Weekly update

We're at NDC Oslo! We found a spot on the floor and recorded this a couple of hours before doing our final talk of the event. In this video, we discuss some of what we were planning to cover in that talk, namely HTTPS anti-vaxxers as Scott wrote about earlier in the week. And how did it go? Apparently, exceptionally well! Best talk of the conf! @troyhunt and @Scott_Helme on web security - dont get advise from a psychic 😆 #NDCOslo pic.twitter.com/X0m3Q5xFeq— Natalia An (@illumikko) June 15, 2018 Just left #NDCOslo after watching the best talk of the week with @troyhunt and @Scott_Helme pic.twitter.com/PNyNFMMI2V— Thomas Fredriksen (@thomfredev) June 15, 2018 Best...

Wow wow wow! What a week! This video is going out a couple of days late but if ever I had a good excuse for it, this week is the one. Scott and I are in Oslo this week having just flown in from London where we collectively scooped up 3 awards, one each at the European Blogger Awards and the big one (quite literally - the thing weights several kilos), the SC Award for Best Emerging Technology courtesy of Report URI. This is massive for us, and very, very unexpected too. We talk about why this week. Further to that, there's our experiences from the Infosec Europe conference, Scott's talk about nomx (sorry - "multi-award-winning UK blogger Scott...

An exciting weekly update - I got an award! I did write about it earlier this morning, but I talk about it more in this week's update and explain why it means a lot. In other news, I'm heading back to Europe in a few days from now so am doing the last-minute rush tying up loose ends here, finishing presentations and just generally preparing myself for what will be another hectic few weeks. I also killed off the non-anonymous endpoints of Pwned Passwords today so it's k-anonymity all the way now. Plus, in this week's blog posts, the Spanish government comes on board HIBP and I write about some really cool large-scale use cases of Pwned Passwords. Oh -...

Well it's all quietened down here with Scott gone so it's back to business as usual, which means, well, it's not very quiet at all! I've been in Sydney this week talking at one of our big banks and as I say in this week's update, getting out there amongst companies dealing with their unique cyber challenges is always interesting: #cyber pic.twitter.com/CIMDhPfKIP— Troy Hunt (@troyhunt) May 23, 2018 In other news, Pwned Passwords is going nuts, there's some awesome cyber comments from The Daily Mail (yep, that's right), I'm doing a bunch of re-engineering work on HIBP, there's the ViewFines data breach and a brand new Pluralsight course on bug bounties. I'll still be home next...

We're on a beach! It's the day after 3 pretty intense days of NDC conference and the day before Scott heads back to the UK so beach was an easy decision. The conference went fantastically well and, in all honesty, was the most enjoyable workshop I think I've done out of ~50 of them these last few years. NDC will be back on the Gold Coast next year, plus of course it will be in Oslo in a few weeks' time then Sydney in September where we'll both do it all again. This week, we talk a lot about EV certs. As I say in the video, neither of us have anything against commercial CAs or even EV certs per...

This week, Scott Helme is getting bitten by Aussie critters whilst working from a desert island. He's here on the Gold Coast for the NDC Security event next week so I thought we'd record the update together so we grabbed a couple of cold ones, wandered down to the backyard and recorded there. We cover off a bunch of bits and pieces related to things we're working on together (workshops and Report URI) as well as some (mostly) commonly held views about HTTPS, EV certs and visual indicators. Oh - and I forgot to mention killing off the non-anonymous endpoints for Pwned Passwords last week so that's in here this week too. Hope you enjoy the banter with Scott, he's...

It's a (new) weekly update! Lights are in, things are much brighter and... I think it was a bit too bright and the camera was pointed too high. This is all experimentation, folks, and I appreciate everyone's input as I tune things to try and get a consistent, quality result. Still, as someone said whilst I was mucking around with all this, the audio quality is great and that's what people are ultimately listening to so that's a fantastic start. You'll notice I've also changed the video thumbnail and removed the text in the opening frames, I hope that's an improvement. (Oh yeah - and there's a 4 min blank spot at the end due to a rogue element in...

This week... I'm tired. A two-day remote workshop on London hours meant very unfriendly times for me here in Aus but hey, it beats jet lag! So just a very short intro this time, I recorded the update this morning whilst I was rather a lot more awake so I'll let that do the talking. Enjoy! iTunes podcast | Google Play Music podcast | RSS podcast Reference Remote workshops get me in front of more people whilst also remaining in front of my wife and kids! (normally I do these as 4 half-days during more mutually friendly hours) I've chosen Backblaze for cloud backups (that's a link to the tweet where I asked about services) Barclays got pinged by ASA for padlock...

I'm home! Home is good. My travel stats for this year - not so good. As I say in the video, I need to fix this so at this stage, I'm saying "no" to pretty much everything in the second half of the year that involves international travel and I'll just do the exceptionally awesome stuff. But be that as it may, there's a bunch of other stuff to talk about this week including 3 new blog posts. I'm really hoping to push out a bunch more content over the coming weeks whilst I'm at home (I'm not overseas again until June), there's a heap of stuff on the backlog. Oh - one thing I forgot to mention...

I'm in Honolulu! And I apologise in advance for the audio quality - the background noise is air conditioning units in the hotel and I didn't realise quite how much sound they make until I listened to the audio afterwards. Next week I'll be home and back to a quality audio setup. Regardless, I did pump out a shorter update with a bunch of bits and pieces that popped up during the week. Firstly, the obnoxious behaviour that is Twitter thread hijacking (think of everything you hate about spam, just distilled down to 280 characters). I also caught up with a bunch of people from 1Password during my time in Hawaii and fleshed out how I'm going to be clearer...