Security Aspects of Social Networks at Campus Party 2010

•

1 gostou•814 visualizações

Presentation that discuss the general security aspects and threats to social networking users. A brief overview of Social Network history amd statistics is also provided. This presentation took place at Campus Party Brasil, on January 2010.

Tecnologia

Security Aspects
of Social Networks

Anchises M. G. De Paula
Security Intelligence Analyst
iDefense, VeriSign
February 25, 2010

Agenda
Motivation
History
Future of Social
Networking
Current Problems
Security aspects of
Social Networking

Source: XKCD - http://xkcd.com

Why Social Networks?
Country Population (in millions)
Global and cultural
phenomenon 1600
1400
1200

Facebook: 400 million 1000
800

users 600
400

3th largest “country” in 200
0
the world

A

il
a
a

ok

sia

az
in

di

US
bo
In
Ch

ne

Br
ce

do
Fa

In
New attack vector for Source: Facebook, CIA

phishers, fraudsters
and sexual predators

Why Social Networks?

New organization:
“egocentric” approach

Digital Identities
Profiles
Fakesters

Source: Google

Why Security?

“It’s the great irony of
the Information
Age that the very
technologies that
empower us to
create and to build
also empower
those who would
disrupt and
destroy”
(Barack Obama)
Source: Whitehouse

Demographics
Dominant social network vary greatly between different geographic
regions
Majority of the online connections between real-life friends

Source: oxyweb

Future of Social Networking
Virtual Currency

Mobile Social
Networking

Sensor Networks

Social TV Source: Wired

Current Problems
Decentralization and Interoperability

Managing Social Identities

Trust and Reputation
Management

Current Problems

Privacy
Personal data
Pictures
Professional
information

Current Problems

Privacy
Personal data
Pictures
Professional information

Content Overload

Current Problems

Offense, Hate and Discrimination

Child Safety and Sexual Crimes
Defamation
Stalking
Cyber bullying
Sexting

Security aspects of Social
Networking
Current Security Threats
Identity/Password Theft
Fake profiles
Targeted attacks

Security aspects of Social
Networking
Current Security Threats
Malicious Code, Viruses
and Worms
Spam, Phishing and
Financial Fraud

Malicious Programs Targeting Social Networking Sites

Security aspects of Social
Networking
Current Security Threats
URL Shortening
Hide malicious sites

Source: tweetmeme

Security aspects of Social
Networking
Social Networks
under Attack
Exploit of Social
Network Gadgets
Security vulnerabilities
Cross-site scripting
(XSS)
SQL injection
DDoS
Worms
Koobface

Security aspects of Social
Networking
Malicious Actors
Individuals
Spammers and
phishers
Fraudsters and cyber
criminals
Hacktivists and
terrorist groups
Sexual predators

Security aspects of Social
Networking

Malicious Actors
Terrorism Using Social
Networks and Online
Communities

Security aspects of Social
Networking
Malicious Actors
Hacking communities
Recruitment
Information exchange
Marketplace
Hacker for hire

References
Data Privacy Day:
http://dataprivacyday2010.org
Social Media Security:
http://socialmediasecurity.com
http://twitter.com/SocialMediaSec
SocialNetworkingWatch:
http://www.socialnetworkingwatch.com
Security and Privacy in Social Networks Bibliography:
http://www.cl.cam.ac.uk/~jcb82/sns_bib/main.html
iDefense: www.idefense.com

Thank you :)

Anchises M. G. De Paula
http://anchisesbr.blogspot.com
Twitter: @anchisesbr

Non-commercial Share Alike (by-nc-sa)

This work is licensed under the Creative Commons
Attribution-NonCommercial-ShareAlike 2.5 License.
To view a copy of this license, visit
http://creativecommons.org/licenses/by-nc-sa/2.5/ or send
a letter to Creative Commons, 543 Howard Street, 5th
Floor, San Francisco, California, 94105, USA

Mais conteúdo relacionado

Destaque

Security threats in social networks

Tannistho Ghosh

People tempt to transfer their natural needs feeling and behaviors from the off line communication to the online world. One of the most important human needs is desire for security. Emotional, physical, mental, national, social, cyber: security has various levels and meanings. Our lecture about Security on Social networks was presented to Students of Faculty of Social Science at Charles University. It covers issues connected to the cybercrime, threats and mechanism of scams, as well as privacy and security settings on Social Networks

Security on social networks AVAST

Julia Szymańska

Utilizing Social Networks for User Model Priming: User Attitudes

Adam Moore

• Online social networks (OSNs) have experienced tremendous growth in recent years and become a de facto portal for hundreds of millions of Internet users. • While OSNs allow users to restrict access to shared data, they currently do not provide any mechanism to enforce privacy concerns over data associated with multiple users. • To this end, we propose an approach to enable the protection of shared data associated with multiple users in OSNs. • We formulate an access control model to capture the essence of multiparty authorization requirements, along with a multiparty policy specification scheme and a policy enforcement mechanism.

Multiparty Access Control For Online Social Networks : Model and Mechanisms.

Kiran K.V.S.

Twitter in Disaster Mode: Security Architecture

Theus Hossmann

QQ Overview

Tien Huynh

bulk ieee projects in pondicherry,ieee projects in pondicherry,final year ieee projects in pondicherry Nexgen Technology Address: Nexgen Technology No :66,4th cross,Venkata nagar, Near SBI ATM, Puducherry. Email Id: praveen@nexgenproject.com. www.nexgenproject.com Mobile: 9751442511,9791938249 Telephone: 0413-2211159. NEXGEN TECHNOLOGY as an efficient Software Training Center located at Pondicherry with IT Training on IEEE Projects in Android,IEEE IT B.Tech Student Projects, Android Projects Training with Placements Pondicherry, IEEE projects in pondicherry, final IEEE Projects in Pondicherry , MCA, BTech, BCA Projects in Pondicherry, Bulk IEEE PROJECTS IN Pondicherry.So far we have reached almost all engineering colleges located in Pondicherry and around 90km

DETECTION AND RECTIFICATION OF DISTORTED FINGERPRINTS

Nexgen Technology

Twitter Search Architecture

Ramez Al-Fayez

Facebook architecture

mysqlops

Technology stack of social networks [MTS]

philmaweb

Mobile application architecture

Christos Matskas

2 Security Architecture+Design

Alfred Ouyang

TOGAF 9 - Security Architecture Ver1 0

Maganathin Veeraragaloo

Building Secure Open & Distributed Social Networks

Henry Story

Ana Kukec, Lead Enterprise Security Consultant, Enterprise Architects, Australia The Open Group Architecture Forum and Security Forum agree that the coverage of security in TOGAF should be updated and improved. The understanding and focus of security architecture has moved from a threat-driven approach of addressing non-normative flaws through systems and applications to a risk-driven and business outcome-focused methodology of enabling a business strategy. Following this trend, we defined fundamental characteristics of effective security architecture. 1) Capabilities are primary assets at risk, while information systems and technology components are secondary assets at risk supporting the primary assets. 2) Security requirements include the business aspects and not only the technology aspects of confidentiality, integrity and availability. 3) IT risk management is business-opportunity-driven. It requires understanding of risk appetite across business, information systems and technology architecture to manage security risks of vulnerabilities and compliance issues, which may arise at any layer of enterprise architecture in a business-outcome-focused way. 4) Security services are aligned to business drivers, goals and objectives, and managed in a risk-driven way. Yet, there is no single security architecture development methodology to deliver these characteristics. We believe that existing information security standards and frameworks in a combination with the TOGAF are sufficient to meet the aforementioned fundamental characteristics of effective security architecture. However the challenge is in their integration. Our Enterprise Security Architecture Framework integrates key industry standards and best practices for information security and risk management, such as COBIT 5 for Information Security, ITILv3 Security Service Management, ISO/IEC 27000 and ISO/IEC 31000 families of standards, using the TOGAF Architecture Development Method and Content Meta-model as the key integrators. It is a pragmatic security architecture framework which establishes a common language between IT, security, risk and business organisations within an enterprise and ensures effective and efficient support of long-term security needs of both business and IT, with a risk-driven enterprise as a final outcome. We will present a case study of the implementation of the aforementioned business-outcome-focused and risk-driven Enterprise Security Architecture Framework at the University of New South Wales. Key takeaways: -- Overview of a risk-driven and business-outcome-focused security architecture methodology seamlessly integrated with the TOGAF -> Security strategic planning -> Enterprise-wide compliance, internal (policies and standards) and external (laws and regulations -> Business-opportunity driven management of security risk of threats, vulnerabilities and compliance issues across business, information systems and technology architecture

Risk-driven and Business-outcome-focused Enterprise Security Architecture Fra...

Craig Martin

Scaling Twitter

Blaine

Facebook Architecture - Breaking it Open

HARMAN Services

Enterprise Security Architecture

Kris Kimmerle

Destaque (18)

Security threats in social networks

Security on social networks AVAST

Utilizing Social Networks for User Model Priming: User Attitudes

Multiparty Access Control For Online Social Networks : Model and Mechanisms.

Twitter in Disaster Mode: Security Architecture

QQ Overview

DETECTION AND RECTIFICATION OF DISTORTED FINGERPRINTS

Twitter Search Architecture

Facebook architecture

Technology stack of social networks [MTS]

Mobile application architecture

2 Security Architecture+Design

TOGAF 9 - Security Architecture Ver1 0

Building Secure Open & Distributed Social Networks

Risk-driven and Business-outcome-focused Enterprise Security Architecture Fra...

Scaling Twitter

Facebook Architecture - Breaking it Open

Enterprise Security Architecture

Mais de Anchises Moraes

Post pandemics threat scenario

Anchises Moraes

Palestra no evento Advocacia 4.0 (OAB RJ) - Como se proteger na internet: cuidados com a segurança no exercício da advocacia Os ciber criminosos estão aproveitando a epidemia do novo Coronavírus para espalhar mais golpes pela Internet. Nesse bate-papo vamos falar sobre os principais golpes e fraudes online que estão acontecendo atualmente, muitos dos quais aproveitando o tema da pandemia e nossa fragilidade durante o isolamento social. Esperamos ajudar todas e todos a se proteger desses golpes, identificar notícias falsas e ajudar os parentes no grupo da família.

Como se proteger na internet

Anchises Moraes

Palestra apresentada no evento Security Summit Vitoria 2021, em 10/07/2021. A pandemia do novo Coronavírus trouxe grande impacto para a vida de todos e para os negócios. O mesmo se passou com a ciber segurança, graças principalmente a mudança repentina do ambiente de trabalho para o home office, além dos ataques direcionados que surgiram nesse período, explorando temas e preocupações relacionados ao combate a pandemia. Com a possibilidade de controle da pandemia de COVID, a sociedade vive na expectativa de retorno a normalidade. Mas como seria esse “novo normal” do ponto de vista da segurança cibernética? Vamos consultar nossa bola de cristal e os livros de história para juntar percepções e perspectivas de um cenário pós-pandêmico.

Fatos, mitos e palpites do cenário de segurança pós-pandemia

Anchises Moraes

Are existing compliance requirements sufficient to prevent data breaches? This session will provide a technical assessment of the 2019 Capital One data breach, illustrating the technical modus operandi of the attack and identify related compliance requirements based on the NIST Cybersecurity Framework. Attendees will learn the unexpected impact of corporate culture on overall cyber security posture. This talk was presented at RSA Conference 2021 (Session RMG-T15) on May 18, 2021. Original paper available for download at SSRN: Novaes Neto, Nelson and Madnick, Stuart E. and Moraes G. de Paula, Anchises and Malara Borges, Natasha, A Case Study of the Capital One Data Breach (28/04/2020). https://ssrn.com/abstract=3570138

A Case Study of the Capital One Data Breach

Anchises Moraes

Vamos caçar bugs?! O Bug Bounty na estratégia de DevSecOps Mesmo as melhores práticas de qualidade, segurança e DevSecOps conseguem garantir que um código estará livre de bugs. Por isso, empresas investem em capacitação, tecnologia e serviços para apoiar na validação de segurança durante o ciclo de desenvolvimento de software. Nesta palestra vamos discutir, do ponto de vista das empresas, a importância dos programas de recompensas por bugs (Bug Bounty) e seu papel dentro da estratégia de DevSecOps. Vamos conhecer as vantagens e desafios de implementar um programa de Bug Bounty nas empresas. Palestra apresentada em 10/06/2021 no TDC Connections.

Vamos caçar bugs!?

Anchises Moraes

Praticas de gestão de segurança

Anchises Moraes

Os ciber criminosos estão aproveitando a epidemia de Coronavírus para espalhar mais golpes pela internet, o que preocupa as empresas em um momento em que seus funcionários estão em regime de trabalho remoto. Vamos conversar sobre as principais ameaças de fraude e phishing, incluindo as fake news que pipocam no grupo da família, e como as empresas tem que se esforçar para proteger seus funcionários. Palestra realizada em 16/05/2020 na Vale Security Conference

Ciber crime e desafios de segurança durante uma pandemia e home office

Anchises Moraes

Cyber Cultura em tempos de Coronavírus

Anchises Moraes

Hunting Bugs - Running a Bug Bounty Program Slide deck put together for https://c0r0n4con.com/ (April/2020) Abstract Security best practices can't guarantee that a system or app is 100% free of bugs, so we have to detect bugs and vulnerabilities before the bad guys were able to explore them. Join us to hear the experience (takeaways and challenges) running a Bug Bounty program in a financial institution, bringing together the hacker community, AppSec and CSIRT teams. Outline We have been heard a lot about Bug Bounty (BB) programs and how security researchers has been making a lot of money by reporting bugs. Too much has been said from the researchers’ perspective, and too little from the companies running a BB program. An evolution of the endless Responsible Disclosure discussions and Vulnerability Report Programs, Bug Bounty programs have become a new trend in the information security industry, providing a valid communication channel for external entities to report the existence of bugs and vulnerabilities in a company’s platform and services. In this talk we will discuss the experience of a Brazilian Bank on implementing a bug bounty program as part of its application security strategy. From the point of view of an organization running a bug bounty program, we will present the challenges and benefits (expected and unexpected ones). BB program also brings the researcher community closer to the industry, representing a relevant initiative to strengthen relationship with the information security community. Running a BB program also demands strong commitment on having the issues fixed and also improves the information security visibility across the organization. Since a vulnerability can represent severe losses, detection and response are critical for the business. In order to have a proper response time for reported vulnerabilities , the CSIRT and AppSec teams play a key role in the BB program, by leading the remediation efforts whenever necessary.

Hunting bugs - C0r0n4con

Anchises Moraes

As Fintechs estão revolucionando o mercado financeiro em todo o mundo, trazendo inovação para um mercado que é conhecido por muitos como um ambiente arcaico, aonde ainda reinam os Mainframes. A pressão por inovação, se não for bem controlada, pode trazer novos riscos de segurança para os clientes. Nessa palestra vamos falar sobre as novas tendências de inovação no mercado financeiro, as novas tecnologias e seus riscos associados. Palestra proferida no evento Inovae na FMU, em maio/2019

Fintechs e os desafios de segurança

Anchises Moraes

Vamos apresentar 5 dicas básicas para as empresas se adequarem a Lei Geral de Proteção de Dados (LGPD). Com a entrada em vigor da Lei Geral de Proteção de Dados (LGPD), as empresas devem adequar seus serviços e processos para incorporar os novos controles sobre a coleta, manipulação, guarda, compartilhamento e destruição de dados. Nessa apresentação, vamos discutir como começar a se adequar a nova legislação em 5 passos básicos e objetivos. A nossa privacidade agradece. Palestra realizada na CryptoRave 2019, em 04/Maio/2019.

5 passos para a Lei Geral de Proteção de Dados (LGPD) - CryptoRave 2019

Anchises Moraes

"Indo além do Pentest" / Palestra apresentada na CPBR12 (Fev/2019) Muito se fala hoje em dia do Pentest, que já se tornou uma prática comum quando as empresas precisam testar a segurança de um site ou aplicação. A quantidade frequente de ataques bem sucedidos, resultando em fraudes e vazamentos de dados, mostram entretando que as empresas estão falhando em manter a segurança de seus sites, aplicações e bases de dados. Embora o "pentest" seja uma técnica muito comum de testar a segurança de um site, hoje temos a disposição um conjunto de ações que podem e devem ser adotadas de forma complementar para testar e corrigir aplicações desde a sua concepção até a produção. Vamos conversar um pouco sobre as diferenças e vantagens de adotar práticas de testes de segurança, scan de vulnerabilidades, pentest, políticas de vulnerability disclosure e programas de bug bounty.

Segurança além do Pentest

Anchises Moraes

A quantidade frequente de ataques bem sucedidos, fraudes e vazamentos de dados mostram que as empresas estão falhando em manter a segurança de seus sites, aplicações e bases de dados. Embora o "pentest" seja uma técnica muito comum de testar a segurança de um site, hoje temos a disposição um conjunto de ações que podem ser adotadas de forma complementar para testar e corrigir aplicações desde a sua concepção até a produção. amo conversar um pouco sobre as diferenças e vantagens de adotar práticas de testes de segurança, scan, pentest, vulnerability disclosure e bug bounty. Palestra realizada o Meetup OWASP São Paulo, 30/11/2018

Só o Pentest não resolve!

Anchises Moraes

Carreira em Segurança da Informação

Anchises Moraes

IoT Fofoqueiro Nossos dispositivos IoT não sabem guardar um segredo! Nesta palestra vamos rever vários casos recentes sobre dispositivos de Internet das Coisas que, deliberadamente ou não, revelavam dados pessoais de seus usuários. A Internet das Coisas (do inglês Internet of Things, ou IoT) está cada vez mais presente em nosso dia-a-dia em dispositivos pessoais, computação vestível, automação residencial, carros inteligentes e muito mais. Conforme eles se proliferam, crescem tambem os casos de exposição de dados pessoais. Nessa apresentação vamos rever alguns casos interessantes de dispositivos IoT que não tinham os devidos cuidados com privacidade. Palestra apresentada em 04/05/2018 na CryptoRave #CR2018

IoT Fofoqueiro

Anchises Moraes

Carta de oposição ao Sindpd 2018

Anchises Moraes

Segurança na Internet

Anchises Moraes

Como se tornar um Jedi na área de Segurança

Anchises Moraes

Deep Web e Ciber Crime

Anchises Moraes

É possível existir segurança para IoT?

Anchises Moraes

Mais de Anchises Moraes (20)

Post pandemics threat scenario

Como se proteger na internet

Fatos, mitos e palpites do cenário de segurança pós-pandemia

A Case Study of the Capital One Data Breach

Vamos caçar bugs!?

Praticas de gestão de segurança

Ciber crime e desafios de segurança durante uma pandemia e home office

Cyber Cultura em tempos de Coronavírus

Hunting bugs - C0r0n4con

Fintechs e os desafios de segurança

5 passos para a Lei Geral de Proteção de Dados (LGPD) - CryptoRave 2019

Segurança além do Pentest

Só o Pentest não resolve!

Carreira em Segurança da Informação

IoT Fofoqueiro

Carta de oposição ao Sindpd 2018

Segurança na Internet

Como se tornar um Jedi na área de Segurança

Deep Web e Ciber Crime

É possível existir segurança para IoT?

Último

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

In this keynote, Asanka Abeysinghe, CTO,WSO2 will explore the shift towards platformless technology ecosystems and their importance in driving digital adaptability and innovation. We will discuss strategies for leveraging decentralized architectures and integrating diverse technologies, with a focus on building resilient, flexible, and future-ready IT infrastructures. We will also highlight WSO2's roadmap, emphasizing our commitment to supporting this transformative journey with our evolving product suite.

Platformless Horizons for Digital Adaptability

WSO2

MINDCTI Revenue Release Quarter One 2024

MIND CTI

JohnPollard-hybrid-app-RailsConf2024.pptx

JohnPollard37

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

Tracing the root cause of a performance issue requires a lot of patience, experience, and focus. It’s so hard that we sometimes attempt to guess by trying out tentative fixes, but that usually results in frustration, messy code, and a considerable waste of time and money. This talk explains how to correctly zoom in on a performance bottleneck using three levels of profiling: distributed tracing, metrics, and method profiling. After we learn to read the JVM profiler output as a flame graph, we explore a series of bottlenecks typical for backend systems, like connection/thread pool starvation, invisible aspects, blocking code, hot CPU methods, lock contention, and Virtual Thread pinning, and we learn to trace them even if they occur in library code you are not familiar with. Attend this talk and prepare for the performance issues that will eventually hit any successful system. About authorWith two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Victor Rentea

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

The presentation was made in “Web3 Fusion: Embracing AI and Beyond” is more than a conference; it's a journey into the heart of digital transformation. The conference a provided a platform where the future of technology meets practical application. This three-day hybrid event, set in the heart of innovation, served as a gateway to the latest trends and transformative discussions in AI, Blockchain, IoT, AR/VR, and their collective impact on the information space.

AI in Action: Real World Use Cases by Anitaraj

AnitaRaj43

Keynote 2: APIs in 2030: The Risk of Technological Sleepwalk Paolo Malinverno, Growth Advisor - The Business of Technology Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

apidays

FWD Group - Insurer Innovation Award 2024

The Digital Insurer

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the deployment of external web forms using Jotform for Bonterra Impact Management. This solution can be customized to your organization’s needs and deployed to support the common use cases below: - Intake and consent - Assessments - Surveys - Applications - Program registration Interested in deploying web form automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Jeffrey Haguewood

Understanding the FAA Part 107 License ..

Christopher Logan Kennedy

💥 You’re lucky! We’ve found two different (lead) developers that are willing to share their valuable lessons learned about using UiPath Document Understanding! Based on recent implementations in appealing use cases at Partou and SPIE. Don’t expect fancy videos or slide decks, but real and practical experiences that will help you with your own implementations. 📕 Topics that will be addressed: • Training the ML-model by humans: do or don't? • Rule-based versus AI extractors • Tips for finding use cases • How to start 👨‍🏫👨‍💻 Speakers: o Dion Morskieft, RPA Product Owner @Partou o Jack Klein-Schiphorst, Automation Developer @Tacstone Technology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

UiPathCommunity

ICT role in 21st century education and its challenges

rafiqahmad00786416

DBX First Quarter 2024 Investor Presentation

Dropbox

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Security Aspects of Social Networks at Campus Party 2010

1. Security Aspects of Social Networks Anchises M. G. De Paula Security Intelligence Analyst iDefense, VeriSign February 25, 2010

2. Agenda Motivation History Future of Social Networking Current Problems Security aspects of Social Networking Source: XKCD - http://xkcd.com

3. Why Social Networks? Country Population (in millions) Global and cultural phenomenon 1600 1400 1200 Facebook: 400 million 1000 800 users 600 400 3th largest “country” in 200 0 the world A il a a ok sia az in di US bo In Ch ne Br ce do Fa In New attack vector for Source: Facebook, CIA phishers, fraudsters and sexual predators

4. Why Social Networks? New organization: “egocentric” approach Digital Identities Profiles Fakesters Source: Google

5. Why Security? “It’s the great irony of the Information Age that the very technologies that empower us to create and to build also empower those who would disrupt and destroy” (Barack Obama) Source: Whitehouse

6. History

7. Demographics Dominant social network vary greatly between different geographic regions Majority of the online connections between real-life friends Source: oxyweb

8. Future of Social Networking Virtual Currency Mobile Social Networking Sensor Networks Social TV Source: Wired

9. Current Problems Decentralization and Interoperability Managing Social Identities Trust and Reputation Management

10. Current Problems Privacy Personal data Pictures Professional information

11. Current Problems Privacy Personal data Pictures Professional information Content Overload

12. Current Problems Offense, Hate and Discrimination Child Safety and Sexual Crimes Defamation Stalking Cyber bullying Sexting

13. Security aspects of Social Networking Current Security Threats Identity/Password Theft Fake profiles Targeted attacks

14. Security aspects of Social Networking Current Security Threats Malicious Code, Viruses and Worms Spam, Phishing and Financial Fraud Malicious Programs Targeting Social Networking Sites

15. Security aspects of Social Networking Current Security Threats URL Shortening Hide malicious sites Source: tweetmeme

16. Security aspects of Social Networking Social Networks under Attack Exploit of Social Network Gadgets Security vulnerabilities Cross-site scripting (XSS) SQL injection DDoS Worms Koobface

17. Security aspects of Social Networking Malicious Actors Individuals Spammers and phishers Fraudsters and cyber criminals Hacktivists and terrorist groups Sexual predators

18. Security aspects of Social Networking Malicious Actors Terrorism Using Social Networks and Online Communities

19. Security aspects of Social Networking Malicious Actors Hacking communities Recruitment Information exchange Marketplace Hacker for hire

20. References Data Privacy Day: http://dataprivacyday2010.org Social Media Security: http://socialmediasecurity.com http://twitter.com/SocialMediaSec SocialNetworkingWatch: http://www.socialnetworkingwatch.com Security and Privacy in Social Networks Bibliography: http://www.cl.cam.ac.uk/~jcb82/sns_bib/main.html iDefense: www.idefense.com

21. Thank you :) Anchises M. G. De Paula http://anchisesbr.blogspot.com Twitter: @anchisesbr

22. Non-commercial Share Alike (by-nc-sa) This work is licensed under the Creative Commons Attribution-NonCommercial-ShareAlike 2.5 License. To view a copy of this license, visit http://creativecommons.org/licenses/by-nc-sa/2.5/ or send a letter to Creative Commons, 543 Howard Street, 5th Floor, San Francisco, California, 94105, USA

Security Aspects of Social Networks at Campus Party 2010

Recomendados

Recomendados

Mais conteúdo relacionado

Destaque

Destaque (18)

Mais de Anchises Moraes

Mais de Anchises Moraes (20)

Último

Último (20)

Security Aspects of Social Networks at Campus Party 2010