Security in today's world

Marian HackMan Marinov mm@1h.comChief System Architect of SiteGround

Personal security

➢Bank cards

➢Personal documents

➢RFID cards

➢Laptop

➢Phone

Bank cardsBank cards

➢ How to protect our PIN

➢ How to protect the written data on your card

➢ PayPass

Bank cardsBank cards

➢ How to protect our PIN

➢ How to protect the written data on your card

➢ PayPass

Bank cardsBank cards

➢ How to protect

our PIN

Bank cardsBank cards

➢ How to protect the written data on your card➢Cloning

➢Name

➢Expiration date

➢CVV/CVC

Bank cardsBank cards

➢ PayPass➢Wireless

➢Unauthorized access

➢Transactions without

authorization

➢Cloning

➢Relay attack

Bank cardsBank cards

➢ PayPass - relay attack

Payment terminal

Attacker's phone

Attacker's phone

Victim's card

Bank cardsBank cards

➢ PayPass - relay attack

Payment terminal

Attacker's phone

Victim's phonewith a Trojan app

Victim's card

Bank cardsBank cards

➢ PayPass - protection

Personal documents

How to protect them?

➢Personal ID cards

➢Passport

➢Driver's license

➢ЕГН :)

RFID cards

➢Easy proximity reads

➢Very easy forging

➢Cheap devices for forging

Phone protection

➢Encrypt your phone

➢Encrypt your SD card

➢Set a password, not a PIN

➢Setup a remote lock and wipe

➢Be very careful what apps you install and what permissions they require

Laptop Protections

➢BIOS password

➢do not allow external devices to be used for boot

➢disable network boot

➢Power-On password

➢HDD password from BIOS

➢Encrypt your data (Linux LUKS and ecryptfs)

➢separate browser profile for banking

➢password manager for storing passwords

Questions?Questions?

Marian HackMan Marinov mm@1h.comChief System Architect of SiteGround

Questions

Thank you!Thank you!

Marian HackMan Marinov mm@1h.comChief System Architect of SiteGround