Tino Sokic

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes

A developer used their personal email for work. A simple social engineering attack later, all client credentials were stolen.

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes
#1about 2 minutes

Why developers make basic cybersecurity mistakes

The talk will cover common security errors made by developers, the importance of correct terminology, and the conflict between functionality and business risk.

#2about 6 minutes

Moving beyond the "it just works" developer mindset

Developers must shift from prioritizing simple functionality to understanding the underlying infrastructure and building secure, robust solutions from the start.

#3about 3 minutes

Differentiating between a developer and a programmer

A developer has a broader range of responsibilities including project management, whereas a programmer is focused on specific coding tasks.

#4about 4 minutes

Understanding the internet's inherent insecurity

Core internet protocols like DNS and BGP were not built for security, and human behavior is a far greater risk than the technology itself.

#5about 3 minutes

A social engineering attack using a personal email

A simple social engineering attack demonstrates how using personal email for business communication creates significant security vulnerabilities.

#6about 6 minutes

Five common cybersecurity mistakes developers make

Developers often exhibit risky behaviors like overconfidence, poor password management, account sharing, and improper use of third-party libraries.

#7about 4 minutes

The clash between business pressure and security reality

Business pressures often force developers to launch products with known bugs or security flaws simply to meet deadlines and get paid.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

A developer's responsibility to build secure software
28:05 MIN

A developer's responsibility to build secure software

You can’t hack what you can’t see

Cybersecurity is a foundational necessity not a passing trend
01:58 MIN

Cybersecurity is a foundational necessity not a passing trend

Decoding Trends: Strategies for Success in the Evolving Digital Domain

Why security is often neglected in development
02:55 MIN

Why security is often neglected in development

Security in modern Web Applications - OWASP to the rescue!

Why we must trust developers like airline pilots
04:29 MIN

Why we must trust developers like airline pilots

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Avoiding common security mistakes and giving better feedback
55:17 MIN

Avoiding common security mistakes and giving better feedback

The weekly developer show: Boosting Python with CUDA, CSS Updates & Navigating New Tech Stacks

Key takeaways on IDE and developer tool security
27:19 MIN

Key takeaways on IDE and developer tool security

You click, you lose: a practical look at VSCode's security

Modern cybersecurity challenges for developers
15:35 MIN

Modern cybersecurity challenges for developers

Cyber Security: Small, and Large!

Common security failures beyond individual coding errors
05:28 MIN

Common security failures beyond individual coding errors

Maturity assessment for technicians or how I learned to love OWASP SAMM

Featured Partners

Related Videos

See all videos
Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

Programming secure C#/.NET Applications: Dos & Don'ts33:29

Programming secure C#/.NET Applications: Dos & Don'ts

Sebastian Leuer

Security Pitfalls for Software Engineers27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

101 Typical Security Pitfalls28:41

101 Typical Security Pitfalls

Alexander Pirker

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together23:34

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

Stefania Chaplin

Typed Security: Preventing Vulnerabilities By Design58:19

Typed Security: Preventing Vulnerabilities By Design

Michael Koppmann

Simple Steps to Kill DevSec without Giving Up on Security21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

Software Security 101: Secure Coding Basics1:58:48

Software Security 101: Secure Coding Basics

Thomas Konrad

Related Articles

View all articles
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?
DC
Daniel Cranney
Dev Digest 194: AI vs. Version Control, Password Louvre & Cursed Webdev
Inside last week’s Dev Digest 194 . 🧠 Learn how to become an AI-native software engineer 🤷‍♂️ How can you stand out when anyone can build anything? 👂 Whisper Leak allows listening to encrypted chats 🐝 What’s new the OWASP2025 Top Ten List 🙅‍♀️ Curse...
Dev Digest 194: AI vs. Version Control, Password Louvre & Cursed Webdev

From learning to earning

Jobs that call for the skills explored in this talk.