
Security Weekly Podcast Network (Video)
4,876 episodes — Page 71 of 98

Taylor Swift, KringleCon, & 3D Head - Paul's Security Weekly #586
How Taylor Swift used Facial Recognition to Thwart Stalkers, unlocking android phones with a 3D printed head, Ticketmaster fails to take responsibility for malware, and it's December of 2018, To Hell with it, Just patch your stuff already! Full Show Notes: https://wiki.securityweekly.com/Episode586 Follow us on Twitter: https://www.twitter.com/securityweekly

Ed Skoudis, Counter Hack Challenge - Paul's Security Weekly #586
Ed Skoudis, Founder of the Counter Hack Challenge and Kringle Con 2018, joins us on the show to talk about this years challenge and what's in store! "Welcome to Counter Hack Challenges, an organization devoted to creating educational, interactive challenges and competitions to help identify people with information security interest, potential, skills, and experience. We design and operate a variety of capture-the-flag and quiz-oriented challenges for the SANS Institute, Cyber Aces, US Cyber Challenge, and other organizations. Our featured products include NetWars, CyberCity, Holiday Hack Challenge, Cyber Aces Online, and several Cyber Quests." Join KringleCon: www.kringlecon.com Full Show Notes: https://wiki.securityweekly.com/Episode586 Follow us on Twitter: https://www.twitter.com/securityweekly

Don Murdoch, Regent University Cyber Range - Paul's Security Weekly #586
Don Murdoch is the Assistant Director at Regent University Cyber Range. Don discusses his book "Blue Team Handbook Incident Response Edition". Full Show Notes: https://wiki.securityweekly.com/Episode586 Follow us on Twitter: https://www.twitter.com/securityweekly

Minerva, Rapid7, & Venafi - Enterprise Security Weekly #119
NopSec announces the latest release of its flagship product, Minerva Labs Anti-Evasion Platform achieves VMware ready status, SecurityScorecard announces partnership with cybernance to drive holistic view of cyber risk across the enterprise, and we have some acquisition and funding updates from Venafi, WhiteFox, and Pindrop! Full Show Notes: https://wiki.securityweekly.com/ES_Episode119 Visit http://securityweekly.com/esw for all the latest episodes!

John Bradshaw, Acalvio - Enterprise Security Weekly #119
This segment is sponsored by Acalvio. Check out their deception technologies by visiting https://securityweekly.com/acalvio. And remember, all [cyber] war is based on deception! Our guest is John Bradshaw, the Sr. Director of Solutions Engineering at Acalvio Technologies. John has more than 25 years of experience in the Cyber Security industry focusing on advanced, targeted threats. John joins Paul Asadoorian and John Strand to discuss the five tenets of enterprise deception, levels of interactivity for deception targets, and many more interest facets of deception technologies as they are applied to an enterprise security program! To learn more about Acalvio, go to: https://securityweekly.com/acalvio Full Show Notes: https://wiki.securityweekly.com/ES_Episode119 Visit http://securityweekly.com/esw for all the latest episodes!

Kubernetes, Firefox, & WordPress - Application Security Weekly #43
Kubernetes instances are being hijacked worldwide, malicious sites abuse 11-year old Firefox bug that Mozilla failed to fix, Google is on a Witch Hunt for Internal Leakers, a botnet of over 20,000 WordPress sites is attacking other WordPress sites, the rise of visual studio code, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode43 Follow us on Twitter: https://www.twitter.com/securityweekly

Chris Elgee, Counter Hack Challenge - Application Security Weekly #43
Chris Elgee is a full time husband, father of four, and technical engineer at Counter Hack Challenges. Chris joins Keith and Paul this week to talk about the Counter Hack Challenge, how it's been working on the challenge vs. playing it, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode43 Follow us on Twitter: https://www.twitter.com/securityweekly

Leadership & Communication - Business Security Weekly #110
How to collaborate with people you don't like, the right way to solve complex business problems, what the habits are of successful people, three things to know before you land a tech job, a CISO's wishlist, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode110

Brian Carey, Rapid7 - Business Security Weekly #110
Brian Carey is a Senior Security Consultant at Rapid7, specializing in: Security Program Assessments, Security Program Development, Vulnerability Management Program Development, Security Awareness and Policy Development. In this interview, we discuss emerging trends that he is seeing with his clients, and how they impact their clients' security programs, including maturity, roadmap, and recommendations! To learn more about Rapid7, go to: www.rapid7.com/securityweekly Full Show Notes: https://wiki.securityweekly.com/BSWEpisode110

Marriott Breach, Lame Printer Hack, and Docker - Paul's Security Weekly #585
This week, how Docker containers can be exploited to mine for cryptocurrency, WordPress sites attacking other WordPress sites, why the Marriott Breach is a valuable IT lesson, malicious Chrome extensions, why hospitals are the next frontier of cybersecurity, and how someone is claiming to sell a Mass Printer Hijacking service! Full Show Notes: https://wiki.securityweekly.com/Episode585 Follow us on Twitter: https://www.twitter.com/securityweekly

Marcello Salvati, BHIS - Paul's Security Weekly #585
Marcello Salvati is a security consultant at BHIS, and is giving a technical segment on SilentTrinity. Marcello will solve the red team tradecraft problem of gaining dynamic access to the .net api without going through powershell. To learn more about Black Hills Information Security, go to: https://www.blackhillsinfosec.com/PSW Full Show Notes: https://wiki.securityweekly.com/Episode585 Follow us on Twitter: https://www.twitter.com/securityweekly

Lenny Zeltser, Minerva Labs - Paul's Security Weekly #585
Lenny Zeltser the VP of Products at Minerva, will be giving a technical segment on Evasion Tactics in Malware from the Inside Out. He will explain the tactics malware authors use to evade detection and analysis and find out how analysts examine these aspects of malicious code with a disassembler and a debugger. To learn more about Minerva Labs, go to: https://l.minerva-labs.com/security-weekly Full Show Notes: https://wiki.securityweekly.com/Episode585 Follow us on Twitter: https://www.twitter.com/securityweekly

Ixia, Yubico, Fortinet, and ZeroStack - Enterprise Security Weekly #118
Ixia extends collaboration with ProtectWise, Ping Identity brings in New Customer Identity as a service solution, Fortinet introduces new security automation capabilities on AWS, and Yubico announces YubiHSM 2 integration with AWS IoT Greengrass! Full Show Notes: https://wiki.securityweekly.com/ES_Episode118 Visit http://securityweekly.com/esw for all the latest episodes!

Mike Nichols, Endgame - Enterprise Security Weekly #118
Mike Nichols, the VP of Product for Endgame, joins us for an interview to talk about MITRE evaluation of Endgame, Open-Source Query Language EQL, and Storytime with Mike! To learn more about Endgame, go to: www.endgame.com Full Show Notes: https://wiki.securityweekly.com/ES_Episode118 Visit http://securityweekly.com/esw for all the latest episodes!

NSA Malware, AFL Fuzzer, & Firecracker - Application Security Weekly #42
Hackers are opening SMB ports on routers to infect PCs with NSA malware, bug detectives whip up smarter version of classic AFL fuzzer to hunt code vulnerabilities, malware & rogue users can spy on some apps' HTTPS crypto, exploiting developer infrastructure is insanely easy, the state of JavaScript, Amazon announces Firecracker, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode42 Follow us on Twitter: https://www.twitter.com/securityweekly

Leadership Articles - Business Security Weekly #109
Paul and Jason Alburquerque discuss The new math of leadership, How pragmatic leaders can transform stuck organizations, and Why building a work community is critical! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode109

Aleksei Tiurin, Acunetix - Application Security Weekly #42
Aleksei Tiurin is the Senior Security Researcher for Acunetix. He is performing a technical segment on reverse proxies using weblogic, Tomcat, and Nginx. To learn more about Acunetix, go to: www.acunetix.com/securityweekly Full Show Notes: https://wiki.securityweekly.com/ASW_Episode42 Follow us on Twitter: https://www.twitter.com/securityweekly

Jay Prassl, Automox - Business Security Weekly #109
Matt Alderman interviews Jay Prassl, the CEO of Automox. Jay Prassl explains what Automox does, how Automox bridges the gap between ITOps and SecOps use case, and how Automox defines the way to patch systems in the MacOS, Linux, Windows, and MSP. To learn more about Automox, go to: www.automox.com Full Show Notes: https://wiki.securityweekly.com/BSWEpisode109

"Dunkin" Donuts, Microsoft, & Marijuana - Paul's Security Weekly #584
Hackers breach Dunkin Donuts, how insiders are serious threats to security in an organization, the return of email flooding, Microsoft helps police shut down fake tech support in India, and how Las Vegas police are cracking down on Black Market marijuana sales! Full Show Notes: https://wiki.securityweekly.com/Episode584 Follow us on Twitter: https://www.twitter.com/securityweekly

Wietse Venema & Dan Farmer, SATAN - Paul's Security Weekly #584
Wietse Venema and Dan Farmer, the Developers of Security Administrator Tool for Analyzing Networks (SATAN), talk about their experience as developers, their journey to creating SATAN and their decision to keep SATAN a open source tool. Full Show Notes: https://wiki.securityweekly.com/Episode584 Follow us on Twitter: https://www.twitter.com/securityweekly

Sven Morgenroth, Netsparker - Paul's Security Weekly #584
Sven will talk about PHP Object injection vulnerabilities and explain the dangers of PHP's unserialize function. He will show the format of serialized PHP Objects, explain PHP's magic methods and how to write an exploit for a PHP Object Injection vulnerability during his technical demo. Full Show Notes: https://wiki.securityweekly.com/Episode584 To learn more about Netsparker, go to: https://www.netsparker.com/securityweekly Follow us on Twitter: https://www.twitter.com/securityweekly

EdgeEngine, Cloud-Native, and Orkus - Enterprise Security Weekly #117
tackPath launches EdgeEngine Serverless Computing, Alcide advances Cloud-Native security Firewall platform, Orkus launches Access Governance platform for Cloud Security, Tufin announces a new Cloud Security solution, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode117 Visit http://securityweekly.com/esw for all the latest episodes!

Drupalgeddon, USPS, & JavaScript - Application Security Weekly #41
Hackers use Drupalgeddon 2 and Dirty COW exploits to take over web servers, second WordPress hacking campaign underway, USPS took a year to fix a vulnerability that exposed all 60 million users' data, this JavaScript can snoop on other Browser Tabs to work out what you're visiting, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode41 Follow us on Twitter: https://www.twitter.com/securityweekly

Jeremy Winter, Microsoft - Enterprise Security Weekly #117
Jeremy Winter is Director of Azure Management, responsible for areas such as Azure Governance, Policy, Configuration, PowerShell, Disaster Recovery, Azure Migrate and the Azure Portal Experiences from within Azure Compute. He joins Paul and John to talk about Microsoft's Azure program, the shift in CloudOps and how it matters to security, and how it helps further the evolving roles of Cloud Ops and Cloud Security. Full Show Notes: https://wiki.securityweekly.com/ES_Episode117 Visit http://securityweekly.com/esw for all the latest episodes!

Leadership Articles - Business Security Weekly #108
The million-dollar question of cyber-risk, risk assessments essential to secure third-party vendor management, how digital tech is transforming business ecosystem, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode108

Brent Dukes - Application Security Weekly #41
Brent Dukes is a hacker, and Director of Information Security for an established manufacturing company. He joins Keith and Paul this week to talk about WAF's, Pentesting, Burp Suite, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode41 Follow us on Twitter: https://www.twitter.com/securityweekly

Richard Seiersen, President of M-Cubed - Business Security Weekly #108
Richard Seiersen a CISO with experience ranging from small technology companies to multi-national conglomerates. He joins Matt and Paul this week to talk about Richard's CISO experience and expertise, and the book Richard co-authored called, "How to Measure Anything in Cybersecurity Risk". Full Show Notes: https://wiki.securityweekly.com/BSWEpisode108

Mimecast, Endpoint Security, & Tufin - Enterprise Security Weekly #16
Israeli cybersecurity company Tufin plans NASDAQ IPO, F-Secure boosts endpoint detection and response, Mimecast joins IBM Security app exchange community, and Awake Security debuts Network Traffic Analysis Platform to detect risks! Full Show Notes: https://wiki.securityweekly.com/ES_Episode116 Visit http://securityweekly.com/esw for all the latest episodes!

Rick Fernandez, LogRhythm - Enterprise Security Weekly #16
Rick Fernandez is the Sr. Sales Engineer focused on Sales Integrators at LogRhythm. The discussion is about what Sis want isn't that different from the Enterprise. They discuss automating the hunt, contextualizing and enriching before analysts have to work with the alarm/data, and the ability to scale contextualization and enrichment so it pulls from your entire environment, not just a single source/log/event. Full Show Notes: https://wiki.securityweekly.com/ES_Episode116 Visit http://securityweekly.com/esw for all the latest episodes!

Interviews: Venafi, Irdeto, and HP - Enterprise Security Weekly #16
Our interviews with Jeff Hudson the CEO of Venafi, Dr. Kimberlee A. Brannock and Michael Howard from HP, and Ben Bennett and Mark Hearn from Irdeto. For Full DefCon18 Playlist, go to: https://securityweekly.com/summercamp18 Visit http://securityweekly.com/esw for all the latest episodes!

Goals, Leadership, & Don't Set Limits - Business Security Weekly #107
Jason Alburquerque and Paul discuss six ways you can establish which goals are important, how to diversify your professional network, the impact of perception and bias on leadership, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode107

Michael Pleasant, Open Security - Business Security Weekly #107
Michael Pleasant is the Chief Executive Officer at Open Security. Michael talks about how his transferring from Marine training to a business environment, brought a different perspective/technique to the business. He also talks about his company Open Source and their mission for the client. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode107

Instagram, Kraken, GitMiner - Application Security Weekly #40
Instagram leaks passwords to the public, Clickjacking on Google MyAccount Worth $7,500, James Wickett's thread on Open Source SAST options, an advanced search tool for sensitive information stored in GitHub repos, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40 Follow us on Twitter: https://www.twitter.com/securityweekl

John Kinsella, Layered Insight - Application Security Weekly #40
Previously co-founder and head of product at Layered Insight, John now leads container security engineering at Qualys after it's acquisition of Layered Insight. John talks about Qualys' Container Security that centralized, continuous discovery and tracking for containers and images. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40 Follow us on Twitter: https://www.twitter.com/securityweekly

Spectre, ATMs, and Japan's Minister - Paul's Security Weekly #583
7 new Spectre/Meltdown attacks, Hacking ATM's for free cash is easier than Windows XP, AI can now fake fingerprints fooling ID scanners, and Japan's cybersecurity minister admits he's never used a computer! Full Show Notes: https://wiki.securityweekly.com/Episode583 Follow us on Twitter: https://www.twitter.com/securityweekly

John Moran, DFLabs - Paul's Security Weekly #583
John is a Senior Product Manager at DFLabs, where he performs a wide variety of tasks from product management to content development and partner management. John Moran talks about IncMan SOAR and how DFLabs Automation & Response platform helps automate, orchestrate, and measure CSIRTs and SOCs. To learn more about DFLabs, go to: www.dflabs.com/securityweekly Full Show Notes: https://wiki.securityweekly.com/Episode583 Follow us on Twitter: https://www.twitter.com/securityweekly

Jon Buhagiar, Sybex - Paul's Security Weekly #583
Jon Buhagiar is responsible for Network Operations at Pittsburgh Technical College for the past 19 years. Jon is currently a Network+ Review Course Instructor at Sybex, and he joins us to talk about Network Operations at Sybex. Full Show Notes: https://wiki.securityweekly.com/Episode583 Follow us on Twitter: https://www.twitter.com/securityweekly

Dragos, BlackBerry, & ForeScout - Enterprise Security Weekly #115
AlgoSec delivers Native Cloud Security Management for Azure, HP Reinvents customer experience with Ping Identity, what mid market security budgets will look like in 2019, and we have some acquisition & funding updates from ForeScout, Dragos, Netskope, Duality, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode115 Visit http://securityweekly.com/esw for all the latest episodes!

James Wickett, Signal Sciences - Enterprise Security Weekly #115
James Wickett is the Head of Research at Signal Sciences. James talks about how security is moving to the application space and web applications. WAFs may seem tedious but they are necessary to allow developers to focus on other things. Full Show Notes: https://wiki.securityweekly.com/ES_Episode115 To learn more about Signal Sciences, go to: www.signalsciences.com/psw Visit http://securityweekly.com/esw for all the latest episodes!

Brian Kelly, CyberArk - Application Security Weekly #39
Brian Kelly is Head of Conjur Engineering at CyberArk, where he focuses on creating products that add much-needed security and identity management to the landscape of DevOps tools and cloud systems. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode39 To learn more about Conjur, go to: www.conjur.org/asw Follow us on Twitter: https://www.twitter.com/securityweekly

ColdFusion, Destroying Logs, & Tracing Meme's - Application Security Weekly #39
DJI Drone Vulnerability, Hackers are increasingly destroying logs to hide attacks, Adobe ColdFusion servers under attack from APT group, understanding Open Source Code use in your business, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode39 Follow us on Twitter: https://www.twitter.com/securityweekly

Dario Forte, DFLabs - Business Security Weekly #106
Dario Forte the CEO & Founder of DFLabs, explains his journey to the position he is in now. Dario talks about DFLabs and their platform tools. Dario also explains DFLabs recent press release about Open Integration Framework and what it allows people to do when it comes to the DFLabs platform addressing SOAR. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode106

Leadership Articles - Business Security Weekly #106
In the Article Discussion, Matt and Paul talk the key to better focus and higher productivity, living your life on purpose, why people are willing to do more meaningful work for less money, the fundamentals of leadership, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode106

Eyal Neemany, Javelin Networks - Paul's Security Weekly #582
Former Head of Israeli Air Force CERT & Forensics Team, Senior Security Researcher at Javelin Networks. Eyal will be discussing securing remote administration, remote credentials, explains that Jump Servers aren't as good, and show you have to connect to remote machines using AD. Full Show Notes: https://wiki.securityweekly.com/Episode582 Follow us on Twitter: https://www.twitter.com/securityweekly

Corin Imai, DomainTools - Paul's Security Weekly #582
Corin Imai is Sr. Security Advisor for DomainTools. Corin began her career working on desktop virtualization, networking, and cloud computing technologies before delving into security. This interview, they talk about DNS, phishing tools, and tease what DomainTools has in store for 2019. Full Show Notes: https://wiki.securityweekly.com/Episode582 Follow us on Twitter: https://www.twitter.com/securityweekly

Symantec, Veracode, & Thoma Bravo - Enterprise Security Weekly #114
Symantec boosts security with Javelin Networks, ThreatQuotient integrates Verified Breach Intelligence from Visa, FireMon delivers hybrid cloud security with new visibility and orchestration, StackPath partners with Sectigo, and we have some acquisition & funding updates from Veracode, Shape Security, Thoma Bravo, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode114 Visit http://securityweekly.com/esw for all the latest episodes!

Harry Sverdlove, Edgewise - Enterprise Security Weekly #114
Harry Sverdlove is currently the CTO and Founder at Edgewise. He joins Matt and Paul this week to talk about Zero Trust Segmentation, what Edgewise does, and how it's helping the community in new and effective ways today! Full Show Notes: https://wiki.securityweekly.com/ES_Episode114 Visit http://securityweekly.com/esw for all the latest episodes!

'Stalkerware', DHCPv6 Packets , & Python - Application Security Weekly #38
In the Application Security News, a nasty DHCPv6 packet can Pwn vulnerable Linux Boxes, 'Stalkerware' website let anyone intercept texts of tens of thousands of people, twelve malicious Python libraries found and removed from PyPI, the U.S. Department of Defense Guide for "Detecting Agile BS", and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode38 Follow us on Twitter: https://www.twitter.com/securityweekly

Leadership Articles - Business Security Weekly #105
In the Leadership Articles, Matt and Paul talk how getting fired can be good for your career, a powerful planning routine that puts you in control, how to get better with sales execution, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode105

Daniel Cuthbert, Banco Santander - Application Security Weekly #38
Daniel Cuthbert is the Global Head of Security Research for Banco Santander. He joins Keith and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode38 Follow us on Twitter: https://www.twitter.com/securityweekly