SlideShare a Scribd company logo
1 of 54
Download to read offline
HELLO
WordCamp Nüremberg!
#WCNBG
WHO AM I?
VALENTIN VESA
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
FIRST WORDPRESS INSTALL: 2009
SHOEBOX PROJECT
&
WORDPRESS
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
WORKING FOR SUCURI
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me
WHY BEING HACKED WAS A GOOD
THING?
1. RESEARCH
2. MOTIVATION
WHY DO HACKERS HACK?
2. MOTIVATION
2.1. REVENUE
2. MOTIVATION
2.2. AUDIENCE
2. MOTIVATION
2.3. RESOURCES
2. MOTIVATION
2.4. WHY NOT?
3. THINGS THEY DO
UNDERSTANDING THE TACTICS
Why being hacked turned out to be the best thing that happened to me
INFECTION TYPES
MALWARE DISTRIBUTION
SEARCH ENGINE POISONING
PHISHING LURES
RANSOMWARE
DDoS/BOTS/BACKDOORS
DEFACEMENT
SPAM EMAIL
4. IMPACTS OF COMPROMISE
BUSINESS & TECHNICAL
BUSINESS IMPACTS
BRAND REPUTATION
BUSINESS IMPACTS
ECONOMIC
BUSINESS IMPACTS
EMOTIONAL DISTRESS
TECHNICAL IMPACTS
WEBSITE BLACKLISTING
TECHNICAL IMPACTS
SEO IMPACT
TECHNICAL IMPACTS
VISITOR COMPROMISE
Why being hacked turned out to be the best thing that happened to me
SECURITY IS NOT A STATE
IT’S A CONTINUOUS PROCESS.
TECHNOLOGY WILL
NEVER REPLACE
YOUR RESPONSIBILITY AS A
WEBSITE OWNER!
Why being hacked turned out to be the best thing that happened to me
SECURITY IS NOT A DO IT
YOURSELF (DYI) PROJECT
TONY PEREZ – SUCURI CEO
WHERE TO FIND ME:
Twitter: @ADSPEDIA
Instagram: @adspedia
Email: valENTIN@SUCURI.NET
Why being hacked turned out to be the best thing that happened to me
Why being hacked turned out to be the best thing that happened to me

More Related Content

Viewers also liked

The Secret Sauce For Writing Reusable Code
The Secret Sauce For Writing Reusable CodeThe Secret Sauce For Writing Reusable Code
The Secret Sauce For Writing Reusable CodeAlain Schlesser
 
Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...
Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...
Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...CVO-SSH
 
Soc info2014 davies-slides
Soc info2014 davies-slidesSoc info2014 davies-slides
Soc info2014 davies-slidesTodd Davies
 
Презентация уникальных идей и технологий для home бизнеса
Презентация уникальных идей и технологий для home бизнеса Презентация уникальных идей и технологий для home бизнеса
Презентация уникальных идей и технологий для home бизнеса Альберт Коррч
 
Support thru Co-Value Creations
Support thru Co-Value CreationsSupport thru Co-Value Creations
Support thru Co-Value Creationsbernarddt1
 
pH Perfect Technology
pH Perfect TechnologypH Perfect Technology
pH Perfect TechnologyJean Smith
 
Altc 2010 paper_0188_cb_dh
Altc 2010 paper_0188_cb_dhAltc 2010 paper_0188_cb_dh
Altc 2010 paper_0188_cb_dhClaire B
 
Building A Successful Campaign with Google Adwords
Building A Successful Campaign with Google AdwordsBuilding A Successful Campaign with Google Adwords
Building A Successful Campaign with Google AdwordsclickTRUE
 
Linq to-sql-tutorial
Linq to-sql-tutorialLinq to-sql-tutorial
Linq to-sql-tutorialsatthuech
 
求职该选择好上司还是好公司
求职该选择好上司还是好公司求职该选择好上司还是好公司
求职该选择好上司还是好公司Ripple.Zhou
 
"Be the Thunder" Tampa Bay Lightning Case Study
"Be the Thunder" Tampa Bay Lightning Case Study"Be the Thunder" Tampa Bay Lightning Case Study
"Be the Thunder" Tampa Bay Lightning Case StudyJohn Luecke
 

Viewers also liked (17)

The Secret Sauce For Writing Reusable Code
The Secret Sauce For Writing Reusable CodeThe Secret Sauce For Writing Reusable Code
The Secret Sauce For Writing Reusable Code
 
Vortrag hot spot
Vortrag hot spotVortrag hot spot
Vortrag hot spot
 
Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...
Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...
Inleiding: hoe schrijf ik een zakelijke tekst? Lezer- en doelgericht schrijve...
 
Soc info2014 davies-slides
Soc info2014 davies-slidesSoc info2014 davies-slides
Soc info2014 davies-slides
 
14849441 rf-wireless (1)
14849441 rf-wireless (1)14849441 rf-wireless (1)
14849441 rf-wireless (1)
 
Презентация уникальных идей и технологий для home бизнеса
Презентация уникальных идей и технологий для home бизнеса Презентация уникальных идей и технологий для home бизнеса
Презентация уникальных идей и технологий для home бизнеса
 
Cau kien 36 70
Cau kien 36 70Cau kien 36 70
Cau kien 36 70
 
Support thru Co-Value Creations
Support thru Co-Value CreationsSupport thru Co-Value Creations
Support thru Co-Value Creations
 
Jayb
JaybJayb
Jayb
 
pH Perfect Technology
pH Perfect TechnologypH Perfect Technology
pH Perfect Technology
 
Altc 2010 paper_0188_cb_dh
Altc 2010 paper_0188_cb_dhAltc 2010 paper_0188_cb_dh
Altc 2010 paper_0188_cb_dh
 
Building A Successful Campaign with Google Adwords
Building A Successful Campaign with Google AdwordsBuilding A Successful Campaign with Google Adwords
Building A Successful Campaign with Google Adwords
 
Economy katalog
Economy katalogEconomy katalog
Economy katalog
 
Linq to-sql-tutorial
Linq to-sql-tutorialLinq to-sql-tutorial
Linq to-sql-tutorial
 
求职该选择好上司还是好公司
求职该选择好上司还是好公司求职该选择好上司还是好公司
求职该选择好上司还是好公司
 
"Be the Thunder" Tampa Bay Lightning Case Study
"Be the Thunder" Tampa Bay Lightning Case Study"Be the Thunder" Tampa Bay Lightning Case Study
"Be the Thunder" Tampa Bay Lightning Case Study
 
Chapter 11 the endocrine system
Chapter 11   the endocrine systemChapter 11   the endocrine system
Chapter 11 the endocrine system
 

Similar to Why being hacked turned out to be the best thing that happened to me

Introduction to the Current Threat Landscape
Introduction to the Current Threat LandscapeIntroduction to the Current Threat Landscape
Introduction to the Current Threat LandscapeMelbourne IT
 
Design centrado no usuário e as limitações do mercado de produtos interativos
Design centrado no usuário e as limitações do mercado de produtos interativosDesign centrado no usuário e as limitações do mercado de produtos interativos
Design centrado no usuário e as limitações do mercado de produtos interativosVoël
 
Embracing Friction - Zoltan Kollin
Embracing Friction - Zoltan KollinEmbracing Friction - Zoltan Kollin
Embracing Friction - Zoltan KollinZoltan Kollin
 
5 Secrets to Internet Marketing Success
5 Secrets to Internet Marketing Success5 Secrets to Internet Marketing Success
5 Secrets to Internet Marketing SuccessShawn Souto
 
PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...
PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...
PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...iMasters
 
software architecture cant fight lean startup
software architecture cant fight lean startupsoftware architecture cant fight lean startup
software architecture cant fight lean startupIvo Nascimento
 
Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.
Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.
Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.Positive Hack Days
 
Oli Gardner SMD Warsaw 2014 - Advanced Landing Page Optimization With Conve...
Oli Gardner  SMD Warsaw 2014  - Advanced Landing Page Optimization With Conve...Oli Gardner  SMD Warsaw 2014  - Advanced Landing Page Optimization With Conve...
Oli Gardner SMD Warsaw 2014 - Advanced Landing Page Optimization With Conve...Joanna Gęsicka
 
User Centred Design - Designing Better Experiences - General Assembly - April...
User Centred Design - Designing Better Experiences - General Assembly - April...User Centred Design - Designing Better Experiences - General Assembly - April...
User Centred Design - Designing Better Experiences - General Assembly - April...Matt Gibson
 
Web 2.0 & Brand Advocacy
Web 2.0 & Brand AdvocacyWeb 2.0 & Brand Advocacy
Web 2.0 & Brand AdvocacyBART RADKA
 
Network Hacking Training - Course Gate
Network Hacking Training - Course GateNetwork Hacking Training - Course Gate
Network Hacking Training - Course GateCourse Gate
 
Case Study | Website Development for Construction Brand
Case Study | Website Development for Construction BrandCase Study | Website Development for Construction Brand
Case Study | Website Development for Construction BrandAdam Thompson
 
Netta Doron - Delivery on steroids - Codemotion Rome 2019
Netta Doron - Delivery on steroids - Codemotion Rome 2019Netta Doron - Delivery on steroids - Codemotion Rome 2019
Netta Doron - Delivery on steroids - Codemotion Rome 2019Codemotion
 
Black Hat Protection - SEO Campixx 2011
Black Hat Protection - SEO Campixx 2011Black Hat Protection - SEO Campixx 2011
Black Hat Protection - SEO Campixx 2011Andre Alpar
 
GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)
GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)
GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)CLIPATIZE
 
The Marketing Technologist: Neo of the Marketing Matrix
The Marketing Technologist: Neo of the Marketing MatrixThe Marketing Technologist: Neo of the Marketing Matrix
The Marketing Technologist: Neo of the Marketing Matrixion interactive
 
Balancing Mobile Functionality & Delight
Balancing Mobile Functionality & DelightBalancing Mobile Functionality & Delight
Balancing Mobile Functionality & DelightSTARTUP SAFARY ATHENS
 

Similar to Why being hacked turned out to be the best thing that happened to me (20)

Introduction to the Current Threat Landscape
Introduction to the Current Threat LandscapeIntroduction to the Current Threat Landscape
Introduction to the Current Threat Landscape
 
Design centrado no usuário e as limitações do mercado de produtos interativos
Design centrado no usuário e as limitações do mercado de produtos interativosDesign centrado no usuário e as limitações do mercado de produtos interativos
Design centrado no usuário e as limitações do mercado de produtos interativos
 
Embracing Friction - Zoltan Kollin
Embracing Friction - Zoltan KollinEmbracing Friction - Zoltan Kollin
Embracing Friction - Zoltan Kollin
 
5 Secrets to Internet Marketing Success
5 Secrets to Internet Marketing Success5 Secrets to Internet Marketing Success
5 Secrets to Internet Marketing Success
 
PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...
PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...
PHP Experience 2016 - [Palestra] Software architecture cant fight the lean st...
 
software architecture cant fight lean startup
software architecture cant fight lean startupsoftware architecture cant fight lean startup
software architecture cant fight lean startup
 
Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.
Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.
Rosario Valotta. Abusing Browser User Interfaces for Fun and Profit.
 
Abusing bu is-4.3
Abusing bu is-4.3Abusing bu is-4.3
Abusing bu is-4.3
 
Oli Gardner SMD Warsaw 2014 - Advanced Landing Page Optimization With Conve...
Oli Gardner  SMD Warsaw 2014  - Advanced Landing Page Optimization With Conve...Oli Gardner  SMD Warsaw 2014  - Advanced Landing Page Optimization With Conve...
Oli Gardner SMD Warsaw 2014 - Advanced Landing Page Optimization With Conve...
 
User Centred Design - Designing Better Experiences - General Assembly - April...
User Centred Design - Designing Better Experiences - General Assembly - April...User Centred Design - Designing Better Experiences - General Assembly - April...
User Centred Design - Designing Better Experiences - General Assembly - April...
 
MnSearch Summit - Session - Oli Gardner - I Give A Sh!T About Your Conversion...
MnSearch Summit - Session - Oli Gardner - I Give A Sh!T About Your Conversion...MnSearch Summit - Session - Oli Gardner - I Give A Sh!T About Your Conversion...
MnSearch Summit - Session - Oli Gardner - I Give A Sh!T About Your Conversion...
 
Web 2.0 & Brand Advocacy
Web 2.0 & Brand AdvocacyWeb 2.0 & Brand Advocacy
Web 2.0 & Brand Advocacy
 
Network Hacking Training - Course Gate
Network Hacking Training - Course GateNetwork Hacking Training - Course Gate
Network Hacking Training - Course Gate
 
Case Study | Website Development for Construction Brand
Case Study | Website Development for Construction BrandCase Study | Website Development for Construction Brand
Case Study | Website Development for Construction Brand
 
Guide to Conversational Paths
Guide to Conversational PathsGuide to Conversational Paths
Guide to Conversational Paths
 
Netta Doron - Delivery on steroids - Codemotion Rome 2019
Netta Doron - Delivery on steroids - Codemotion Rome 2019Netta Doron - Delivery on steroids - Codemotion Rome 2019
Netta Doron - Delivery on steroids - Codemotion Rome 2019
 
Black Hat Protection - SEO Campixx 2011
Black Hat Protection - SEO Campixx 2011Black Hat Protection - SEO Campixx 2011
Black Hat Protection - SEO Campixx 2011
 
GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)
GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)
GETTING STARTED WITH ONLINE VIDEO COMMUNICATIONS (p1)
 
The Marketing Technologist: Neo of the Marketing Matrix
The Marketing Technologist: Neo of the Marketing MatrixThe Marketing Technologist: Neo of the Marketing Matrix
The Marketing Technologist: Neo of the Marketing Matrix
 
Balancing Mobile Functionality & Delight
Balancing Mobile Functionality & DelightBalancing Mobile Functionality & Delight
Balancing Mobile Functionality & Delight
 

More from Valentin Vesa

How Being Hacked Turned Out to be the Best Thing That Ever Happened to Me
How Being Hacked Turned Out to be the Best Thing That Ever Happened to MeHow Being Hacked Turned Out to be the Best Thing That Ever Happened to Me
How Being Hacked Turned Out to be the Best Thing That Ever Happened to MeValentin Vesa
 
6 unelte pentru social media
6 unelte pentru social media6 unelte pentru social media
6 unelte pentru social mediaValentin Vesa
 
Oh no! My website has been hacked and why that was a good thing
Oh no! My website has been hacked and why that was a good thingOh no! My website has been hacked and why that was a good thing
Oh no! My website has been hacked and why that was a good thingValentin Vesa
 
How having my website hacked opened up career opportunities
How having my website hacked opened up career opportunitiesHow having my website hacked opened up career opportunities
How having my website hacked opened up career opportunitiesValentin Vesa
 
Tu controlezi ce share-uieşti pe Facebook!
Tu controlezi ce share-uieşti pe Facebook!Tu controlezi ce share-uieşti pe Facebook!
Tu controlezi ce share-uieşti pe Facebook!Valentin Vesa
 
Proiectul de lege privind Rosia Montana
Proiectul de lege privind Rosia MontanaProiectul de lege privind Rosia Montana
Proiectul de lege privind Rosia MontanaValentin Vesa
 
GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION
GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION
GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION Valentin Vesa
 
Sexul vs barza the sex vs the stork
Sexul vs barza the sex vs the storkSexul vs barza the sex vs the stork
Sexul vs barza the sex vs the storkValentin Vesa
 
Lipsa tratament lack of treatment
Lipsa tratament lack of treatmentLipsa tratament lack of treatment
Lipsa tratament lack of treatmentValentin Vesa
 
The 7 whiteboard sessions every social media strategist needs to have in 2012
The 7 whiteboard sessions every social media strategist needs to have in 2012The 7 whiteboard sessions every social media strategist needs to have in 2012
The 7 whiteboard sessions every social media strategist needs to have in 2012Valentin Vesa
 
Social media pocket guide
Social media pocket guideSocial media pocket guide
Social media pocket guideValentin Vesa
 
Social Media Infographics
Social Media InfographicsSocial Media Infographics
Social Media InfographicsValentin Vesa
 
Red panic Button Emergency App for iPhone & Android
Red panic Button Emergency App for iPhone & AndroidRed panic Button Emergency App for iPhone & Android
Red panic Button Emergency App for iPhone & AndroidValentin Vesa
 
Influenta brandurilor asupra consumatorilor social media
Influenta brandurilor asupra consumatorilor social mediaInfluenta brandurilor asupra consumatorilor social media
Influenta brandurilor asupra consumatorilor social mediaValentin Vesa
 
Heart Attack while driving - what to do
Heart Attack while driving - what to doHeart Attack while driving - what to do
Heart Attack while driving - what to doValentin Vesa
 
Magie sau fenta mishto?
Magie sau fenta mishto?Magie sau fenta mishto?
Magie sau fenta mishto?Valentin Vesa
 

More from Valentin Vesa (17)

How Being Hacked Turned Out to be the Best Thing That Ever Happened to Me
How Being Hacked Turned Out to be the Best Thing That Ever Happened to MeHow Being Hacked Turned Out to be the Best Thing That Ever Happened to Me
How Being Hacked Turned Out to be the Best Thing That Ever Happened to Me
 
6 unelte pentru social media
6 unelte pentru social media6 unelte pentru social media
6 unelte pentru social media
 
Oh no! My website has been hacked and why that was a good thing
Oh no! My website has been hacked and why that was a good thingOh no! My website has been hacked and why that was a good thing
Oh no! My website has been hacked and why that was a good thing
 
How having my website hacked opened up career opportunities
How having my website hacked opened up career opportunitiesHow having my website hacked opened up career opportunities
How having my website hacked opened up career opportunities
 
Tu controlezi ce share-uieşti pe Facebook!
Tu controlezi ce share-uieşti pe Facebook!Tu controlezi ce share-uieşti pe Facebook!
Tu controlezi ce share-uieşti pe Facebook!
 
Proiectul de lege privind Rosia Montana
Proiectul de lege privind Rosia MontanaProiectul de lege privind Rosia Montana
Proiectul de lege privind Rosia Montana
 
GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION
GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION
GLOBALIZING TORTURE: CIA SECRET DETENTION AND EXTRAORDINARY RENDITION
 
Sexul vs barza the sex vs the stork
Sexul vs barza the sex vs the storkSexul vs barza the sex vs the stork
Sexul vs barza the sex vs the stork
 
Lexcivitas
LexcivitasLexcivitas
Lexcivitas
 
Lipsa tratament lack of treatment
Lipsa tratament lack of treatmentLipsa tratament lack of treatment
Lipsa tratament lack of treatment
 
The 7 whiteboard sessions every social media strategist needs to have in 2012
The 7 whiteboard sessions every social media strategist needs to have in 2012The 7 whiteboard sessions every social media strategist needs to have in 2012
The 7 whiteboard sessions every social media strategist needs to have in 2012
 
Social media pocket guide
Social media pocket guideSocial media pocket guide
Social media pocket guide
 
Social Media Infographics
Social Media InfographicsSocial Media Infographics
Social Media Infographics
 
Red panic Button Emergency App for iPhone & Android
Red panic Button Emergency App for iPhone & AndroidRed panic Button Emergency App for iPhone & Android
Red panic Button Emergency App for iPhone & Android
 
Influenta brandurilor asupra consumatorilor social media
Influenta brandurilor asupra consumatorilor social mediaInfluenta brandurilor asupra consumatorilor social media
Influenta brandurilor asupra consumatorilor social media
 
Heart Attack while driving - what to do
Heart Attack while driving - what to doHeart Attack while driving - what to do
Heart Attack while driving - what to do
 
Magie sau fenta mishto?
Magie sau fenta mishto?Magie sau fenta mishto?
Magie sau fenta mishto?
 

Recently uploaded

Computer 10 Lesson 8: Building a Website
Computer 10 Lesson 8: Building a WebsiteComputer 10 Lesson 8: Building a Website
Computer 10 Lesson 8: Building a WebsiteMavein
 
Zero-day Vulnerabilities
Zero-day VulnerabilitiesZero-day Vulnerabilities
Zero-day Vulnerabilitiesalihassaah1994
 
LESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdf
LESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdfLESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdf
LESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdfmchristianalwyn
 
Bio Medical Waste Management Guideliness 2023 ppt.pptx
Bio Medical Waste Management Guideliness 2023 ppt.pptxBio Medical Waste Management Guideliness 2023 ppt.pptx
Bio Medical Waste Management Guideliness 2023 ppt.pptxnaveenithkrishnan
 
LESSON 10/ GROUP 10/ ST. THOMAS AQUINASS
LESSON 10/ GROUP 10/ ST. THOMAS AQUINASSLESSON 10/ GROUP 10/ ST. THOMAS AQUINASS
LESSON 10/ GROUP 10/ ST. THOMAS AQUINASSlesteraporado16
 
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...Benefits of doing Internet peering and running an Internet Exchange (IX) pres...
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...APNIC
 
WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024
WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024
WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024Jan Löffler
 
Check out the Free Landing Page Hosting in 2024
Check out the Free Landing Page Hosting in 2024Check out the Free Landing Page Hosting in 2024
Check out the Free Landing Page Hosting in 2024Shubham Pant
 
Presentation2.pptx - JoyPress Wordpress
Presentation2.pptx -  JoyPress WordpressPresentation2.pptx -  JoyPress Wordpress
Presentation2.pptx - JoyPress Wordpressssuser166378
 
Introduction to ICANN and Fellowship program by Shreedeep Rayamajhi.pdf
Introduction to ICANN and Fellowship program  by Shreedeep Rayamajhi.pdfIntroduction to ICANN and Fellowship program  by Shreedeep Rayamajhi.pdf
Introduction to ICANN and Fellowship program by Shreedeep Rayamajhi.pdfShreedeep Rayamajhi
 
TYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDS
TYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDSTYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDS
TYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDSedrianrheine
 
Vision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced Horizons
Vision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced HorizonsVision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced Horizons
Vision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced HorizonsRoxana Stingu
 

Recently uploaded (12)

Computer 10 Lesson 8: Building a Website
Computer 10 Lesson 8: Building a WebsiteComputer 10 Lesson 8: Building a Website
Computer 10 Lesson 8: Building a Website
 
Zero-day Vulnerabilities
Zero-day VulnerabilitiesZero-day Vulnerabilities
Zero-day Vulnerabilities
 
LESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdf
LESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdfLESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdf
LESSON 5 GROUP 10 ST. THOMAS AQUINAS.pdf
 
Bio Medical Waste Management Guideliness 2023 ppt.pptx
Bio Medical Waste Management Guideliness 2023 ppt.pptxBio Medical Waste Management Guideliness 2023 ppt.pptx
Bio Medical Waste Management Guideliness 2023 ppt.pptx
 
LESSON 10/ GROUP 10/ ST. THOMAS AQUINASS
LESSON 10/ GROUP 10/ ST. THOMAS AQUINASSLESSON 10/ GROUP 10/ ST. THOMAS AQUINASS
LESSON 10/ GROUP 10/ ST. THOMAS AQUINASS
 
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...Benefits of doing Internet peering and running an Internet Exchange (IX) pres...
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...
 
WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024
WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024
WordPress by the numbers - Jan Loeffler, CTO WebPros, CloudFest 2024
 
Check out the Free Landing Page Hosting in 2024
Check out the Free Landing Page Hosting in 2024Check out the Free Landing Page Hosting in 2024
Check out the Free Landing Page Hosting in 2024
 
Presentation2.pptx - JoyPress Wordpress
Presentation2.pptx -  JoyPress WordpressPresentation2.pptx -  JoyPress Wordpress
Presentation2.pptx - JoyPress Wordpress
 
Introduction to ICANN and Fellowship program by Shreedeep Rayamajhi.pdf
Introduction to ICANN and Fellowship program  by Shreedeep Rayamajhi.pdfIntroduction to ICANN and Fellowship program  by Shreedeep Rayamajhi.pdf
Introduction to ICANN and Fellowship program by Shreedeep Rayamajhi.pdf
 
TYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDS
TYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDSTYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDS
TYPES AND DEFINITION OF ONLINE CRIMES AND HAZARDS
 
Vision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced Horizons
Vision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced HorizonsVision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced Horizons
Vision Forward: Tracing Image Search SEO From Its Roots To AI-Enhanced Horizons
 

Why being hacked turned out to be the best thing that happened to me

Editor's Notes

  1. Hello and introducing the hashtag, reminder: #WCNBG - DURING THIS PRESENTATION YOU ARE ALLOWED TO TWEET: WHAT I SAY OR WHAT YOU’D LIKE ME TO SAY, BUT USE THE HASHTAG
  2. WHO AM I?
  3. HUSBAND FATHER OF TWO STARTED WORKING WHEN I WAS 14 (1994) SELLING CANDLES
  4. I LOVE PHOTOGRAPHY AND SOCIAL PROJECTS.
  5. LIVED FOR A WHILE IN : ROMANIA, GERMANY, ITALY, AUSTRIA, USA AND BACK TRANSYLVANIA (DRACULA A MYTH) - A HISTORICAL REGION OF ROMANIA
  6. I LIVE IN THE CITY OF CLUJ NAPOCA, ROMANIA
  7. 18+ YEARS OF INTERNET, MEDIA, ONLINE MARKETING AND SOCIAL MEDIA - WORKING AS A SOCIAL MEDIA SPECIALIST AND BRAND EVANGELIST AT SUCURI
  8. I DON'T EAT PORK WHO ELSE? [RAISE HANDS]
  9. OR SEA FOOD ALL IN FAVOR? [RAISE HANDS]
  10. I LOVE COCA-COLA
  11. WHEN I CLEAN THE BATHROOM
  12. MY FIRST WORDPRESS INSTALL: 2009 WHO ELSE INSTALLED WORDPRESS FOR THE 1ST TIME IN 2009? [RAISE HANDS]
  13. - I STARTED LOOKING INTO CMS-ES WHEN I NEEDED A WEBSITE FOR THE SHOEBOX PROJECT THAT MY WIFE AND I STARTED IN ROMANIA IN 2006 > VIDEO INTRO PLAYS
  14. > VIDEO INTRO PLAYS
  15. WHAT IS SHOEBOX: 2006 IN FAMILY 2015: 100.000+ BOXES || 19 COUNTRIES, 203 CITIES AND 416 COLLECTION CENTRES. SO WE WANTED A WEBSITE
  16. SO WHAT DO YOU DO IN ORDER TO GET ONLINE? 1. BUY DOMAIN NAME (OR GET ONE FREE) 2. BUY CHEAP HOSTING (CHARITY)
  17. HOST USES CPANEL
  18. CPANEL HAS SOFTACULOUS INSTALLED SOUNDS FAMILIAR? [RAISE HANDS]
  19. CMS SECTION HAS WORDPRESS > ONLINE IN 5 MINUTES!
  20. STARTED SHOEBOX.RO ON DECEMBER 7, 2009. BASIC WORDPRESS INSTALL, FREE THEME FROM VLADSTUDIO.COM
  21. 2009-2014: CONTINUOUS IMPROVEMENTS, CHANGED THEME, ADDED USERS. AS I WAS LEARNING MORE ABOUT WORDPRESS I STARTED HELPING OTHERS TO GET ONLINE (PAID OR VOLUNTEER) - BUT THEN SOMETHING HAPPENED THAT I WASN’T PREPARED FOR: [ BIG PAUSE ]
  22. DECEMBER 22, 2014, 4 AM: WEBSITE HACKED, BLACKLISTED BY GOOGLE, SOON TO BE SUSPENDED BY HOST BEEN THERE? [RAISE HANDS]
  23. WHAT TO DO? I KNEW THE WEBSITE WAS HACKED. TRYING TO FIX IT MYSELF, FOR 2 DAYS, ENDED UP AS BEING HACKED AGAIN BY ANOTHER HACKER TEAM.
  24. FOUND SUCURI AND
  25. HAD LIVE CHAT EXPLAINED MY PROBLEM 2 HOUR LATER THE WEBSITE WAS CLEAN AND BACK ONLINE
  26. ON JAN 2015 AS WE WERE PUTTING TOGETHER THE REPORT FOR SHOEBOX 2014, I BEGAN LOOKING INTO SUCURI, MY SAVIOUR, AND FOUND THIS SOCIAL MEDIA FULL TIME REMOTE JOB. ONE EMAIL AND 3 INTERVIEWS LATER THIS HAPPENS:
  27. [PHOTO OF SUCURI SHIRT POCKET] "IT'S NOT THE SAME SHIRT, WE DO HAVE SEVERAL FOR EACH EMPLOYEE“! LEFT MY CORPORATE 9-5 JOB FOR A FRESH START. NEVER LOOKED BACK. AND IT ALL STARTED A YEAR BEFORE, WITH BEING HACKED.
  28. BRAND EVANGELIST AT SUCURI, FULL TIME, WORKING FROM HOME. LOTS OF TRAVEL AND EVENTS, MEETING PEOPLE, NETWORKING, PROMOTING A SAFE INTERNET AND SECURE POSTURE FOR WEBSITE OWNERS. I DO OTHER STUFF AS WELL: SPEND TIME WITH MY KIDS, TAKING INSTAGRAM PHOTOS (A RECENT HOBBY)
  29. AND IF ANY OF YOU IS INTERESTED IN BEING OUR COLLEAGUE, WE ARE CURRENTLY HIRING!
  30. NOW LET’S SEE WHY BEING HACKED WAS A GOOD THING FOR ME
  31. GAVE ME THE OPPORTUNITY TO DO SOME RESEARCH INTO WEBSITE SECURITY - TERMS LIKE : “SECURITY SHORTLIST”, “SECURED WORDPRESS HOSTING”, “FIREWALL”, “SHELL ACCESS”, “PLUGINS AND THEMES VULNERABILITIES” ETC
  32. MAKE MONEY OFF YOUR WEBSITE OR ITS RESOURCES EARNING POTENTIAL BASED ON STEALING INFORMATION (DATA EXFILTRATION) IMPRESSIONS BASED AFFILIATE MARKETING SCHEME CRIMINAL ENTERPRISES
  33. MAKE MONEY OFF YOUR AUDIENCE EXTREMELY VALUABLE TO ATTACKERS ABILITY TO TAKE ADVANTAGE OF THE TRUST YOU’VE BUILT WITH YOUR FOLLOWERS/CUSTOMERS
  34. MAKE MONEY OFF YOUR RESOURCES ABUSE OF THE INFRASTRUCTURE SUPPORTING YOUR WEBSITE INTEGRATE INTO LARGER CRIMINAL NETWORKS (AKA BOTNETS) ONCE WE ARE ONLINE WE ARE A PART OF A MUCH LARGER ECOSYSTEM AND OUR RESPONSIBILITIES EXPAND BEYOND THE WEBSITE
  35. NOT ABOUT MAKING MONEY (FINALLY!!!) BORED, WHY NOT? IF IT ALLOWS ME ACCESS, WHY WOULDN’T I GO IN? BADGE OF HONOR AMONGST PEERS WHO HERE HAS A BACKUP SOLUTION IN PLACE ON THEIR WEBSITE? [RAISE HANDS]
  36. WHAT EXACTLY CAN THE HACKERS DO TO YOUR ENVIRONEMENT?
  37. IN THE CASE OF AN INFECTION OR HACK THE THINGS WE DO NOT SEE ARE SOMETIMES MUCH MORE IMPORTANT AS THE THINGS WE DO SEE WE NEED TO PAY ATTENTION TO POSSIBLE CONNECTIONS TO OTHER SITES (BOTNETS) AND HIDDEN BACKDOORS ETC
  38. 7 LARGE INFECTION TYPES IF THEY CAN MAKE IT WITH ONE THEY WILL TRY ALL, WHAT IF IT WORKS? VARIOUS RELATIONSHIPS BETWEEN THESE TYPES OF ATTACKS AND THE HACKERS’ MOTIVATION WHO CAN DEFINE EACH TYPE OF ATTACK [RAISE HANDS]
  39. WE BREAK DOWN THE IMPACTS OF A HACKED WEBSITE INTO 2 DISTINCT CATEGORIES: BUSINESS: BRAND, ECONOMIC, EMOTIONAL DISTRESS TECHNICAL: WEBSITE BLACKLISTING, SEO IMPACTS, VISITOR COMPROMISE
  40. YOUR BRAND IS MADE UP OF THE UNIQUE USER EXPERIENCE YOU OFFER THRUGH YOUR DESIGN, CONTENT, PRODUCT OFFERING AND SERVICE WEBSITE PLAYS A CRITICAL PART IN THE BRAND REPUTATION LOSS OF TRUST CAN DRIVE PEOPLE AWAY FROM YOUR WEBSITE, LOOKING FOR ALTERNATIVES AUDIENCE SINCE 2011/2012 HAS GREATER TOLERANCE FOR WEBSITE COMPROMISE IF THEY ARE EXPLAINED WHAT HAPPENED
  41. OUR RESEARCH SHOWS 90% DROP IN TRAFFIC IMMEDIATELLY AFTER A COMPROMISE, GOING UP IF THE WEBSITE IS ALSO BLACKLISTED YOUR SITE GENERATES SOME FORM OF REVENUE (DIRECT OR INDIRECT), THIS IS WHY YOU KEEP IT ONLINE COSTS ASSOCIATED WITH POST-COMPROMISE SERVICES, TO INCLUDE TIME/MONEY SPENT ON TOOLS, EDUCATION AND CONSULTATION
  42. ANXIETY: NOTHING EVER GOES FAST ENOUGH CONFUSION: UNCLEAR WHAT STEPS TO TAKE, WHO TO TALK TO, WHERE TO START ANGER: YOU WANT TO REACH ACROSS THE WORLD AND SHAKE SOMEONE SADNESS: A GENERAL FEELING OF OVERWHELMED, BURNOUT, EXHAUSTED DISTRUST: AN EROSION OF TRUST IN TECHNOLOGY, INTERNET, PEOPLE
  43. PEOPLE NO LONGER REACH YOUR WEBSITE BLACKLISTING GOES BEYOND SEARCH ENGINES (GOOGLE, BING) AND CAN BE FOUND IN ANTIVIRUSES (NORTON, MCAFEE, MALWAREBYTES ETC) CAN LEAD TO YOUR WEBSITE BEING FLAGGED GLOBALLY IN LARGE NETWORKS (CISCO, WEBSENSE ETC) WHO HERE HAD THEIR WEBSITE BLACKLISTED? [RAISE HANDS]
  44. THE ABILITY TO CONTROL WHAT SEARCH ENGINES SEE WHEN THEY CRAWL YOUR WEBSITE, LEADING TO DIRTY SEARCH ENGINE RESULT PAGES (SERP), IMPACTS TO YOUR DOMAIN AUTHORITY AND VALUE INJECTION OF KEYWORDS: VIAGRA, CIALIS, CASINO, GUCCI BAGS, USING THESE TO REDIRECT YOUR SITE TO OTHER SITES
  45. MALWARE DISTRIBUTION VIA “DRIVE BY DOWNLOADS”, ATTEMPTS TO INSTALL MALWARE DISGUISED AS GOOD SOFTWARE WEBSITES CAN BE USED TO ATTACK BROWSER PLUGINS LIKE JAVA, FLASH ETC COMPROMISE INCLUDE DISTRIBUTION OF RANSOMWARE: PAY TO UNLOCK YOUR COMPUTER FILES
  46. SINCE BEING HACKED ALLOWED ME TO BE IN THE POSITION OF GETTING A JOB WITH A WEBSITE SECURITY COMPANY AND FINDING OUT ALL THIS INFORMATION, I FEEL IT AS A RESPONSIBILITY AND IT IS A PLEASURE TO TRAVEL THE WORLD, GO TO EVENTS LIKE WORDCAMP NUREMBERG AND SHARE MY EXPERIENCE AND ENCOURAGE WEBSITE OWNERS TO THINK ABOUT WEBSITE SECURITY
  47. AS A WEBSITE OWNER, YOU ARE CONSTANTLY EVOLVING, ADAPTING TO NEW THREATS AND HACKING TECHNIQUES ESTABLISH PROCESSES: IF A HACK DOES HAPPEN, WHAT DO I DO, WHO DO I GO TO, WHAT RESPONSE MECHANISM DO I LEVERAGE? BEST PRACTICES: LEAST PRIVILEDGE ACCESS ETC
  48. PEOPLE THINK THAT IF THEY FIND THE RIGHT COMBINATION OF TOOLS, THE PERFECT PLUGIN ETC, ALL THIS WILL STOP BUT IN REALITY THIS IS HOW THE WORLD LOOKS LIKE: [NEXT SLIDE]
  49. SECURITY IS NOT JUST AROUND THE PEOPLE OR JUST ABOUT PROCESSES NOT EVEN ONLY THE TECHNOLOGY INSTEAD IT IS A COMPLEX SIMBIOTIC RELATIONSHIP BETWEEN ALL THESE 3 COMPONENTS. ON THEIR OWN, NONE CAN SAVE YOU
  50. SECURITY IS NOT A DO IT YOURSELF (DYI) PROJECT NOT EVERYONE LIKES SECURITY ONLY A FEW SELECT PEOPLE DO AND WE SHOULD LET THEM DO IT AND HELP US STAY SAFE
  51. WHERE TO FIND ME: Twitter: @adspedia Instagram: @adspedia Email: valENTIN@SUCURI.NET
  52. ANY QUESTIONS?
  53. SECRET PRIZE FOR BEST QUESTION GOES TO…