Tino Sokic

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes

A developer used their personal email for work. A simple social engineering attack later, all client credentials were stolen.

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes
#1about 2 minutes

Why developers make basic cybersecurity mistakes

The talk will cover common security errors made by developers, the importance of correct terminology, and the conflict between functionality and business risk.

#2about 6 minutes

Moving beyond the "it just works" developer mindset

Developers must shift from prioritizing simple functionality to understanding the underlying infrastructure and building secure, robust solutions from the start.

#3about 3 minutes

Differentiating between a developer and a programmer

A developer has a broader range of responsibilities including project management, whereas a programmer is focused on specific coding tasks.

#4about 4 minutes

Understanding the internet's inherent insecurity

Core internet protocols like DNS and BGP were not built for security, and human behavior is a far greater risk than the technology itself.

#5about 3 minutes

A social engineering attack using a personal email

A simple social engineering attack demonstrates how using personal email for business communication creates significant security vulnerabilities.

#6about 6 minutes

Five common cybersecurity mistakes developers make

Developers often exhibit risky behaviors like overconfidence, poor password management, account sharing, and improper use of third-party libraries.

#7about 4 minutes

The clash between business pressure and security reality

Business pressures often force developers to launch products with known bugs or security flaws simply to meet deadlines and get paid.

Related jobs
Jobs that call for the skills explored in this talk.

d

Saby Company

Saby Company
Delebio, Italy

Junior
Java
Node.js

Matching moments

Common security failures beyond individual coding errors
03:27 MIN

Common security failures beyond individual coding errors

Maturity assessment for technicians or how I learned to love OWASP SAMM

A developer's responsibility to build secure software
01:29 MIN

A developer's responsibility to build secure software

You can’t hack what you can’t see

Cybersecurity is a foundational necessity not a passing trend
05:49 MIN

Cybersecurity is a foundational necessity not a passing trend

Decoding Trends: Strategies for Success in the Evolving Digital Domain

Why developers must take ownership of application security
09:14 MIN

Why developers must take ownership of application security

Real-World Security for Busy Developers

Addressing the security education gap for developers
03:34 MIN

Addressing the security education gap for developers

Climate vs. Weather: How Do We Sustainably Make Software More Secure?

Avoiding common security mistakes and giving better feedback
03:55 MIN

Avoiding common security mistakes and giving better feedback

The weekly developer show: Boosting Python with CUDA, CSS Updates & Navigating New Tech Stacks

Why security is often neglected in development
02:52 MIN

Why security is often neglected in development

Security in modern Web Applications - OWASP to the rescue!

Key takeaways on IDE and developer tool security
02:28 MIN

Key takeaways on IDE and developer tool security

You click, you lose: a practical look at VSCode's security

Featured Partners

Related Videos

See all videos
Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

101 Typical Security Pitfalls28:41

101 Typical Security Pitfalls

Alexander Pirker

Security Pitfalls for Software Engineers27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together23:34

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

Stefania Chaplin

Programming secure C#/.NET Applications: Dos & Don'ts33:29

Programming secure C#/.NET Applications: Dos & Don'ts

Sebastian Leuer

Security in modern Web Applications - OWASP to the rescue!26:59

Security in modern Web Applications - OWASP to the rescue!

Jakub Andrzejewski

Software Security 101: Secure Coding Basics1:58:48

Software Security 101: Secure Coding Basics

Thomas Konrad

Simple Steps to Kill DevSec without Giving Up on Security21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

Related Articles

View all articles
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?
CH
Chris Heilmann
Dev Digest 129 - Now that's what I call private data!
News and ArticlesAfter declaring Google a monopoly there are now considerations to force it to break up - isn't that what the whole Alphabet thing was about? In the last act of Crowdstrike coverage here, they released a deep analysis of the outage th...
Dev Digest 129 - Now that's what I call private data!
CH
Chris Heilmann
Dev Digest 116 - WWWAI?
This time, learn how to un-AI Google's search results, what's new on the web, avoid a new security hole and go back to BASICS with us. News and ArticlesWhat a week. Google, Microsoft, OpenAI and many others had their big flagship events announcing th...
Dev Digest 116 - WWWAI?

From learning to earning

Jobs that call for the skills explored in this talk.