Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Do you think you are secure?

Avatar for Jakub Gadkowski Jakub Gadkowski
April 07, 2016
Technology
0
100

Do you think you are secure?

Talk given during Emerce eRecruitment on April 7th 2016, with my co-speaker Gerard Arall.

Avatar for Jakub Gadkowski

Jakub Gadkowski

April 07, 2016
Tweet

More Decks by Jakub Gadkowski

See All by Jakub Gadkowski
Software Architecture Anti-patterns
Avatar for Jakub Gadkowski jakubgg
1
280
I want to be a Hacker v3.0
Avatar for Jakub Gadkowski jakubgg
0
210
I want to be a hacker... but I only look good in a white hat v2.0
Avatar for Jakub Gadkowski jakubgg
0
85
I want to be a hacker... but I only look good in a white hat
Avatar for Jakub Gadkowski jakubgg
0
250

Other Decks in Technology

See All in Technology
ユニットテストに対する考え方の変遷 / Everyone should watch his live coding
Avatar for mdstoy mdstoy
0
130
Large Vision Language Modelを用いた 文書画像データ化作業自動化の検証、運用 / shibuya_AI
Avatar for Sansan R&D sansan_randd
0
110
リーダーになったら未来を語れるようになろう/Speak the Future
Avatar for Genki Sano sanogemaru
0
280
動画データのポテンシャルを引き出す! Databricks と AI活用への奮闘記(現在進行形)
Avatar for Databricks Japan databricksjapan
0
140
Access-what? why and how, A11Y for All - Nordic.js 2025
Avatar for Geisy Domiciano gdomiciano
1
110
神回のメカニズムと再現方法/Mechanisms and Playbook for Kamikai scrumat2025
Avatar for moriyuya moriyuya
4
530
Exadata Database Service on Dedicated Infrastructure(ExaDB-D) UI スクリーン・キャプチャ集
Avatar for oracle4engineer oracle4engineer
PRO
2
5.4k
DataOpsNight#8_Terragruntを用いたスケーラブルなSnowflakeインフラ管理
Avatar for Hiroki Yamagishi roki18d
1
340
AI駆動開発を推進するためにサービス開発チームで 取り組んでいること
Avatar for おーしろ noayaoshiro
0
170
SwiftUIのGeometryReaderとScrollViewを基礎から応用まで学び直す:設計と活用事例
Avatar for Fumiya Sakai fumiyasac0921
0
140
E2Eテスト設計_自動化のリアル___Playwrightでの実践とMCPの試み__AIによるテスト観点作成_.pdf
Avatar for ファインディ株式会社(イベント資料アップ用) findy_eventslides
0
120
BirdCLEF+2025 Noir 5位解法紹介
Avatar for MYSO myso
0
190

Featured

See All Featured
Navigating Team Friction
Avatar for Lara Hogan lara
189
15k
JavaScript: Past, Present, and Future - NDC Porto 2020
Avatar for David Neal reverentgeek
52
5.6k
Writing Fast Ruby
Avatar for Erik Berlin sferik
629
62k
It's Worth the Effort
Avatar for 3n 3n
187
28k
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
ReactJS: Keep Simple. Everything can be a component!
Avatar for Pedro Nauck pedronauck
667
120k
Embracing the Ebb and Flow
Avatar for Simon Collison colly
88
4.8k
Scaling GitHub
Avatar for Zach Holman holman
463
140k
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
368
20k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
Avatar for Eileen M. Uchitelle eileencodes
36
2.5k
The Language of Interfaces
Avatar for Des Traynor destraynor
162
25k
Making the Leap to Tech Lead
Avatar for Ryan Cromwell cromwellryan
135
9.5k

Transcript

  1. Do you think you are secure?

  2. Who are we?

  3. Of course I am

  4. None

  5. Passwords

  6. I changed all my passwords to “incorrect” So whenever I

    forget, it will tell me “Your password is incorrect.”

  7. Passwords

  8. Passwords I’m about to tell you a secret

  9. Passwords - common sense Image © 2015 BBC

  10. Passwords Source: https://haveibeenpwned.com/

  11. Weak Passwords Image © 2015 Carlaton White (Creative Commons BY-ND

    2.0) https://www. flickr.com/photos/92054945@N08/

  12. PIN

  13. Encryption ndPmgSsX6jyMdnb4wfoG DPdxVBWvpTP1XE2m3cKp mriRHefThSqohygZO5Pu mmxqNxY0tIjlmySpYNSz CMZgl2bDBUjqoGmWefKK aTv8rPhiz6PzUHtyv8mx tgVzfFmzKeSSpOSQrUho Qm5v9eyq2wlGkycx5HaU fTWh5DbBeFVHD0aupOWi

    ERTLn1XDxPBTQJScVJwg Hi Jakub, Below you will find an info on our new amazing product. I do not have to tell you that this is highly confidential. If this leaks we are in big trouble. Regards

  14. Software

  15. None

  16. Vulnerabilities Operative System Vulnerabilities Microsoft Windows 7 538 Microsoft Windows

    8 254 Microsoft Windows 10 84 Apple OS X 10.9 580 Apple OS X 10.10 282 Apple OS X 10.11 158 Ubuntu 13 81 Ubuntu 14 314 Ubuntu 15 137

  17. Vulnerabilities

  18. Mobiles

  19. Browsers

  20. I don’t care, I have an antivirus

  21. Antivirus

  22. Antivirus Reference: http://krebsonsecurity.com/2014/05/antivirus-is-dead-long-live-antivirus/

  23. Antivirus

  24. None

  25. Antivirus - common sense

  26. Physical access

  27. Unlocked devices

  28. Hacker USBs

  29. USB Killer

  30. Physical Access / Keys

  31. Trust issues

  32. LIST OF WI-FI’s I TRUST

  33. Untrusted networks

  34. Untrusted networks

  35. HTTP Data Data

  36. HTTPS

  37. Untrusted networks

  38. VPN

  39. Sniffing around

  40. Emerce Attendees

  41. Emerce Attendees

  42. Emerce Attendees

  43. Emerce Attendees

  44. Emerce Attendees

  45. Pentests Unvalidated Redirects and Forwards

  46. Thank you!

  47. Question time