Troy Hunt

JANUARY 17, 2019

References I'm going to be in Oslo next week (Hack Yourself First workshop and NDC Security conference) Then in London the week after that (Hack Yourself First workshop and NDC conference) And I'll be in Denver for SnowFROC in March (cyber-something keynote ??)

Data breaches 198

Data breaches Hacking Internet Internet 198

Troy Hunt

JANUARY 10, 2018

Which brings us back to Aadhaar and some rather unpleasant headlines of late, particularly the likes of The World's Largest Biometric ID System Keeps Getting Hacked. They claim that they're hack-proof. But claiming the service is "hack-proof", that's something I definitely have an issue with. Can you prove otherwise?

Hacking 279

Hacking Government Encryption Risk 279

Schneier on Security

DECEMBER 14, 2022

Last week, I hosted a two-day workshop on reimagining democracy. I want to create a system that is resilient against hacking : one that can evolve as both technologies and threats evolve. I hope this is only the first of an ongoing series of similar workshops. Limit financial and military power?

Government 277

Government Technology Hacking 277

Troy Hunt

MARCH 27, 2020

This has been an absolutely flat-out week between running almost 3 hours of our free Cyber-Broken talk with Scott Helme, doing an hour of code with Ari each day (and helping get up to speed with remote schooling) then running our Hack Yourself First workshop on Aussie time zones the last couple of days.

Government 251

Government Hacking 251

Security Affairs

AUGUST 8, 2020

Chinese researchers discovered tens of vulnerabilities in a Mercedes-Benz E-Class, including issues that can be exploited to remotely hack it. The experts said that they did not manage to hack any critical safety functions of the tested vehicles. SecurityAffairs – hacking, Mercedes). ” the paper concluded.

Hacking 145

Hacking Advertising Mobile Engineering 145

Troy Hunt

SEPTEMBER 26, 2020

(I'll gradually go through the house and replace all the wall sockets with these) Was Activision "hacked" or do people just choose bad passwords?

Passwords 216

Passwords Technology Hacking 216

Security Boulevard

AUGUST 30, 2021

Today on sources and sinks, we talk to IoT hacker Aaron Guzman about his work in IoT security, his experience hacking Subaru cars, and how we can improve IoT security through regulation, policies, and education. The post Hacking IoT Security with Aaron Guzman appeared first on Security Boulevard. Follow Aaron on Twitter @scriptingxss.

IoT 105

IoT Hacking Education Technology 105

Troy Hunt

MAY 21, 2024

Trust is the cornerstone of why Stefán is joining us now. Not just trust in his technical skills, but trust in him as a person.

Passwords 339

Passwords Hacking 339

Troy Hunt

MARCH 20, 2020

Scott and I are running our workshops remotely which we've done many times before, but this is the first time the public has been able to sign up (for a fraction of the usual price too, I might add), plus we're doing our favourite talk as a free for all on Monday which to be honest, I'm really looking forward to.

Data breaches 243

Data breaches Hacking Technology 243

Troy Hunt

JULY 12, 2019

Enough about that, this week I'm also talking about Scott's upcoming public Glasgow workshop, more data breaches, Namecheap's faux pas and EVE Online's great security work they've very generously shared publicly.

Data breaches 184

Data breaches Passwords Accountability Hacking 184

Troy Hunt

NOVEMBER 17, 2019

References Scott Helme is running my Hack Yourself First workshop in Amsterdam on Dec 9 & 10 (he's getting awesome reviews on these too) Apparently, FinecoBank in Italy reckons you should Google your password and not use it if it appears 10 times or more (no, just don't) You'll also need to pay FinecoBank € 0.95

VPN 194

VPN Surveillance Passwords Banking 194

Troy Hunt

MAY 31, 2019

We're talking about the event, upcoming ones, Scott's Hack Yourself First UK tour, some funky default values in EV certs and then we head off down a rabbit hole of 2FA and people getting fired for failing simulated phishing tests. References We've launched a bunch of hotel packages with the Hack Yourself First UK tour!

Phishing 158

Phishing Hacking 158

Troy Hunt

JUNE 11, 2020

References The next public "Hack Yourself First" workshop Scott Helme and I are doing is "in" Melbourne later next month (ok, so it's online like everything else now, but it's at an Asia Pacific friendly time) You should see the size of the data breach that literally landed on my doorstep!!!

IoT 194

IoT Data breaches Phishing Hacking 194

Notice Bored

AUGUST 5, 2022

A glossy, nicely-constructed and detailed PowerPoint slide deck by Microsoft Security caught my beady this morning.

CISO 63

CISO Risk Artificial Intelligence Marketing 63

Google Security

MARCH 7, 2025

We hosted two editions of bugSWAT for training, skill sharing, and, of course, some live hacking in August, we had 16 bug hunters in attendance in Las Vegas, and in October, as part of our annual security conference ESCAL8 in Malaga, Spain , we welcomed 40 of our top researchers. workshops ( Las Vegas , So Paulo , Paris , and Malaga ).

Mobile 101

Mobile Hacking Engineering Technology 101

Troy Hunt

MAY 9, 2019

It's Minnesota this week and I've just wrapped up a couple of days of Hack Yourself First workshop followed by the opening keynote at NDC followed by PubConf. After a mammoth 30-hour door-to-door journey, I'm back in the USA!

Encryption 173

Encryption Hacking Phishing 173

Troy Hunt

FEBRUARY 16, 2019

References I'm doing a free user group in Brisbane for NDC on Thursday 28 Feb (this will be a really casual presentation, Q&A and fun night out) Speaking of NDC, the show will be on in my home town of the Gold Coast in late April (that's a dedicated security event which Scott Helme will be down for too) Speaking of NDC, I'll also be at NDC Minnesota (..)

Data breaches 204

Data breaches Hacking 204

Security Through Education

JANUARY 21, 2021

On February 20 th , we kicked off our very first Human Hacking Conference (HHC). The conference centered around training workshops that allow attendees to learn skills from professionals of various fields. Joe Navarro, a former FBI special agent , specializ ing in behavioral assessment , hosted a Nonverbal Communications workshop.

Hacking 75

Hacking Social Engineering Engineering Education 75

Troy Hunt

FEBRUARY 2, 2018

Scott Helme is now running my "Hack Yourself First" workshop in Europe (he's the perfect person for this and it'll help me spend more time at home). "The Dark Web" sounds kinda scary (but it's not - but that's what some people want you to think - but yeah, it's not!). I've now got a CSP on this blog! (it

Media 116

Media Hacking 116

Pen Test Partners

MARCH 18, 2025

While they are grassroots, volunteer-run, and operate independently from the main DEF CON event they share the common goal of fostering collaboration in the hacking community. 2600 groups meet to discuss hacking, security, and technology. University hacking societies University hacking societies are flourishing.

Cybersecurity 75

Cybersecurity Hacking Penetration Testing Telecommunications 75

Google Security

DECEMBER 14, 2021

In order to empower the next generation of Android security researchers, Google has collaborated with industry partners including HackerOne and PayPal to host a number of Android App Hacking Workshops. If you get stuck and need a hint on solving a challenge, the solutions for each are available in the Android App Hacking Workshop here.

Hacking 68

Hacking Education Cybersecurity 68

The Last Watchdog

AUGUST 2, 2018

One program, for instance, puts on workshops for Congressional staffers and other federal employees on how to recognize and avoid nation-state backed hackers looking to interfere in elections. So we’ve boiled the NIST framework down into a very focused workshop exercise. A large retailer may spend millions on cyber security.

Internet 160

Internet Internet Cybersecurity Education 160

Troy Hunt

NOVEMBER 14, 2017

I run a workshop titled Hack Yourself First in which people usually responsible for building web apps get to try their hand at breaking them. When I show the hash approach in my workshops, I often have people ask "but does this mean I need to recalculate the hash every single time I change the script?"

Hacking 233

Hacking Risk 233

Security Affairs

MAY 9, 2021

The researchers disclosed the tsuNAME flaw during the DNS OARC35 workshop and shared their findings with impacted organizations giving 90 days to address it before the vulnerability was disclosed. SecurityAffairs – hacking, TsuNAME). queries/s).” ” reads the research paper published by the experts. Pierluigi Paganini.

DNS 145

DNS DDOS Hacking Information Security 145

Security Affairs

MAY 16, 2021

The findings about the two attacks will be presented by two research teams at this year’s 15th IEEE Workshop on Offensive Technologies (WOOT’21). SecurityAffairs – hacking, AMD). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Encryption 137

Encryption Technology Hacking Information Security 137

Krebs on Security

AUGUST 12, 2022

The DHS warning came in advance of a workshop to be held this weekend at the DEFCON security conference in Las Vegas, where a security researcher is slated to demonstrate multiple weaknesses in the nationwide alert system. According to the EAS wiki, in February 2013, hackers broke into the EAS networks in Great Falls, Mt. and Marquette, Mich.

Firmware 241

Firmware Manufacturing Passwords Software 241

Troy Hunt

FEBRUARY 6, 2018

When I run my Hack Yourself First workshop , that's one of the first questions I ask - "what's the correct minimum password length?" However, there was nothing on minimum required lengths , and that got me thinking - what's the correct number?

Passwords 234

Passwords Authentication Marketing Accountability 234

Security Through Education

MARCH 3, 2021

Malicious actors use emotions in human hacking with a high success rate. Learn More About Emotions and Human Hacking. The Human Hacking Conference is happening March 11-13, 2021. We just added day tickets, giving you the option of attending whatever day you want and choosing your preferred workshops!

Social Engineering 64

Social Engineering Hacking Engineering Banking 64

Security Affairs

DECEMBER 15, 2022

The portal of the FBI’s InfraGard US Critical Infrastructure Intelligence was hacked, and data is available for sale on a cybercrime forum. The hack revealed the poor level of cybersecurity implemented by the FBI, the US agency told Krebs that it is aware of a potential false account associated with InfraGard. Pierluigi Paganini.

Cybercrime 98

Cybercrime Accountability Hacking Education 98

Troy Hunt

NOVEMBER 8, 2021

Maybe on hack-yourself-first.com 🤣 Clearly, I didn't forget and I also didn't forgive and he probably should have expected me (sorry, couldn't help myself!) But I can make mistakes. Coding mistakes. Configuration mistakes.

Scams 71

Scams Data breaches InfoSec Social Engineering 71

Security Through Education

APRIL 26, 2021

2020 was the kickoff of our first annual Human Hacking Conference (HHC) , and unless you’ve been living under a rock (or you don’t follow us on social media ), you’ve heard us discussing our flagship event ever since. We were excited to be hosting our second annual event, The Human Hacking Conference — Year Beta! Track 1 – Nonverbals.

Hacking 52

Hacking Social Engineering Engineering Phishing 52

Troy Hunt

DECEMBER 11, 2017

As many followers know, I run a workshop titled Hack Yourself First where I spend a couple of days with folks running through all sorts of common security issues and, of course, how to fix them.

Encryption 124

Encryption Hacking 124

SiteLock

AUGUST 27, 2021

Among them were Michael Veenstra, our Web Security Research Analyst, who gave an excellent talk on The Anatomy of a Hacked Site , and Cj, our new (and awesome) Social Media Specialist. The Anatomy Of A Hacked Site. This was a weekend of not only single sessions, but workshops as well. Shayda Torabi. Nathan Ingram @nathaningram.

Hacking 98

Hacking Media Marketing 98

Troy Hunt

SEPTEMBER 17, 2019

Then there's the authentication process itself and it reminds me of a discussion I had with a bank's CISO during a recent workshop. I'd just spent two days with his dev team hacking themselves first and I raised the bollocking they were getting on social media due a new password policy along the lines of those in the tweets you see above.

Banking 253

Banking Passwords Accountability Authentication 253

Troy Hunt

JANUARY 3, 2020

NewPassword: passw0rd ConfirmPassword: passw0rd This is a real request from my Hack Yourself First website I use as part of the workshops Scott Helme and I run. Way back in 2010 I was writing about this as part of the OWASP Top 10 for ASP.NET series and a near decade on, it's still a problem.

Passwords 325

Passwords Accountability Hacking Risk 325

Pen Test Partners

AUGUST 15, 2024

Maritime Attacks : Andrew Tierney examined potential remote hacks on ships and thoroughly discreted claims that the MV Dali was hacked before it collided with the Francis Scott Key bridge. Workshops : Hands-on sessions learning to pilot large ships in constrained harbours, also teaching aviation security. The focus this year?

Authentication 78

Authentication Cyber threats Hacking Risk 78

Security Affairs

MARCH 28, 2023

“The identified use cases that emerged from the workshops Europol carried out with its experts are by no means exhaustive. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ChatGPT) The post Europol warns of criminal use of ChatGPT appeared first on Security Affairs.

Artificial Intelligence 98

Artificial Intelligence Social Engineering Cybercrime Engineering 98