
Security Weekly Podcast Network (Video)
4,876 episodes — Page 72 of 98

Alex Wood, CISO - Business Security Weekly #105
Matt Alderman's good friend Alex Wood comes on the show to talk about the business mind set, how to be an effective CISO, and the vulnerabilities in the business that you have to watch out for. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode105

Apache, Dirty Cow, & Edge - Paul's Security Weekly #582
Cisco accidentally released Dirty Cow exploit code, Apache Struts Vulnerabilities, Zero Day exploit published for VM Escape flaw, Spam spewing IoT botnet infects 100,000 routers, and some of these vibrating apps turn your phone into a sex toy! Full Show Notes: https://wiki.securityweekly.com/Episode582 Follow us on Twitter: https://www.twitter.com/securityweekly

AWS Lambda, Bleedingbit, and Cisco - Paul's Security Weekly #581
AWS Security Best Practices, Masscan and massive address lists, Bleedingbit vulnerabilities, and Cisco Zero-Day exploited in the wild, ! All that and more, on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode581 →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

Matt Toussain, BHIS - Paul's Security Weekly #581
Matt Toussain a Security Analyst at Black Hills Information Security, will be giving a tech segment on remote access tools (RAS). To learn more about BHIS, go to: https://www.blackhillsinfosec.com/PSW Full Show Notes: https://wiki.securityweekly.com/Episode581 →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

Aleksei Tiurin, Acunetix - Paul's Security Weekly #581
Aleksei Tiurin is the Senior Security Researcher for Acunetix. Aleksei is giving a technical segment on insecure deserialization in Java/JVM and explains what polymorphism is. Aleksei Tiurin is a security researcher and pentester with over 8 years of experience in penetration testing and with a particular focus on ERP and banking systems and Windows-networks. To learn more about Acunetix, go to: https://www.acunetix.com/securityweekly Full Show Notes: https://wiki.securityweekly.com/Episode581 →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

LogRhythm, SOAR, and A Huge Acquisition - Enterprise Security Weekly #113
LogRhythm advances NextGen SIEM security platform with SOAR, Ping Identity launches a Quickstart private sandbox, McAfee takes a big step in the cloud, Endgame improves Endpoint Security with Total Attack Lookback, and we have some acquisition updates from IBM, Red Hat, Neustar, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode102 Visit http://securityweekly.com/esw for all the latest episodes!

Ian McShane, Endgame - Enterprise Security Weekly #113
Ian McShane has nearly two decades of experience in operational IT and security and risk planning for enterprises, service providers and software vendors. Paul, Matt, and Ian talk about the future of the enterprise and Endgame's enterprise tools! Full Show Notes: https://wiki.securityweekly.com/ES_Episode113 Visit http://securityweekly.com/esw for all the latest episodes!

Airline Hacks, MicroTik Bug, & WordPress - Application Security Weekly #37
Millions of passengers affected by Cathay Pacific Airline Hack, China has been hijacking the internet backbone of Western countries, how proficient are developers at fixing Application Security flaws, WordPress team working to wipe-out older versions from existence on the Internet, MicroTik Router Bug is as bad as it gets, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode37 Follow us on Twitter: https://www.twitter.com/securityweekly

Johnny Xmas, Kasada.io - Application Security Weekly #37
Keith, Paul, and Johnny Xmas discuss airport security, penetration testing, the top 5 payment apps, and DevOps infused conversation! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode37 Follow us on Twitter: https://www.twitter.com/securityweekly

AI Fear, FDA, Tesla, and D-Link - Paul's Security Weekly #580
Fear of AI attacks, the FDA releases cybersecurity guidance, watch hackers steal a Tesla, serious D-Link router security flaw may never be patched, and California addresses default passwords! All that and more, on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode580 Follow us on Twitter: https://www.twitter.com/securityweekly

Yossi Sassi, Javelin Networks - Paul's Security Weekly #580
Yossi Sassi is the Co-Founder and Cybersecurity Researcher at CyberArtSecurity.com. Yossi joins us for a tech segment to talk about using windows powershell, discussing DCSync, DCShadow, creative Event Log manipulation & thoughts about persistence. To learn more about Javelin Networks, Go To: www.javelin-networks.com Full Show Notes: https://wiki.securityweekly.com/Episode580 Follow us on Twitter: https://www.twitter.com/securityweekly

Veronica Schmitt, DFIRLABS - Paul's Security Weekly #580
Veronica Schmitt is the Sr. Digital Forensic Scientist for DFIRLABS. Veronica explains what SRUM is in WIndows 10. She explains how SRUM can be a valuable tool in Digital Forensics. Full Show Notes: https://wiki.securityweekly.com/Episode580 Follow us on Twitter: https://www.twitter.com/securityweekly

Security Solutions, Acquisitions, and IPOs - Enterprise Security Weekly #112
Netscout takes internet scale Threat Protection to the EDGE, Splunk addresses several vulnerabilities in Enterprise and Light products, Ping Identity launches a Quickstart Private Sandbox, and we have some acquisition updates from CheckPoint acquiring Dome9, CrowdStrike, Fortinet, Rapid7, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode112 Visit http://securityweekly.com/esw for all the latest episodes!

Jonathan Sander, Snowflake - Enterprise Security Weekly #112
Jonathan Sander explains how he came to work for Snowflake and what Snowflake does in the enterprise security space. Jonathan explains how Snowflake contains their data and protect from breaches as well as keeping the data safe. Full Show Notes: https://wiki.securityweekly.com/ES_Episode112 Visit http://securityweekly.com/esw for all the latest episodes!

Cryptocurrency, Disney, and Adobe - Application Security Weekly #36
Hackers hide Cryptocurrency malware in Adobe flash updates, the government is finally rolling out 2 Factor Authentication for Federal Agency Domains, and Disney is helping women from across their company to become Developers! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode36 Follow us on Twitter: https://www.twitter.com/securityweekly

Bugs, Breaches, and More! - Application Security Weekly #36
Paul and April Wright discuss a jQuery Plugin that has been exploited for years is finally getting patched, a flaw in LibSSH leaves thousands of servers at risk, and a remote code implantation flaw found in Medtronic Cardiac Programmers. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode36 Follow us on Twitter: https://www.twitter.com/securityweekly

Leadership, Communication, and Innovation - Business Security Weekly #103
In the Article Discussion, Michael and Paul talk about the root cause of workplace drama, how to make the most of meetings between IT and your business partners, how to stop procrastinating on your goals by using the "Seinfeld Strategy", and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode103

Michael McKee, ObserveIT - Business Security Weekly #103
Mike McKee, CEO of ObserveIT, joins us to talk about the importance of focussing on people, and you do that to experience growth. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode103 To Learn More About ObserveIT, Go To: www.observeit.com/securityweekly

Shodan, Apache, ICS, and Controllers - Paul's Security Weekly #579
How to use the Shodan search engine to secure an enterprise's internet presence, Apache access vulnerability could affect thousands of applications, vulnerable controllers could allow attackers to manipulate marine diesel engines, & ICS Security Plagued with Basic, and avoidable mistakes! Full Show Notes: https://wiki.securityweekly.com/Episode579 Follow us on Twitter: https://www.twitter.com/securityweekly

John Walsh, CyberArk - Paul's Security Weekly #579
John Walsh the DevOps Evangelist for CyberArk joins us on the show. John talks about the articles he wrote for CyberArk about Kubernetes, DevSecOps, and how to strengthen your container authentication with CyberArk. Sponsor Landing Page: https://www.conjur.org/asw Full Show Notes: https://wiki.securityweekly.com/Episode579 Follow us on Twitter: https://www.twitter.com/securityweekly

Mark Dufresne, Endgame - Paul's Security Weekly #579
Mark Dufresne explains why MITRE created their tool and what the MITRE attack framework is. Full Show Notes: https://wiki.securityweekly.com/Episode579 Follow us on Twitter: https://www.twitter.com/securityweekly

BlackBerry, Imperva, & CyberArk - Enterprise Security Weekly #111
In the Enterprise Security News, Avast launches AI-based software for phishing attacks, Carbon Black and Secureworks apply Red Cloak Analytics to Carbon Blacks Cloud, ShieldX integrates intention engine into Elastic Security Platform, and we have updates from Imperva, WhiteSource, BlackBerry, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode111 Visit https://www.securityweekly.com/esw for all the latest episodes!

Briefings Summary - Enterprise Security Weekly #111
In a special segment for this week, John Strand and Paul discuss some companies that Paul had a chance to sit down for briefings with! They discuss GuardiCore and their Application Segmentation, Cyxtera and their Network Security and Software Defined Perimeters, PreVeil's Encrypted Email and File Sharing, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode111 Visit https://www.securityweekly.com/esw for all the latest episodes!

Garrett Gross, Rapid7 - Application Security Weekly #35
Garrett Gross received his first modem at age six and has been plugged in ever since. Today, Garrett is a Senior Solutions Engineer with a specialization in application security at Rapid7. He serves as an escalation layer to the applied engineering department, provides technical enablement, and facilitates cross-departmental functionality. Garrett joins Keith and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode35 Visit https://www.securityweekly.com/asw for all the latest episodes! www.rapid7.com/securityweekly Follow us on Twitter: https://www.twitter.com/securityweekly

Git Project, Google+, & Facebook - Application Security Weekly #35
In the Application Security News, Git Project patches Remote Code Execution Vulnerability, Google is Shutting Down Google+ after 500k accounts potentially affected by a data breach, Facebook wants people to Invite its cameras into their homes, GitHub introduces user blocking notifications, DevOps producing more insecure apps than ever, Climate Change being taught on Fortnite Twitch stream, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode35 Visit https://www.securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly

Article Discussion - Business Security Weekly #102
This week, Michael and Paul talk about the Article Discussion on Leadership, Communication, and Innovation! They discuss how to automate habits and never think about them again, why it's important to explain to employees that organizational changes are coming, how journaling can boost your leadership skills, why you need to tell them why, and more on this episode of Business Security Weekly! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode102

DerbyCon, Russians, and Next Story - Paul's Security Weekly #578
New Apple and Microsoft security flaws at Black Hat Europe, CCTV makers leaves at least 9 million cameras public, upset Google+ users are sueing Google, US weapons systems apparently can be easily hacked, not all multifactor authentication is created equal, and Kanye's '000000' password makes iPhone security great again! Full Show Notes: https://wiki.securityweekly.com/Episode578 Follow us on Twitter: https://www.twitter.com/securityweekly

Lee Neely, Lawrence Livermore National Lab - Paul's Security Weekly #578
Lee Neely is a senior IT and security professional at LLNL with over 25 years of extensive experience with a wide variety of technology and applications from point implementations to enterprise solutions. Full Show Notes: https://wiki.securityweekly.com/Episode578 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Omer Yair, Javelin - Paul's Security Weekly #578
Omer is End-Point team lead at Javelin Networks. The team focuses on methods to covertly manipulate OS internals. Before Javelin Networks, he was a malware researcher at IBM Trusteer for two years focusing on financial malware families and lectured about his research on Virus Bulletin and Zero Nights conferences. Full Show Notes: https://wiki.securityweekly.com/Episode578 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Mark Russinovich, Microsoft Azure - Enterprise Security Weekly #110
Doug White interviews Mark Russinovich at Microsoft Ignite. Doug and Mark talk about Azure Confidential Computing, Mark's book Zero Day, and Azure security. Full Show Notes: https://wiki.securityweekly.com/ES_Episode110 Visit http://securityweekly.com/esw for all the latest episodes!

Splunk, White Hat, and Palo Alto - Enterprise Security Weekly #110
Splunk unveils first IoT platform for customers, Palo Alto Networks acquires RedLock to build out Cloud Security Tech, KnowBe4 boosts security awareness training with Virtual Risk Officer, Symantec brings workload assurance security to the Cloud, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode110 Visit http://securityweekly.com/esw for all the latest episodes!

Mimecast, LogRhythm, & Tanium - Enterprise Security Weekly #109
Mimecast offers free training kit as part of Cybersecurity Awareness Month, Microsoft will finally kill off the old Skype client (for real this time), Security startup Tanium raises another $200 million at a $6.5 billion valuation, LogRhythm receives patent for data monitoring tech, Tufin launches first of its kind program for MSSPs, three reasons why BlackBerry stock is potentially about to soar, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode109 Visit http://securityweekly.com/esw for all the latest episodes!

Michael Gordover, ObserveIT - Enterprise Security Weekly #109
Mike Gordover is a Pre-Sales manager and solutions architect at ObserveIT. He has been at ObserveIT consulting on insider threat management for 5 years, working hands on with over 300 deployments, and working with researchers and analysts on strategies to mitigate internal risk. Paul and John talk with Michael about the current perception in the market of DLP, how ObserveIT's solutions differ from traditional DLP, what challenges he faces when combating insider threats, and much more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode109 ObserveIT Landing Page: www.observeit.com/securityweekly Visit http://securityweekly.com/esw for all the latest episodes!

Bugs, Breaches, and More - Application Security Weekly #34
Facebook discloses the loss of at least 50M Access Tokens also covered by Motherboard Formjacking is on the rise, Google admits to allowing hundreds of companies read your email, FireFox Monitor will alert you when your accounts have been Pwned, Microsoft releases MS-DOS v1.25 and v2.0 as Open Source, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode34 Follow us on Twitter: https://www.twitter.com/securityweekly

Landing a Job in Application Security - Application Security Weekly #34
Attend local meetups and conferences, practice your coding skills, get educated by World Class security researchers, do your homework, there's no substitute for Practice, OWASP Juice Shop, and much more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode34 Follow us on Twitter: https://www.twitter.com/securityweekly

Leadership, Communication, and Innovation - Business Security Weekly #101
Michael, Paul, and Jason discuss how to develop empathy for someone who annoys you, separating the quality of the outcome and quality of the decision, and much more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode101

Jason Albuquerque, Carousel Industries - Business Security Weekly #101
Michael and Paul ask Jason how to become a better business. Jason explains how to run your security team as in a 'fish bowl', and how to apply this technique to your clients and their business. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode101

Business Tips and Tricks - Business Security Weekly #104
Michael and Paul discuss the tools that have helped them in their business. They talk about the books they've read, the interviews that helped them the most, and the journey from Startup Security Weekly to Business Security Weekly!

Linux Bugs, macOS Zero-Day, & Twitter Exposed - Paul's Security Weekly #577
In the security news, Russian Hackers use Malware that can survive OS reinstalls, Facebook's 2-Factor authentication With a phone number isn't only for security, it's used for ads ,FBI warns companies about hackers increasingly abusing RDP connections, NSA employee who brought hacking tools home sentenced to 66 months in prison, new Linux Kernel Bug affects Red Hat, CentOS, and Debian Distributions, and Baddies just need one email account with clout to unleash phishing hell, and more! Full Show Notes: https://wiki.securityweekly.com/Episode577 Visit https://www.securityweekly.com/psw for all the latest episodes!

Offensive Operating Against SysMon, Carlos Perez - Paul's Security Weekly #577
Carlos Perez delivers the Technical Segment on How to Operate Offensively Against Sysmon. He talks about how SysMon allows him to create rules, and track specific types of tradecraft, around process creation and process termination. He dives into network connection, driver loading, image loading, creation of remote threats, and more! Full Show Notes: https://wiki.securityweekly.com/Episode577 Visit https://www.securityweekly.com/psw for all the latest episodes!

Mike Nichols, Keith McCammon, & Shawn Smith - Paul's Security Weekly #577
Mike Nichols is the VP of Product Management at Endgame, and he manages the Endgame endpoint protection platform. Keith McCammon is the Chief Security Officer and Co-Founder of Red Canary, and he runs Red Canary's Security Operation Center. Shawn Smith is the IT Security Manager at Panhandle Educators Federal Credit Union. They discuss the problems Shawn had that led him to choose Red Canary and Endgame as his solution, skill shortages in vendors, what he did to convince his management to approve of this solution, and what his process for testing the effectiveness of these solutions was. Full Show Notes: https://wiki.securityweekly.com/Episode577 Visit https://www.securityweekly.com/psw for all the latest episodes!

BeyondTrust, Rapid7, & Symantec - Enterprise Security Weekly #108
In the Enterprise News this week, Bomgar to be renamed BeyondTrust after acquisition from PAM vendor, Rapid7 looks to SOAR with InsightConnect Automation Platform, DigiCert, Gemalto, and ISARA Partner on Quantum-Safe Encryption, Symantec extends Data Loss Prevention Platform with DRM, ExtraHop announces the availability of Reveal(x) for Microsoft Azure, Attivo brings cyber security deception to containers and serverless, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode108 Visit https://www.securityweekly.com/esw for all the latest episodes! Visit http://securityweekly.com/esw for all the latest episodes!

Threat & Vulnerability Management - Enterprise Security Weekly #108
Paul and Matt sit down this week to discuss Threat and Vulnerability Management, the value it has, and the different players that deal with it in the Enterprise. They delve into Cloud and Application Security's impact on vendors, and who they need to look at for potential integrations or acquisitions. Full Show Notes: https://wiki.securityweekly.com/ES_Episode108 Visit https://www.securityweekly.com/esw for all the latest episodes! Visit http://securityweekly.com/esw for all the latest episodes!

Newegg, Ticketmaster, & iOS 12 - Application Security Weekly #33
In the Application Security News, Hackers stole customer credit cards in Newegg data breach, John Hancock now requires monitoring bracelets to buy insurance, the man who broke Ticketmaster, new security settings available in iOS 12, State Department confirms data breach exposed employee data, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode33 Visit https://www.securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly

Ron Gula, Gula Tech Adventures - Application Security Weekly #33
Ron started his cybersecurity career as a network penetration tester for the NSA, and is the Founder of Tenable and Gula Tech Adventures. He joins Keith and April for an interview to talk about security in the upcoming elections, how to maintain separation of duties, attack simulation, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode33 Follow us on Twitter: https://www.twitter.com/securityweekly

Scott King, Rapid7 Pt. 2 - Business Security Weekly #100
In the second part of Scott's interview, Michael and April talk with him about ICS security, communication, and building relationships! They discuss the best practices to understand how these systems work, holding accountability, common goals, and how legal and security share common goals! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode100

Scott King, Rapid7 Pt. 1 - Business Security Weekly #100
Scott brings a unique mixture of hands-on experience in incident response, penetration testing, forensics, operations, architecture, engineering, and executive leadership as a former Chief Information Security Officer (CISO) to the Rapid7 Advisory team. He talks about his role at Rapid7, why he joined the company, how to integrate security better into an organization, and what he recommends to people who need to break the ice and get their first meeting started! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode100

GovPayNow.com, AmazonBasics, and FBI - Paul's Security Weekly #576
Senate can't protect senators staff from Cyber Attacks, Equifax fined by ICO over data breach that hit Britons, US Military given the power to hack back and defend forward,and AmazonBasics Microwave works with Alexa! Full Show Notes: https://wiki.securityweekly.com/Episode576 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Threat Hunting in the Cloud, Apollo Clark - Paul's Security Weekly #576
Apollo Clark goes through inventory management, access management, config management, patch management, automated remediation, logging and monitoring, and deployment tools. Full Show Notes: https://wiki.securityweekly.com/Episode576 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Mike Ahmadi, DigiCert - Paul's Security Weekly #576
Mike Ahmadi oversees IoT security solutions and technical implementations for DigiCert customers across various verticals that include industrial, transportation, smart city, consumer devices and healthcare. Full Show Notes: https://wiki.securityweekly.com/Episode576 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly