May 28, 2019
In this episode, James talks about some of the risks and recommendations around security questions and their implementation.
For more info go to https://www.developsec.com or follow us on twitter (@developsec).
Join the conversations.. join our slack channel. Email james@developsec.com for an invitation.
DevelopSec...
Jan 22, 2019
Does your application give away details about it server, framework, or other components? How is this information used by an attacker? Check out this episode to learn more.
For more info go to https://www.developsec.com or follow us on twitter (@developsec).
Join the conversations.. join our slack channel....
Jan 14, 2019
Would you know if someone authenticated to your account? With the breaches we see in the news, and attacks like credential stuffing, there must be a way to be alerted to account access. James talks about authentication alerts, what they are, and why you may want to use them.
For more info go to
Jan 7, 2019
James discusses how implementation matters with security controls and how it changes priorities. This came about after reading the following story:
https://www.theverge.com/2018/12/31/18162541/vein-authentication-wax-hand-hack-starbug
For more info go to https://www.developsec.com or follow us on twitter...
Dec 12, 2018
In this episode James talk about the Dunkin Donuts Perks breach. This is an interesting situation as the accounts were access using the victim's username and password found from another data breach. The issue: Password Reuse. Could D&D have prevented this? Listen in to hear my thoughts. Please feel free to share...