https://troyhunt.com

Troy Hunt: Troy HuntHi, I'm Troy Hunt, I write this blog, run "Have I Been Pwned" and am a Microsoft Regional Director and MVP who travels the world speaking at events and training technology professionals Troy Hunt: Troy Hunt Mastodon Home Workshops Speaking Media About Contact Sponsor Sponsored by: Troy Hunt Hi, I'm Troy Hunt, I write this blog, run "Have I Been Pwned" and am a Microsoft Regional Director and MVP who travels the world speaking at events and training technology professionals Older posts Page 1 of 124 Weekly Update 419 29 September 2024 It's not a green screen! It's just a weird a weird hotel room in Pittsburgh, but it did make for a cool backdrop for this week's video. We were there visiting our FBI friends after coming from Washington DC and a visit to CISA, the "America's Cyber Defence Agency". This week, I'm talking about those visits, some really cool new Cloudflare features, and our ongoing effort to push more and more of HIBP's data to Cloudflare's edges. Enjoy! References 1. Sponsored by: Lithnet Access Manager.... Weekly update The Data Breach Disclosure Conundrum 28 September 2024 The conundrum I refer to in the title of this post is the one faced by a breached organisation: disclose or suppress? And let me be even more specific: should they disclose to impacted individuals, or simply never let them know? I'm writing this after many recent such discussions with breached organisations where I've found myself wishing I had this blog post to point them to, so, here it is. Let's start with tackling what is often a fundamental misunderstanding about disclosure obligations, an... Security Have I Been Pwned Weekly Update 418 22 September 2024 Just watching back through bits of this week's video, the thing that's really getting at me is the same thing I've come back to in so many past videos: lack of organisational disclosure after a breach. Lack of disclosure to impacted customers, lack of disclosure to the public, and a general apathy towards the transparency with which we expect organisations to behave post-breach. This is a topic I'm increasingly pushing in front of governments and law enforcement agencies, and it'll be front of m... Weekly update From Dreams to Reality: The Magic of 3D Printing, with Elle Hunt 18 September 2024 I was in my mid-30s before I felt comfortable standing up in front of an audience and talking about technology. Come to think of it, "comfortable" isn't really the right word, as, frankly, it was nerve-racking. This, with my obvious bias as her father, makes it all the more remarkable that Elle was able to do it at NDC Oslo when she was just 11 years old. That she was able to do that and teach a room full of hundreds of technology professionals things they almost certainly hadn't seen before mak... 3D Printing Weekly Update 417 15 September 2024 Today was all about this whole idea of how we index and track data breaches. Not as HIBP, but rather as an industry; we simply don't have a canonical reference of breaches and their associated attributes. When they happened, how many people were impacted, any press on the incident, the official disclosure messaging and so on and so forth. As someone in the video today said, "what about the Airtel data breach?" Yeah, whatever happened to that?! A quick Google reminds me that this was a few months... Weekly update Weekly Update 416 07 September 2024 It's been a while since I've just gone all "AMA" on a weekly update, but this was just one of those weeks that flew by with my head mostly in the code and not doing much else. There's a bit of discussion about that this week, but it's mostly around the ongoing pain of resellers and all the various issues supporting them then creates as a result. I think we just need to get on with writing the code to automate everything they do so I just don't need to think about them any more 😭 Reference... Weekly update Weekly Update 415 01 September 2024 I still find the reactions to the Telegram situation with Durov's arrest odd. There are no doubt all sorts of politics surrounding it, but even putting all that aside for a moment, the assertion that a platform provider should not be held accountable for moderating content on the platform is just nuts. As I say in this week's video, there's lots of content that you can put in the "grey" bucket (free speech versus hate speech, for example) and there are valid arguments to be had there. But there'... Weekly update The North American Have I Been Pwned Tour 30 August 2024 It was 2019 that I was last in North America, spending time in San Francisco, Los Angeles, Vegas, Denver, Minnesota, New York and Seattle. The year before, it was Montreal and Vancouver and since then, well, things got a bit weird for a while. It's a shame it's been this long because North America is such an important part of the world for so many of the things we (including Charlotte in this too) do; it's the lion's share of the audience for my content, the companies whose services we rely on,... Weekly Update 414 25 August 2024 This is such a significant week for us, to finally have Stefan join us as a proper employee at HIBP. When you start out as a pet project, you never really consider yourself a "proper" employee because, well, it's just you mucking around. And then when Charlotte started "officially" working for HIBP a few years ago, well, that's my wife helping me out. To have someone whose sole purpose it is to write code that makes this thing tick and build all sorts of amazing new features expands our capacity... Weekly update The Trouble with Procurement Departments, Resellers and Stripe 23 August 2024 It should be so simple: you're a customer who wants to purchase something so you whip out the credit card and buy it. I must have done this thousands of times, and it's easy! I've bought stuff with plastic credit cards, stuff with Apple Pay on my phone and watch and, like all of us, loads of stuff simply by entering credit card details into a website. A lot of that has been business expenses for which I've obtained a receipt and then claimed back, either in my joyful life of independence or in a... Upcoming Events I often run private workshops around these, here's upcoming events I'll be at: Must Read Data breach disclosure 101: How to succeed after you've failed Data from connected CloudPets teddy bears leaked and ransomed, exposing kids' voice messages Here's how I verify data breaches When a nation is hacked: Understanding the ginormous Philippines data breach How I optimised my life to make my job redundant Don't have Pluralsight already? How about a 10 day free trial? That'll get you access to thousands of courses amongst which are dozens of my own including: OWASP Top 10 Web Application Security Risks for ASP.NET What Every Developer Must Know About HTTPS Hack Yourself First: How to go on the Cyber-Offense The Information Security Big Picture Ethical Hacking: Social Engineering Modernizing Your Websites with Azure Platform as a Service Introduction to Browser Security Headers Ethical Hacking: SQL Injection Web Security and the OWASP Top 10: The Big Picture Ethical Hacking: Hacking Web Applications Older posts Page 1 of 124 Subscribe Subscribe Now! Send new blog posts: daily weekly Hey, just quickly confirm you're not a robot: Submitting... Got it! Check your email, click the confirmation link I just sent you and we're done. Copyright 2024, Troy Hunt This work is licensed under a Creative Commons Attribution 4.0 International License. In other words, share generously but provide attribution. Disclaimer Opinions expressed here are my own and may not reflect those of others. Unless I'm quoting someone, they're just my own views. Published with Ghost This site runs entirely on Ghost and is made possible thanks to their kind support. Read more about why I chose to use Ghost.enen1729032421https://troyhunt.com

ཁྱོད་རའི་ས་ཁོངས་ཞུན་དག་འབད་ག?

ཁྱོད༌ག༌ཅི༌འབདཝ༌སྨོ?