Troy Hunt ( https://www.troyhunt.com/ )
What motivates attackers to dump data publicly? How is it sold, traded and redistributed and for that matter, what even causes people to go public with it? These are all questions I’ve dealt with over the years running the ethical data breach search service “Have I been pwned”. It’s also given me the opportunity to interact with everyone from the attackers breaching these systems to the impacted organisations to law enforcement agencies.
In this talk, I’ll share the lessons learned from working with billions of publicly dumped records as a result of major data breaches. The talk sheds light on how this class of adversary operates and the weaknesses within organisations they continually manage to exploit. It’s a unique inside look at security from a very real world and very actionable perspective.
About the speaker
Troy Hunt is an Australian Microsoft Regional Director and Microsoft MVP for Developer Security since 2011. Troy is a Pluralsight author of many top-rated courses on web security, and known for his work on "Have I been pwned?" - a free service that aggregates data breaches and helps people establish if they've been impacted by malicious activities on the web.
Scott Helme ( https://scotthelme.co.uk/ )
The certificates we obtain from a Certificate Authority underpin trust on the web. The problem is that if we lose the key for our certificate an attacker can use that certificate to successfully impersonate us for as long as it's valid, potentially years. We need a way to revoke the trust in these certificates so that they can't be abused but all current revocation mechanisms are largely useless. Let's look at the new mechanisms being introduced to address the problem of revocation. Per Thorsheim
Per Thorsheim (https://linkedin.com/in/thorsheim (https://l.facebook.com/l.php?u=https%3A%2F%2Flinkedin.com%2Fin%2Fthorsheim&h=ATMNVaVyTFyeazP9Be_jNPgwGepgw2kMni5XyyA__Zlk8VlH2El7o6Ys3lyKKiXLB9nQoJH4zUeVYL2hEsx7GH1IOiQx1eezPTmAqXfCvdI5bfwIoKZydDIdYglt_6pDS75yAPD7NJjPESYj))
Lightning talk: "From security to safety - when consequences become real"
Map marked with where you should go from the subway (marked wit a T on the map) and to the entrance. The subway stop is called "Forskningsparken".