Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Andrew Yates' Slides at NSSpain 2014

Avatar for Luis Ascorbe Luis Ascorbe
September 18, 2014
Programming
110
0

Andrew Yates' Slides at NSSpain 2014

Avatar for Luis Ascorbe

Luis Ascorbe

September 18, 2014

More Decks by Luis Ascorbe

See All by Luis Ascorbe
Snapshot Testing at CMD+U Conf
Avatar for Luis Ascorbe lascorbe
2
150
Dave Verwer's Slides at NSSpain 2014
Avatar for Luis Ascorbe lascorbe
0
130
Alberto Lopez's Slides at NSSpain 2014
Avatar for Luis Ascorbe lascorbe
0
42
Erik Erice's Slides at NSSpain 2014
Avatar for Luis Ascorbe lascorbe
0
100
Krzysztof Zabłocki's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
8
450
Luis Solano's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
3
130
Daniel Eggert's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
8
210
Nacho Soto's Slides at NSSpain 2013
Avatar for Luis Ascorbe lascorbe
4
140

Other Decks in Programming

See All in Programming
tRPCの概要と少しだけパフォーマンス
Avatar for Keigo Ebihara misoton665
2
210
今こそ押さえておきたい アマゾンウェブサービス(AWS)の データベースの基礎 おもクラ #6版
Avatar for Satoshi Kaneyasu satoshi256kbyte
1
250
ドメインイベントでビジネスロジックを解きほぐす #phpcon_odawara
Avatar for Takuma Kajikawa kajitack
3
780
Server-Side Kotlin LT大会 vol.18 [Kotlin-lspの最新情報と Neovimのlsp設定例]
Avatar for yasunori yasunori0418
1
150
Liberating Ruby's Parser from Lexer Hacks
Avatar for ydah ydah
2
1.3k
GNU Makeの使い方 / How to use GNU Make
Avatar for kaityo256 kaityo256
PRO
16
5.6k
Kingdom of the Machine
Avatar for yui-knk yui_knk
2
330
t *testing.T は どこからやってくるの?
Avatar for Kotaro Otaka otakakot
1
650
煩雑なSkills管理をSoC(関心の分離)により解決する――関心を分離し、プロンプトを部品として育てるためのOSSを作った話 / Solving Complex Skills Management Through SoC (Separation of Concerns)
Avatar for nrs nrslib
4
950
Coding as Prompting Since 2025
Avatar for Jimmy Moon ragingwind
0
830
2026_04_15_量子計算をパズルとして解く
Avatar for HideakiTakechi hideakitakechi
0
110
AIベース静的検査器の偽陽性率を抑える工夫3選
Avatar for Kuniwak orgachem
PRO
3
310

Featured

See All Featured
Joys of Absence: A Defence of Solitary Play
Avatar for Sebastian Deterding codingconduct
1
350
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
Avatar for Dan Newman danielanewman
231
23k
First, design no harm
Avatar for Per Axbom axbom
PRO
2
1.2k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
Avatar for Sam Stephenson sstephenson
162
16k
Practical Orchestrator
Avatar for Shlomi Noach shlominoach
191
11k
Amusing Abliteration
Avatar for ianozsvald ianozsvald
1
150
More Than Pixels: Becoming A User Experience Designer
Avatar for Michelle Schulp Hunt marktimemedia
3
380
Claude Code どこまでも/ Claude Code Everywhere
Avatar for nwiizo nwiizo
64
55k
Navigating Weather and Climate Data
Avatar for Ryan Abernathey rabernat
0
170
We Are The Robots
Avatar for Honza Javorek honzajavorek
0
220
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
333
22k
How To Speak Unicorn (iThemes Webinar)
Avatar for Michelle Schulp Hunt marktimemedia
1
440

Transcript

  1. None

  2. What to do when you get hacked? @ay8s

  3. None
  4. None

  5. What happened?

  6. “Very happy I lost tons of weight easily with this

    special fruit.. “I lost 8 pounds this past week! All thanks to this new secret” “I lost 8 pounds this past week! All thanks to this new secret” “Very happy I lost tons of weight easily with this special fruit..
  7. None
  8. None

  9. So what to do…

  10. Communicate

  11. None
  12. None

  13. Make sure your customers know where to turn when something

    goes wrong.
  14. None
  15. None

  16. Act

  17. Reset Keys, Secrets etc.

  18. Encrypt

  19. Expedited Review

  20. Expedited Review

  21. Utilise Help

  22. Investigate

  23. Check GitHub Sessions

  24. None

  25. 30,000 Facebook Accounts Affected.

  26. None

  27. Act, again…

  28. If you can, don’t include keys, secrets

  29. OAuth / Native Auth

  30. Two Factor “ALL the things”

  31. Security Audits

  32. Rewards

  33. Lastly…

  34. Don’t Panic

  35. None
  36. None

  37. Signups Metrics

  38. None
  39. None

  40. Some more reading…

  41. ✉ andy@bufferapp.com @ay8s