Troy Hunt

I write a blog with a lot of security things on it so understandably, it upsets me somewhat when my site throws security warnings: I'd had a number of people report this and indeed I'd seen it myself, albeit transiently. Diving into the console, I found the source of the problem: Who the hell is Circulate?! And what are they doing in my blog? Let's find out: Right... I don't have any ads on my blog these days (just sponsor messages) so there shouldn't be any third-party monetisation goi...

I've done a number of "Play by Play" courses for Pluralsight this year on a range of topics including Social Engineering with my mate Lars Klint [http://app.pluralsight.com/courses/play-by-play-social-engineering], Deconstructing the Hack with my mate Gary Eimerman [http://app.pluralsight.com/courses/play-by-play-ethical-hacking-deconstructing-hack] , Modernizing Your Deployment Strategy with Octopus Deploy with my mate Damo Brady [http://app.pluralsight.com/courses/play-by-play-modernize-with-...

Let's get this out of the way early - I did not shoot this video on a green screen! When I first watched it, I couldn't believe how amazing the picture quality was and the first thought I had when I saw it was the green screen one. The new iPhone 7 Plus is a major part of that, but I got out early when it was quiet and got the light just right too. I posted a still to Twitter earlier today and someone asked what lighting I use. Uh, "the sun", that is all. Anyway, a bunch of things worth discuss...

A couple of weeks ago I wrote about the leak of data from the Red Cross' Blood Service down here in Australia [https://www.troyhunt.com/the-red-cross-blood-service-australias-largest-ever-leak-of-personal-data/] . Many people were shocked that you could have a situation where troves of personal data were obtainable not through any advanced hacking technique, but by merely downloading a database backup from the website it had been published to. It's literally that simple and it's shockingly commo...

I've had this blog post in one form or another of draft for several years now. I hesitated to complete it, in part because at the best of times cultural observations can easily be misinterpreted and also in part because of the role I had in working with many outsourcing vendors across Asia. Whilst the former hesitation has in no way changed, the latter has and I think it's a genuinely interesting topic worth sharing, particularly before my outsourcing memories fade too far. One thing before I b...

Apparently, after doing several weekly updates from different locations across the globe, last week's one from my home office was rather boring. Now maybe that was just a noisy minority saying that, I don't know, but I thought I'd test the theory and this week I headed out on jet ski to one of my favourite little island spots. I still got all the same content in, albeit from a more interesting spot. If you love or hate this approach, let me know, I'm still seeing what resonates and what doesn't...

I'm increasingly of the view that both my time and my sanity are worth more and more as the years progress. Particularly in my independent life, it really can be that black and white - if I can't work, it costs me money. Plus, I want to be happy and few things make me less happy than computer bits going wrong: > Really disappointed with the @Linksys [https://twitter.com/Linksys] WRT1900AC wireless routers I bought a year ago, continually degrade speed and need a reset pic.twitter.com/TsEzdiHLM...

Here's a little-known fact for folks that have only tuned in more recently: I had a life before doing security things. I know, it seems like a long time ago now, but there was a time where all the other things that go into the software development process were highly topical for me. In fact, some of the most popular content on my blog over the last 7 years has been the You're deploying it wrong series [https://www.troyhunt.com/you-deploying-it-wrong-teamcity/] where I walk through the setup of T...

We're now going on almost 3 years since I introduced the Have I been pwned (HIBP) API [https://www.troyhunt.com/have-i-been-pwned-you-can-now-ask-api/]. In fact it was one of the first things I did after creating HIBP in the first place because I wanted to make the data as accessible as possible and create an ecosystem of third party apps. However, over time I've also had to deal with the API being used in ways I never intended. For example, I recently introduced the rate limit [https://www.tro...

My son turned 7 earlier this month. I've been getting him into coding [https://www.troyhunt.com/kids-and-code-simple-programming-on/] and teaching him the fundamentals of using a PC which I reckon is a pretty essential life skill these days. Part of that is helping him to understand the principle of secrets, namely that he should protect the PIN he's using to sign in to his Windows 10 machine. He's good at it too, being sure to shield the little laptop from view whenever he uses it with others a...