browserstack security breach. lessons learned
TRANSCRIPT
We got hacked. Lessons learned.
Aditya Patawari
Lead of Systems Engineer at BrowserStack.com
Fedora Ambassador and Contributor to Fedora Infra
adimania on freenode irc
http://blog.adityapatawari.com
March 30, 2015
Aditya Patawari We got hacked. Lessons learned.
Topics
Monitoring is good. Right monitoring is saviour.
Wildcards! Get rid of them.
How many machines you got?
Who got access to them?
Did you patch that?
Where is your backup?
Logging is on!
You need an amazing team.
Aditya Patawari We got hacked. Lessons learned.
Monitoring is good. Right monitoring is saviour.
Multi location monitoring
Monitor unlikely situations like table locks
Monitor IP addresses
Aditya Patawari We got hacked. Lessons learned.
Wildcards! Get rid of them.
Database grant statements will KILL you.
Any wildcard ACL is a potential disaster.
Aditya Patawari We got hacked. Lessons learned.
How many machines you got?
Make an inventory.
Make an automated inventory.
Aditya Patawari We got hacked. Lessons learned.
Who got access to them?
Did you generate generic api keys?
Two-factor is amazing
How similar is your staging to production?
Aditya Patawari We got hacked. Lessons learned.
Did you patch that?
So many CVEs
CI for security updates?
Look at OpenVAS
Aditya Patawari We got hacked. Lessons learned.
Where is your backup?
Onsite and Offsite, both are mandatory
Another AWS region is not offsite
Encrypt it
Aditya Patawari We got hacked. Lessons learned.
Logging is on!
Log your systems centrally
Log actions on your hardware/service provider
Aditya Patawari We got hacked. Lessons learned.