ではなく、納得感 〜新任EMが入社3ヶ月、組織を2回変えた話〜
kakehashi
PRO
3
200
Empower GenAI with Agile - あなたのアジャイルが生成AIのバフになる仕組み
hageyahhoo
1
160
Featured
See All Featured
Become a Pro
speakerdeck
PRO
31
6k
WCS-LA-2024
lcolladotor
0
680
Faster Mobile Websites
deanohume
310
32k
Tell your own story through comics
letsgokoyo
1
990
Marketing Yourself as an Engineer | Alaka | Gurzu
gurzu
0
260
Music & Morning Musume
bryan
47
7.3k
Building Applications with DynamoDB
mza
96
7.1k
Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025
aleyda
1
2.1k
Public Speaking Without Barfing On Your Shoes - THAT 2023
reverentgeek
1
460
Ruling the World: When Life Gets Gamed
codingconduct
0
280
Context Engineering - Making Every Token Count
addyosmani
9
1k
コードの90%をAIが書く世界で何が待っているのか / What awaits us in a world where 90% of the code is written by AI
rkaga
62
44k
Transcript
Do you think you are secure?
Who are we?
Of course I am
None
Passwords
I changed all my passwords to “incorrect” So whenever I
forget, it will tell me “Your password is incorrect.”
Passwords
Passwords I’m about to tell you a secret
Passwords - common sense Image © 2015 BBC
Passwords Source: https://haveibeenpwned.com/
Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND
2.0) https://www. flickr.com/photos/92054945@N08/
PIN
Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi
ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards
Software
None
Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows
8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137
Vulnerabilities
Mobiles
Browsers
I don’t care, I have an antivirus
Antivirus
Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/
Antivirus
None
Antivirus - common sense
Physical access
Unlocked devices
Hacker USBs
USB Killer
Physical Access / Keys
Trust issues
LIST OF WI-FI’s I TRUST
Untrusted networks
Untrusted networks
HTTP Data Data
HTTPS
Untrusted networks
VPN
Sniffing around
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Emerce Attendees
Pentests Unvalidated Redirects and Forwards
Thank you!
Question time