shape security @ wafflejs october 16
TRANSCRIPT
WAFFLEJSShape Security
OCTOBER 2016
1.6 BillionLeaked credentials in 2016 alone2.1
"The security aspect of cyber is very, very tough."
This data gets sold
soldtradedThis data gets
soldtradedorganizedThis data gets
soldtradedorganizedstored by criminals forever
This data gets
Every breach adds a piece of you to a criminal's database.
Passwords, emails, names, security questions & answers, addresses, and more
1. Credentials get tested on other sites
2. Working credentials are traded or sold 3. Targeted fraud is performed with valid accounts
How does this data get used?
This isn't cost effective unless automated
BY�EVIL��ROBOTS
Headless browsers like PhantomJS
Shape stops automated attacks in a post-captcha world.
Captchas ruin UX and don't work!
1.5B Logins analyzed per week
350M Protected user accounts
$1B Fraud losses deflected in 2016
Now Hiring!
Web Platform Experts - http://bit.ly/shape-wpe Help defend the web by doing ridiculous things with JavaScript and Browser APIs
UI Developers - http://bit.ly/shape-ui Build out a real time analytics dashboard and customer portal with Angular, React, and D3
Backend Developers - http://bit.ly/shape-backend Build the backend that ingests and powers the real time analytics for billions of transactions