Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥

Andrew Yates' Slides at NSSpain 2014

Avatar for Luis Ascorbe Luis Ascorbe
September 18, 2014
Programming
0
110

Andrew Yates' Slides at NSSpain 2014

Avatar for Luis Ascorbe

Luis Ascorbe

September 18, 2014
Tweet

More Decks by Luis Ascorbe

See All by Luis Ascorbe
Snapshot Testing at CMD+U Conf
Avatar for Luis Ascorbe lascorbe
2
130
Dave Verwer's Slides at NSSpain 2014
Avatar for Luis Ascorbe lascorbe
0
120
Alberto Lopez's Slides at NSSpain 2014
Avatar for Luis Ascorbe lascorbe
0
38
Erik Erice's Slides at NSSpain 2014
Avatar for Luis Ascorbe lascorbe
0
94
Krzysztof Zabłocki's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
8
440
Luis Solano's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
3
120
Daniel Eggert's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
8
210
Nacho Soto's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
4
130

Other Decks in Programming

See All in Programming
Integrating WordPress and Symfony
Avatar for Alexandre Salomé alexandresalome
0
120
FluorTracer / RayTracingCamp11
Avatar for kugi kugimasa
0
180
エディターってAIで操作できるんだぜ
Avatar for kis9a kis9a
0
650
30分でDoctrineの仕組みと使い方を完全にマスターする / phpconkagawa 2025 Doctrine
Avatar for Takashi Kanemoto ttskch
3
730
CSC509 Lecture 14
Avatar for Javier Gonzalez-Sanchez javiergs
PRO
0
220
How Software Deployment tools have changed in the past 20 years
Avatar for Geshan Manandhar geshan
0
28k
connect-python: convenient protobuf RPC for Python
Avatar for Anuraag Agrawal anuraaga
0
350
開発に寄りそう自動テストの実現
Avatar for Hiroki Iseri goyoki
1
360
モダンJSフレームワークのビルドプロセス 〜なぜReactは503行、Svelteは12行なのか〜
Avatar for Maple fuuki12
0
190
[堅牢.py #1] テストを書かない研究者に送る、最初にテストを書く実験コード入門 / Let's start your ML project by writing tests
Avatar for Shunsuke KITADA shunk031
11
6.9k
新卒エンジニアのプルリクエスト with AI駆動
Avatar for Yuta Fukunaga fukunaga2025
0
140
dotfiles 式年遷宮 令和最新版
Avatar for masawada masawada
1
670

Featured

See All Featured
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
Thoughts on Productivity
Avatar for Jon Yablonski jonyablonski
73
5k
Helping Users Find Their Own Way: Creating Modern Search Experiences
Avatar for Dan Newman danielanewman
31
3k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
234
17k
Practical Tips for Bootstrapping Information Extraction Pipelines
Avatar for Matthew Honnibal honnibal
25
1.6k
For a Future-Friendly Web
Avatar for Brad Frost brad_frost
180
10k
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
50
14k
Building Applications with DynamoDB
Avatar for Matt Wood mza
96
6.8k
Embracing the Ebb and Flow
Avatar for Simon Collison colly
88
4.9k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
30
5.7k
Art, The Web, and Tiny UX
Avatar for Lynn Fisher lynnandtonic
303
21k
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
54
7.9k

Transcript

  1. None

  2. What to do when you get hacked? @ay8s

  3. None
  4. None

  5. What happened?

  6. “Very happy I lost tons of weight easily with this

    special fruit.. “I lost 8 pounds this past week! All thanks to this new secret” “I lost 8 pounds this past week! All thanks to this new secret” “Very happy I lost tons of weight easily with this special fruit..
  7. None
  8. None

  9. So what to do…

  10. Communicate

  11. None
  12. None

  13. Make sure your customers know where to turn when something

    goes wrong.
  14. None
  15. None

  16. Act

  17. Reset Keys, Secrets etc.

  18. Encrypt

  19. Expedited Review

  20. Expedited Review

  21. Utilise Help

  22. Investigate

  23. Check GitHub Sessions

  24. None

  25. 30,000 Facebook Accounts Affected.

  26. None

  27. Act, again…

  28. If you can, don’t include keys, secrets

  29. OAuth / Native Auth

  30. Two Factor “ALL the things”

  31. Security Audits

  32. Rewards

  33. Lastly…

  34. Don’t Panic

  35. None
  36. None

  37. Signups Metrics

  38. None
  39. None

  40. Some more reading…

  41. ✉ andy@bufferapp.com @ay8s