4

How should you approach someone and tell them they have been an victim of social engineering without being mean?

I was at an security conference today and watched a lot of speaks, and I must say that the atmosphere and the people around made it even better.

Here is one takeaway:
Does the security of IT has to be this depressing most of the time, like there is so many IoT devices, services, websites and critical infrastructure that has security flaws and all we can do is watch for now and say we are all fucked. Then try to lead the industry to better practices, like owasp (duck it) . Stop accepting and using shitty answers from SO that has security flaws (why learn something a way that is wrong in the first place?).

We need more awareness about IT security overall, how can one developer know that certain technologies can have certain vulnerabilities such as XSS, XSRF and even SQL injection if there is no information about it in among all shitton tutorials, guides and SO answers in the first place?

Lighten up! Being sad and depressing about these issues is not the best way to approach this! We need to embrace all steps taken towards better security, even the smallest ones.

Check out OWASP if you are not familiar :
https://owasp.org/index.php/...

Thanks for reading.

Comments
Add Comment