qa fest 2015 - diana dolina
TRANSCRIPT
![Page 1: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/1.jpg)
Ashley MadisonLessons (to be) learned:
When the worlds largest dating site got hacked
Speaker:Diana DolinaEmployeeDataArt - Enjoy IT! ®6 Voenniy Lane 3 FloorKherson, 73000, Ukraine
![Page 2: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/2.jpg)
Спикер
![Page 3: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/3.jpg)
Per ThorsheimSecurity Consultant, founder & organizer of PasswordsCon.org. Received worldwide attention in June 2012 when he revealed that LinkedIn had been hacked.
![Page 4: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/4.jpg)
Право на приватность
![Page 5: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/5.jpg)
Статья 12
Никто не может подвергаться произвольному вмешательству в его
личную и семейную жизнь, произвольным посягательствам на
неприкосновенность его жилища, тайну его корреспонденции или на
его честь и репутацию. Каждый человек имеет право на защиту закона
от такого вмешательства или таких посягательств.
Принята и провозглашена в резолюции 217 A (III) Генеральной Ассамблеи ООН от 10 декабря 1948 года
![Page 6: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/6.jpg)
Ashley Madison
![Page 7: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/7.jpg)
![Page 8: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/8.jpg)
![Page 9: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/9.jpg)
![Page 10: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/10.jpg)
Взлом Ashley Madi-son
![Page 11: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/11.jpg)
15 July 2015
![Page 12: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/12.jpg)
![Page 13: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/13.jpg)
Tip # 1 for to-day
Never do the interview with anyone and say that your service is absolutely
secure
![Page 14: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/14.jpg)
![Page 15: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/15.jpg)
Требования хакеров:Закрыть сайт www.ashleymadison.com и https://establishedmen.com/ раз и навсегда
![Page 16: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/16.jpg)
Публикация данных
![Page 17: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/17.jpg)
21 August
![Page 18: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/18.jpg)
![Page 19: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/19.jpg)
![Page 20: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/20.jpg)
Время собирать камни
![Page 21: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/21.jpg)
Больше 9000 тысяч статей
![Page 22: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/22.jpg)
![Page 23: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/23.jpg)
Password analysis
![Page 24: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/24.jpg)
![Page 25: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/25.jpg)
![Page 26: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/26.jpg)
![Page 27: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/27.jpg)
![Page 28: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/28.jpg)
Never say never (especially about your security)
![Page 29: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/29.jpg)
Be ready for the worst (properly incident handling)
![Page 30: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/30.jpg)
No HTTPs = No security
![Page 31: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/31.jpg)
Login and Password fields validation
![Page 32: QA Fest 2015 - Diana Dolina](https://reader035.vdocuments.pub/reader035/viewer/2022062821/589c3b291a28abec478b5b9b/html5/thumbnails/32.jpg)
Don’t forget that USERS ARE REAL PEOPLE and YOU
responsible for the part of their life