Geoffrey Hill

@GHill_security

Software Engineering Security - I discover the threats, prepare the mitigations & improve the processes... and get some multi-day hikes in on the side...

(Artis-Secure Ltd.)
Vrijeme pridruživanja: veljača 2013.
3 fotografije ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @GHill_security

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @GHill_security

  1. 28. lis 2018.

    No truer statement can be said. Get the security into the architecture to remove entire attack vectors. Bug smashing is a costly, slow, non-consistent, poorly-repeatable way to 'enforce' security (but unfortunately still necessary due to poor coding).

    The root cause of the pervasive insecurity in IT are not individual bugs. They are design decisions driven by organisationally and economically misaligned incentives. Thinking that the patching of a single bug matters misunderstands the reality.
    Prikaži ovu nit
    Poništi
  2. 17. lis 2018.

    Is now the time to extol the virtues of code review? :-)

    Odgovor korisnicima @WIRED @squaremum
    2 korisnika označavaju da im se sviđa
    Poništi
  3. 17. lis 2018.

    Boston Dynamics is going from weird to downright creepy. And yes, I've seen the dancing dog.

    0:29
    Don't look now, but ' robot Atlas is back. And now it can do parkour.
    Prikaži ovu nit
    Poništi
  4. 30. ruj 2018.

    Hahah, yes so true. MSFT was a way ahead of the curve on that one... a bit too ahead.

    2001: "Let Microsoft .NET Passport handle authentication for your website" Everyone: "No way, MSFT is evil & privacy risk" 2011: "Let Facebook handle authentication for your website" Everyone: "Yes please, single sign-on is great"
    1 reply
    Poništi
  5. 14. kol 2018.

    Now, for the paranoid... here's a Vegas story to make you even -MORE- paranoid (yes, they ARE out to get YOU) :

    Poništi
  6. 8. kol 2018.

    Thank you @alexlhsecurity ! Had a great night delivering the new content and the audience was most receptive!!!

    Caved in and grabbed one of the beers laid on by . Ready to get my sponge on and learn from the master that is
    1 proslijeđeni tweet 5 korisnika označava da im se sviđa
    Poništi
  7. 8. kol 2018.

    Massive thank you to everyone who attended my talk at DevSecOps London last night!!! ()

    Poništi
  8. 26. velj 2018.

    For you coders, "Go Language - Web Application Secure Coding Practices" is by the Checkmarx Security Research team using "the OWASP Secure Coding Practices - Quick Reference Guide v2". It shows "how to do it securely" with good step-by-step examples.

    Poništi
  9. 20. velj 2018.

    The more I read about it, the more I like the concept of Agile Architecture within an Agile system:

    Poništi
  10. 19. velj 2018.

    Check for tickets... CyberThreat18 is in London 27-28 Feb at the QEII Conference Centre in Westminster. Hosted by UK National Cyber Security Centre (GCHQ) and the SANS Institute, it will show the latest techniques being used to mitigate the newest attacks.

    Poništi
  11. 8. pro 2017.

    Here's a story that stirs the FUD cybercrime pot a little...

    Poništi
  12. 7. lip 2017.

    Nation-state malicious actors in play with Qatar? Russians TAMPERING with news data to cause chaos? Seems so:

    Poništi
  13. 20. svi 2017.

    Wanna-be more assured you wanna-stop any wanna-cry attacks? Turn off SMBv1.0 from the "Windows features" menu under Installed Programs.

    Poništi
  14. 7. sij 2017.

    Brilliant analog hacking on underground entrance gates... Paris I think?

    Remote Command Execution
    Poništi
  15. 29. lis 2016.

    Hah, the human is still the weakest link in the security chain! Fool the owner to get their creds...

    Poništi
  16. 27. lis 2016.

    IoT security is an afterthought in these devices. Now you can command an army of drones instead of zombies!

    1 korisnik označava da mu se sviđa
    Poništi
  17. 18. lis 2016.

    Passwords are ubiquitous, easy to implement… and incredibly insecure if handled wrong, even in 2016.

    Poništi
  18. 14. lis 2016.

    A very interesting talk at Blackhat 2016 of assessing cost to attacker to exploit applications... (warning... geeky)

    Poništi
  19. 14. lis 2016.

    The house always wins... especially over the holiday period. Too much in this case... enough to cause IT havoc...

    Poništi
  20. 7. lis 2016.

    Reputational Damage... the -real- factor of cost due to poor security measures. Yahoo is now our poster child...

    Poništi

@GHill_security još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·