Collaborate Disseminate
The title says it all and the details are on their blog, but there’s still a lot to talk about. Self-submission to HIBP is not a new thing (TruckersMP was the first back in April), but it’s extremely unusual as here you have an organisation saying “we got hacked, we’d
Trust is a really difficult thing to define. Think about it in the web security context – how do you “trust” a site? Many people would argue that trust decisions are made on the familiarity you have with the brand, you know, brands like LinkedIn, Dropbox, Adobe… who’ve all had
Continue reading Journey to an extended validation certificate
Trust is a really difficult thing to define. Think about it in the web security context – how do you “trust” a site? Many people would argue that trust decisions are made on the familiarity you have with the brand, you know, brands like LinkedIn, Dropbox, Adobe… who’ve all had
Continue reading Journey to an extended validation certificate
Content security policies (CSPs) can be both a blessing and a curse. A blessing because they can do neat stuff like my recent piece on upgrading insecure requests yet a curse because they can also do screwy things like break your site. Now in fairness, the breaking bit linked to
Continue reading How Chrome’s buggy content security policy implementation cost me money
Content security policies (CSPs) can be both a blessing and a curse. A blessing because they can do neat stuff like my recent piece on upgrading insecure requests yet a curse because they can also do screwy things like break your site. Now in fairness, the breaking bit linked to
Continue reading How Chrome’s buggy content security policy implementation cost me money
I get a lot of requests from people for data from Have I been pwned (HIBP) that they can analyse. Now obviously, there are a bunch of people up to no good requesting the data but equally, there are many others who just want to run statistics. Regardless, the answer
Continue reading Here’s 1.4 billion records from Have I been pwned for you to analyse
I get a lot of requests from people for data from Have I been pwned (HIBP) that they can analyse. Now obviously, there are a bunch of people up to no good requesting the data but equally, there are many others who just want to run statistics. Regardless, the answer
Continue reading Here’s 1.4 billion records from Have I been pwned for you to analyse
Earlier today, Have I been pwned (HIBP) appeared on a British TV show called The Martin Lewis Money Show. A producer had contacted me about this last week:
I Just wanted to get in contact to let you know we’re featuring ‘have I been pwned?’ on the programme next
Continue reading Brief lessons on handling huge traffic spikes
Earlier today, Have I been pwned (HIBP) appeared on a British TV show called The Martin Lewis Money Show. A producer had contacted me about this last week:
I Just wanted to get in contact to let you know we’re featuring ‘have I been pwned?’ on the programme next
Continue reading Brief lessons on handling huge traffic spikes
It’s hard to believe it, but Sunday 4 December will mark 3 years since I launched Have I been pwned. A huge amount has happened in that time, not just for HIBP but for the industry and indeed for me personally. I certainly didn’t expect it to become what it
Continue reading It’s Have I been pwned’s birthday and I’m doing a live streamed AMA