Security Weekly Podcast Network (Video)

In the news, what will GDPR's impact be on U.S. consumer privacy, DOJ Sinkholes VPNfilter control servers found in U.S., the most important characteristics of a successful DevOps engineer, FBI seizes domain Russia allegedly used to infect 500,000 consumer routers, Florida man tasered after walking naked through neighborhood carrying cooking oil, and more on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode561 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Sven Morgenroth is a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He likes to exploit vulnerabilities in creative ways and has hacked his smart TV without even leaving his bed. Sven writes about web application security and documents his research on the Netsparker blog. Why it's dangerous to put sensitive information to your javascript files. Way developers hide secret variables. Full Show Notes: https://wiki.securityweekly.com/Episode561 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Steven M. Bellovin is the Percy K. and Vidal L. W. Hudson Professor of Computer Science at Columbia University, member of the Cybersecurity and Privacy Center of the university's Data Science Institute, and an affiliate faculty member at Columbia Law School. He does research on security and privacy and on related public policy issues. Steven joins Paul and the crew this week for an interview! Full Show Notes: https://wiki.securityweekly.com/Episode561 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In the news,Blueliv boosts its cyber-threat intelligence platform, Skybox partners with Exclusive Networks, Global Scheduling and Automation Software Market 2018 IBM, BMC Software, CA Technologies, VMware Cherry Grrl, McAfee developing security solutions for digital wallets, and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode92 Visit http://securityweekly.com/esw for all the latest episodes!

John gives a Technical Segment this week entitled "Building A Purple Team". He talks about different MITRE Tools. Full Show Notes: https://wiki.securityweekly.com/ES_Episode92 Visit http://securityweekly.com/esw for all the latest episodes!

In the news, the entire Nest ecosystem of smart home devices goes offline, how Alphabet plans to keep hackers away from this year's election, the Node.js Ecosystem is chaotic and insecure, open-source vulnerabilities plague enterprise codebase systems, & more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode1 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In Tracking Security Innovation, Capital One acquired Confyrm, TransUnion acquired Iovation, Auth0 raised $55M Series D, Tanium raised $175M in equity, Cisco forming New Venture Fund, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode86 Visit http://securityweekly.com/category/ssw for all the latest episodes!

Terry Mason is the Head of Information Risk & Technology Governance at a global multi-strategy hedge fund with 15+ years of experience in information security, technology governance, technology infrastructure, and project management. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode86 Visit http://securityweekly.com/category/ssw for all the latest episodes!

James is the creator and founder of the Lonestar Application Security Conference which is the largest annual security conference in Austin, TX. He also runs DevOps Days Austin and is on the global DevOps Days board. He also holds several security certifications including CISSP and GWAPT. He joins Keith and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode1 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Google Project Zero call Windows 10 Edge Defense ACG flawed, Wapiti Web Application vulnerability scanner 3.0.1 packet storm, CIA's "Vault 7" Mega-Leak, and Trump eliminates national cyber-coordinator! Full Show Notes: https://wiki.securityweekly.com/Episode560 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Corey Thuen is a founder of Gravwell and has spent over a decade in ICS (OT), IT, and IoT security. Kristopher Watts is a founder of Gravwell and has spent over a decade in large scale Emulytics, virtualization, ICS, and embedded security. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode86 Visit http://securityweekly.com/category/ssw for all the latest episodes!

Sometimes you just need a router handy when traveling. This allows you to connect multiple devices, use a VPN for all of them, and allow you to connect to a network via Wifi, Ethernet or USB 4G modem/Tether. All this for just $32 and a little configuration time! Learn how in this technical segment. Full Show Notes: https://wiki.securityweekly.com/Episode560 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

This week we interview Matthew Silva, an Undergraduate student attending Roger Williams University, and is the President and Founder of the Cybersecurity and Intel Club! Full Show Notes: https://wiki.securityweekly.com/Episode560 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

ServiceNow introduces virtual agent, Red Hat to integrate CoreOS with OpenShift, Thycotic announces IBM Security, and Gurucul Fraud Analytics Solution monitors users. Full Show Notes: https://wiki.securityweekly.com/ES_Episode91 Visit http://securityweekly.com/esw for all the latest episodes!

Paul is joined by his good friend Ron Gula to talk about attack simulation and threat detection SIM. Full Show Notes: https://wiki.securityweekly.com/ES_Episode91 Visit http://securityweekly.com/esw for all the latest episodes!

Adam Gordon comes on the show to talk about DevOps, SecOps, and DevSecOps. He explains how DevOps, as a solution, is the framework for defining software, the nature of automation, and the nature of configuration management today. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode16 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In the Article Discussion on Leadership, Communication, and Innovation, "Why People Really Quit Their Jobs", "How To Motivate Greater Ambition In Teams", "Why You Need an Untouchable Day Every Week", and more on this episode on Business Security Weekly Full Show Notes: https://wiki.securityweekly.com/BSWEpisode85 Visit http://securityweekly.com/category/ssw for all the latest episodes!

In Tracking Security Innovation, PhishLabs-BrandProtect merger, Avast cuts proposed IPO range, SafeBreach raised $15M Series B, Red Canary raised $6.3M in Equity, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode85 Visit http://securityweekly.com/category/ssw for all the latest episodes!

A remote code execution vulnerability is discovered in Electron, the Azure CTO reveals details about Azure confidential computing, and part 1 of 3 on the ways of DevSecOps. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode16 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Michael Santarcangelo joins Paul Asadoorian at Source Boston 2018 for an Enterprise Security Weekly interview. Michael Santarcangelo is the Founder of Security Catalyst, author of "Into the Breach", and creator of the Straight Talk Framework. Visit http://securityweekly.com/esw for all the latest episodes!

George Finney, is the Chief Security Officer for Southern Methodist University and is the author of No More Magic Wands: Transformative Cybersecurity Change for Everyone. He has also taught in the SMU School of Engineering on the subject of Corporate Cybersecurity and Information Assurance. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode85 Visit http://securityweekly.com/category/ssw for all the latest episodes!

Apollo Clark, a well-known name on the Security Weekly network, joins us at Source Boston to discuss his talk on Malicious User Stories. Visit http://securityweekly.com/esw for all the latest episodes!

"Microsoft Patches Two Zero-Day Flaws Under Active Attack", "5 Powerful Botnets Found Exploiting Unpatched GPON Router Flaws", "Mirai DDoS attack against KrebsOnSecurity cost device owners $300,000", and "The final compliance countdown: Are you ready for GDPR?" Full Show Notes: https://wiki.securityweekly.com/Episode559 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Thomas Fischer joins us at Source Boston 2018. Thomas Fischer tells Paul about his talk at Source Boston on "GDPR: Why it Matters Now!". Visit http://securityweekly.com/esw for all the latest episodes!

Paul delivers the Technical Segment this week entitled "Docker Security Incident: Lessons Learned"! Full Show Notes: https://wiki.securityweekly.com/Episode559 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Joe Gray is a native of East Tennessee. He joined the U.S. Navy directly out of High School and served for 7 years as a Submarine Navigation Electronics Technician. He joins Paul and the crew this week for an interview! Full Show Notes: https://wiki.securityweekly.com/Episode559 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Keith and Paul talk more about building your own AppSec program. They discuss working with developers as part of building your appsec program, and giving developers the tools to be able to move fast and break things. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode15 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

The work required to have an opinion, why email is so stressful, even though it's not actually that time-consuming, how great leaders simplify decision-making, and more on this episode on Business Security Weekly! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode84 Visit http://securityweekly.com/category/ssw for all the latest episodes!

In the news, A Boeing 757 was hacked remotely while it sat on the runway, Twitter says all 336 million users should change their passwords, Meltdown patches return kernel page table directory to user space, somebody tried to hide a backdoor in a popular JavaScript npm Package, & more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode15 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In tracking security innovation, PE's US cybersecurity push resumes in 2018 after last year's lull, Carbon Black IPO Success, Trusted Key raised $3M in "Seed", Namogoo raised $15M Series B, IronNet Cybersecurity raised $78M Series B, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode84 Visit http://securityweekly.com/category/ssw for all the latest episodes!

Ms. Wharton is a policy and transaction attorney specializing in the development and scale of drone, smart city, autonomous vehicle, and other emerging technologies. She serves as a Senior Assistant City Attorney advising a major international airport and large metropolitan city on technology-related projects and public policy matters. She joins Michael and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode84 Visit http://securityweekly.com/category/ssw for all the latest episodes!

Firms running Cisco WebEx are told to update their software, Medical devices vulnerable to KRACK Wi-Fi attacks, Kitty Cryptomining Malware Cashes in on Drupalgeddon 2.0, Facebook fires engineer accused of stalking women, and more on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode558 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Leonard Rose, Principal Security Architect at Limelight Networks, joins Paul and the crew this week for an interview! Full Show Notes: https://wiki.securityweekly.com/Episode558 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Jeff Man joins Paul to talk about different vendors at the RSA Conference from this year, (recapping his experiences out at RSA 2 weeks ago, putting it in the enterprise podcast, what was exciting and new or lack thereof, some of the challenges our industry, and the recap of the behemoth of a conference that RSA is) and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode89 Visit http://securityweekly.com/esw for all the latest episodes!

Holding 160 certifications and counting, Adam's encyclopedia of knowledge is only rivaled by his massive, and quite ridiculous collection of socks. Adam's 30+ years as an IT instructor in the private and public sectors are fueled by his passion for gobbling down espresso like a college kid and drinking beers at Oktoberfest. Full Show Notes: https://wiki.securityweekly.com/ES_Episode89 Visit http://securityweekly.com/esw for all the latest episodes!

Cisco sets a new standard for production grade Kubernetes, LogRhythm & Mimecast fuse email security & next-gen SIEM, ServiceNow snaps up VendorHawk to help its customers manage their SaaS spending, Juniper enhances cybersecurity platform, and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode89 Visit http://securityweekly.com/esw for all the latest episodes!

Carbon Black looking for $1B valuation in IPO, Avast looking for $4.5B valuation in IPO, Scality, Minim raised $2.5M in Seed Funding, a Cybersecurity Pledge, and more on this episode on Business Security Weekly! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode83 Visit http://securityweekly.com/category/ssw for all the latest episodes!

In the news, Drupal 7 and 8 core critical releases, Irony of Leaky App at #RSAC Not Lost on Attendees, US FDA seeking Congressional Authority for new requirements, Facebook fuels broad privacy debate by tracking non-users, & more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode13 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In the news, SEC fines Yahoo $35 million for not reporting cyber breach, hackers found using a new code injection technique to evade detection, Microsoft dismantles it's Windows Development Group, & more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode14 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Keith and Paul talk about building your application security program! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode14 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Michael and Paul give you a programming update and discussion on the value prop scorecard, a Monthly Book Club Segment, regular segments on improving performance, regular audience-driven segments, and more on this episode of Business Security Weekly! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode83 Visit http://securityweekly.com/category/ssw for all the latest episodes!

Rami Sass is CEO and Co-Founder of WhiteSource. Rami is an experienced entrepreneur and executive with vast experience in defining innovative products, leading technology groups and growing companies from seed level to business maturity. He joins Keith and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode13 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In the news, Western Digital My Cloud EX2 NAS device leaks files, Equifax has spent $242.7 million on its data breach so far, New Skill let Amazon Alexa Spy on Users, Hackers find devious way to break into hotel rooms, new tool detects evil maid attacks on Mac laptops, and more on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode557 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Tim joined as CEO of DomainTools in 2009 and has spent 9 years leading the transformation of the company from an advertising based consumer service to a profitable and growing Enterprise SaaS security firm with over 500 global customers. He joins Michael and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode83 Visit http://securityweekly.com/category/ssw for all the latest episodes!

This week in the Topic Segment, our very own Jeff Man gives us a recap on the 2018 RSA Conference! He discusses HackerOne CEO talking Bug Bounty programs, DevSecOps day at RSA demonstrates how the thinking around secure software has evolved, if it's time to kill the Pen Test, and more! Full Show Notes: https://wiki.securityweekly.com/Episode557 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

Ferruh Mavituna is the Founder and Product Manager of Netsparker. He developed the first and only proof-based web security scanner with state-of-the-art, accurate vulnerability detection and exploitation features, used by thousands companies around the world today. He joins Paul and the crew this week for an interview! Full Show Notes: https://wiki.securityweekly.com/Episode557 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly

In the news, RSA Spotlight: VMware and Sophos discuss latest innovations, Fortinet receives recommended rating in NSS Labs latest advanced endpoint protection test report, Twitter bans Kaspersky Lab from advertising on its platform, SANS Experts share five most dangerous new attack techniques, and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode88 Visit http://securityweekly.com/esw for all the latest episodes!

Eyal is the Former Head of Israeli Air Force CERT & Forensics Team & currently the Senior Security Researcher at Javelin Networks. Eyal will describe and explain how AD Domain Trusts and Forest Trusts works, and how they can leverage by attackers to hop from one domain to another, after the compromise of the first domain. Full Show Notes: https://wiki.securityweekly.com/ES_Episode88 Visit http://securityweekly.com/esw for all the latest episodes!

Cyber and Information Security Expert with 13+ years of experience. After 7 years in different cyber units at the Israeli Defense Forces (IDF), Eddy was self-employed, senior consultant for the defense and finance industries, leading country level cyber security projects. Lenny Zeltser is a seasoned business and tech leader with extensive information security expertise. He builds innovative endpoint defense solutions as VP of Products at Minerva Labs. Lenny and Eddy join John and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/ES_Episode88 Visit http://securityweekly.com/esw for all the latest episodes!

Serial Cyber Security Entrepreneur, Ron Gula Founded Tenable Network Security and Network Security Wizards. Ron has 15+ years experience as CEO in cyber security industry. He joins Michael and Paul this week for an interview! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode82 Visit http://securityweekly.com/category/ssw for all the latest episodes!