If we didn’t get to your question tonight, why not ask it here? Maybe you’re catching up on the Dojo and have thought of some more questions or follow up ones to those answered by Dan tonight. You can ask them all here
TestSphere wasn’t around when Dan got into security testing but it was recommended tonight as a good place to start. He’s even used it in some workshops!
Good evening. If anyone wants to follow up with me now, tomorrow or going forward you can ask me here, find me on Twitter or on the MOT and Testersio Slack channels.
One of the questions we didn’t get to answer was “What’s the most worrying real-life security vulnerability you’ve read/heard about?”
To answer that question, it was this:
An organisation that deals with any sensitive data, particularly those that can’t advocate for their own security, like children, has a responsibility to take care of our data. Vtech failed at this in most terrifying fashion.
Also, I’m pretty scared by security flaws with weapon systems and power stations.