Tino Sokic

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes

A developer used their personal email for work. A simple social engineering attack later, all client credentials were stolen.

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes
#1about 2 minutes

Why developers make basic cybersecurity mistakes

The talk will cover common security errors made by developers, the importance of correct terminology, and the conflict between functionality and business risk.

#2about 6 minutes

Moving beyond the "it just works" developer mindset

Developers must shift from prioritizing simple functionality to understanding the underlying infrastructure and building secure, robust solutions from the start.

#3about 3 minutes

Differentiating between a developer and a programmer

A developer has a broader range of responsibilities including project management, whereas a programmer is focused on specific coding tasks.

#4about 4 minutes

Understanding the internet's inherent insecurity

Core internet protocols like DNS and BGP were not built for security, and human behavior is a far greater risk than the technology itself.

#5about 3 minutes

A social engineering attack using a personal email

A simple social engineering attack demonstrates how using personal email for business communication creates significant security vulnerabilities.

#6about 6 minutes

Five common cybersecurity mistakes developers make

Developers often exhibit risky behaviors like overconfidence, poor password management, account sharing, and improper use of third-party libraries.

#7about 4 minutes

The clash between business pressure and security reality

Business pressures often force developers to launch products with known bugs or security flaws simply to meet deadlines and get paid.

Related jobs
Jobs that call for the skills explored in this talk.

Featured Partners

Related Videos

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together23:34

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

Stefania Chaplin

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

Building Security Champions48:02

Building Security Champions

Tanya Janca

Programming secure C#/.NET Applications: Dos & Don'ts33:29

Programming secure C#/.NET Applications: Dos & Don'ts

Sebastian Leuer

Security Pitfalls for Software Engineers27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

101 Typical Security Pitfalls28:41

101 Typical Security Pitfalls

Alexander Pirker

Typed Security: Preventing Vulnerabilities By Design58:19

Typed Security: Preventing Vulnerabilities By Design

Michael Koppmann

Simple Steps to Kill DevSec without Giving Up on Security21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

From learning to earning

Jobs that call for the skills explored in this talk.