NordTech: Berlin AppSec Meetup recap
Katrina Gnatek
December 13, 2023
This Autumn, our meetup with the Berlin Application Security community offered a glimpse into some cutting-edge topics in the field. AppSec is increasingly crucial for defending applications from the ever-present threat of malware and hacking attacks.
Here's a brief summary of the Nord Security talks. You'll find links to the full videos as well.
Who downloads your NPM package? Research about NPM public registry bots and scrapers
from Rokas Tiškus
Rokas investigates suspicious bots that scrape packages on Node Package Manager (NPM), the world’s largest software registry. Developers can publish and share JavaScript software using NPM, but what could be driving bots to download this useful information…? Watch on to uncover the methods, patterns, and potential motives behind this dubious activity.
Watch Rokas’s talk on NPM bots
The state of MQTT: IoT’s favored messaging protocol
from Kasparas Bražėnas
Kasparas assesses the state of MQTT, “The Standard for IoT Messaging”. Citing security concerns raised as far back as 2016, he weighs up the protocol in its current form to see if improvements have been made. Tune in for a look at the global MQTT server landscape and persistent risks. Also, some essential tips for securing your ownMQTT environment.
Watch Kasparas’s talk on the state of MQTT
NordTech AppSec meetup
Don’t miss the next Nord Security meetup!
Follow us for all future tech events in Berlin and Vilnius.
Interested in creating a safer cyber future with us? Explore our open roles.