Security Weekly Podcast Network (Video)

Security Weekly brings back Ferruh Mavituna to discuss SLDC and writing vulnerable command injection in PHP. For a full list of topics discussed, visit our wiki: http://wiki.securityweekly.com/wiki/index.php/Episode442#Guest_Interview:_Ferruh_Mavituna_-_6:05PM-6:45PM Security Weekly Web Site: http://securityweekly.com Hack Naked Gear: http://shop.securityweekly.com Follow us on Twitter: @securityweekly

Welcome to another episode of Hack Naked TV recorded November 19th 2015. Today Aaron talks about encrypted communications in the Paris terrorist attacks, Google security news, Comcast password resets, and the Wells Fargo Cybersecurity Survey.

Security news this week features the unmasking of TOR users, an alarm clock that slaps you around and more. For a full list of stories, visit our wiki: http://wiki.securityweekly.com/wiki/index.php/Episode441#Stories_of_the_Week_-_7:00PM-8:00PMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week, we interview Miron Livny and Barton Miller of SWAMP. SWAMP simultaneously alleviates the costs, maintenance and licensing burdens of tools, while also eliminating the need to learn numerous tool interfaces. You can read more about SWAMP here: https://continuousassurance.org/

This week, Paul and the crew discusses the million dollar bug bounty for iPhones and why it may be legal to hack your car. For a full list of stories talked about during the show, visit our wiki: http://wiki.securityweekly.com/wiki/index.php/Episode440#Stories_of_the_Week_-_7:00PM-8:00PMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today Beau talks about vBulletin RCE, PageFair serving malware, and a million dollar bug bounty for iOS 9. For a full list of stories visit http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_TV_November_9_2015#Beau.27s_Stories.For a directory of all Hack Naked TV shows visit http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_Show_Notes.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow Security Weekly on Twitter: @securityweeklyFollow Beau on Twitter: @dafthack

This week in the news we learn about how chip and pin was hacked in France and are you fooled by fake online reviews? For a full list of stories including links, visit the wiki http://wiki.securityweekly.com/wiki/index.php/Episode439#Stories_of_the_Week_-_7:00PM-8:00PM.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week, Paul and Mike discuss the current state of threat intelligence. In this segment, Paul and Mike dive deep in using threat intelligence properly.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today Beau talks about MITM NTP, chip and pin vulnerabilities. and encrypting all the things by default. For a full list of stories discussed today, visit our wiki: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_TV_October_23_2015Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today Aaron talks about the E-Trade breach, China still hacking the US, CyberInsurance, and More.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Hacker Jeopardy includes popular topics such as famous hackers and decimal to binary conversions. Test your knowledge now!Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Peiter C. Zatko, better known as Mudge, is a network security expert, open source programmer, writer, and a hacker. Peiter talks about his start in information security, rather him starting information security. Peiter talks about his early involvment in BGP and how to take down the internet.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

We interview Ron Gula, one of the first interviews conducted on Security Weekly. Ron is a leading cybersecurity thinker, innovator, and visionary in the information security industry.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

We bring back Samy Kamkar "Samy's My Hero," and bring on special guests Casey Ellis from BugCrowd and Katie Moussouris from HackerOne. We talk about the tough ethical questions and the future of bug bounties in 5 years.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

We get Simple Nomad and David Schwartzberg to join us for a panel discussion on Mobile Security and Privacy. David Schwartzberg is a Sr. Security Engineer at MobileIron and Simple has been doing hacker and security-related things for over 30 years, wearing black, white, and gray hats at various points. Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

L0pht Heavy Industries was a hacker collective active between 1992 and 2000 and located in the Boston, Massachusetts area. We learn about the history of the L0pht and the future.Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today Aaron talks about breaches of LoopPay, Uber, and Dow-Jones.For a full list of stories, visit our wiki: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_TV_October_13_2015Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

To kick off our ten-year anniversary we interview Mikko Hypponen of F-Secure. We talk about the first virus discovered, reviewing printed viruses, and more. Visit our wiki for list of important links including the one that got him banned from Twitter: http://wiki.securityweekly.com/wiki/index.php/Episode438#Guest_Interview:_Mikko_Hypp.C3.B6nen_10:05_AMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week in security news, we talk about Stagefright 2.0, how to root your very own Google OnHub, breaking SHA-1, and AWS WAF's. For a full list of stories, visit our wiki: http://wiki.securityweekly.com/wiki/index.php/Episode437#Stories_of_the_Week_-_7:00PM-8:00PMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week, we interview Dafydd Stuttard the creator of Burp Suite and the author of the Web Application hacker's Handbook. We talk about the source of the name "Burp" and the future of webapp scanning. Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Brought to you by Black Hills Information Security and Cybrary!This week Aaron talks about the Experian/T-mobile and Scottrade breaches, Safe Harbor and MORE!Visit our wiki for a complete list of articles and links covered in the show: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_TV_October_13_2015Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today in the news, Kevin recaps the T-Mobile breach. Do we now let the fox watch the henhouse? Larry dives into a Nest (TM) of IoT (drink) devices. Paul tries to keep it together with a blog post on MS08-067. For a full list of stories and links, visit the wiki: http://wiki.securityweekly.com/wiki/index.php/Episode436#Stories_of_the_Week_-_7:00PM-8:00PMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today Aaron talks about BitPay, OPM, Volkswagen, and new TrueCrypt Flaws. For a full list of stories, visit the wiki: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_TV_October_1_2015#Aaron.27s_StoriesSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week on Security Weekly, we are joined by none other than Larry Pesce. After his recent DerbyCon talk, Larry gives us some insight on his 600 dollar password cracking machine. Security Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week on Hack Naked TV Beau talks iOS malware, Kaspersky vulnerabilities in their AV engine and more. Links to all stories are below.Android Screen Lock Bypass - http://sites.utexas.edu/iso/2015/09/15/android-5-lockscreen-bypass/iOS malware - https://isc.sans.edu/forums/diary/Detecting+XCodeGhost+Activity/20171/Zerodium Million Dollar Bug Bounty - https://threatpost.com/zerodium-hosts-million-dollar-ios-9-bug-bounty/114736/Kaspersky Vulns - http://googleprojectzero.blogspot.co.uk/2015/09/kaspersky-mo-unpackers-mo-problems.htmlSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Today in the news we discuss an Apple iOS directory traversal vulnerability in AirDrop. Also in Security News is the Facebook 'Dislike' button. Not to be confused with with a downvote, more along the line of sympathy or empathy. Do you ever wish you could remotely detonate resistors? Well now you can (kind of).For a full list of stories, visit our wiki:http://wiki.securityweekly.com/wiki/index.php/Episode435#Stories_of_the_Week_-_7:00PM-8:00PMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

This week interview Josh Pyorre from OpenDNS on honeypots and malware. Josh is a security analyst with OpenDNS. Josh has presented at Defcon, multiple Bsides across the USA and Source Boston.In this interview, we find Josh's secret weapon against attackers and why he goes second in ass-grabby-grabby.For links to Josh's blog and Twitter, visit our wiki:http://wiki.securityweekly.com/wiki/index.php/Episode435#Interview:_Josh_Pyorre_-_6:05PM-6:55PMSecurity Weekly Web Site: http://securityweekly.comHack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Jack goes full-rant on Windows 10 touch screen changes. If you are still using Yahoo! messenger, you should stop. Also, vote for McAfee bumper stickers and t-shirts will likely surface after his announcement to run for the presidency in 2016.Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode434Security Weekly Web Site: http://securityweekly.comBuy Hack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Brought to you by Black Hills Information Security and Cybrary!This week Aaron talks about the Ubiquity email scam, the Excellus BCBS breach, Netflix dumping antivirus, McAfee for President, and more.Hack Naked TV Web Site: http://hacknaked.tvSecurity Weekly Web Site: http://securityweekly.com

In our feature interview SANS instructor Micah Hoffman discusses everything from bug bounty programs to better security for your SaaS. Micah is an active member in the NoVAHackers community, writes Recon-ng modules and enjoys tackling issues with the Python scripting language.Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode434Security Weekly Web Site: http://securityweekly.comBuy Hack Naked Gear: http://shop.securityweekly.comFollow us on Twitter: @securityweekly

Welcome to another episode of Hack Naked TV recorded September 11th 2015. We’ll talk more about the Ashley Madison password dump, responsible disclosure to FireEye, and shiny new Android Ransomware. Also as promised on last week's episode, a quick demo of Powershell Empire.

Brought to you by Black Hills Information Security and Cybrary! This week Aaron talks about the OPM breach, Windows 10 data collection being back-ported, HP no longer sponsoring Pwn2Own, and vulnerabilities in FireEye's products being sold. Hack Naked TV Web Site: http://hacknaked.tv Security Weekly Web Site: http://securityweekly.com

This week Larry and Jack join Paul in studio, Carlos is on via Skype without a shirt and none other than Google-Image-Search-John-Strand joins us...from his car none the less! Jack recently gave a talk at B-Sides Cleveland and was approached by a listener on how exactly you should talk to high-level execs about security, the DBIR and more. Then, well, tangents... Show Notes:http://wiki.securityweekly.com/wiki/index.php/Episode433 Security Weekly Web Site: http://securityweekly.com Hack Naked Gear: http://shop.securityweekly.com Follow us on Twitter: @securityweekly

Jack gets into full rant mode in this segment, where we cover some more news about the epic Ashley Madison breach, Smart fridge that gets hacked, and more! Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode432

This week, we talk about a recent article describing how to crack the passwords resulting from the Ashley Madison breach. Paul's prediction of UPnP being used for evil is in the news, this time the bad guys will turn all of your routers into a botnet, a bigger, better, faster botnet. Show Notes:http://wiki.securityweekly.com/wiki/index.php/Episode433 Security Weekly Web Site: http://securityweekly.com Hack Naked Gear: http://shop.securityweekly.com Follow us on Twitter: @securityweekly

No seriously, Jack was in rare form: Uplifting, sympathetic, offering help, and dare I say trying to be positive! After 45 minutes of this, we just wanted the old Jack back... Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode432 Security Weekly Web Site: http://securityweekly.com

Brought to you by Black Hills Information Security and Cybrary! This week Aaron talks about the Ubiquity email scam, the resignation of the Ashley Madison CEO, the NSA’s bulk collection extension, NSA backdooring encryption and MORE! Show Notes: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_TV_September_1_2015 Hack Naked TV Web Site: http://hacknaked.tv Security Weekly Web Site: http://securityweekly.com

This week on Hack Naked TV, Beau talks about his top 5 favorite pentest and hacking tools as seen at BlackHat/DefCon/B-Sides. tinyurl.com/HNTV-EMPIRE tinyurl.com/HNTV-SSTI tinyurl.com/HNTV-BLEKEY tinyurl.com/HNTV-NETRIPPER tinyurl.com/HNTV-CRACKLORD Also, be on the lookout for Chrome pausing all flash-based ads on September 1, 2015. You can read the full article at tinyurl.com/HNTV-FLASH-KILLER.

This week in the news we discuss Googles new Wifi router and finding staff to work for Uber. http://wiki.securityweekly.com/wiki/index.php/Episode431#Stories_of_the_Week_-_7:00PM-8:00PM

This week, we interview Bigendian Smalls and the Soldier of Fortran on mainframe hacking. Learn about writing exploits for z/OS and nmap modules. For additional information and links talked about in the interview, visit the wiki: http://wiki.securityweekly.com/wiki/index.php/Episode431#Guest_Interview:_Phil_Young_and_Chad_Rikansrud_-_6:05PM-6:55PM

This week in stories we discuss the redacted blog post by Oracle CSO Mary Ann Davidson, hacking cars with a text message, and are you using Android?

Daniel Miessler is Principal Security Architect with HP based out of San Francisco, California. He specializes in application security with specific focus in web and mobile application assessments, helping enterprise customers build effective application security programs, and speaking with executives about how to best leverage technologies and processes to reduce real-world risk.

This week we talk about bind DoS, Ubiquiti, Kali 2.0, Windows 10, Alphabet, Oracle and more.

Defcon is just around the corner and there is a lot happening in the news. For this special segment, we talk about our plans for Defcon in addition to top stories this week including the self aiming rifle and Windows 10.

This week on HackNakedTV we talk about StageFright, The Hacking Team and OPM breaches and more.

This week for stories, we discuss authentication bypass in Siemens SICAM MIC, Adobe patches yet another zero-day, and are you ready for forced automatic updates? We are looking at you, Microsoft.

This week, we interview Matt Duren who is a technical recruiter for Tenable Network Security. Always looking for talented security engineers, C/C++ engineers, front-end / back-end devs, and security sales folks. If you dig JavaScript, PHP, Linux, or low-level programming, then he wants to hear from you.

Host Aaron Lyons talks about "Hacker Summer Camp" aka Blackhat, BsidesLV and Defcon conferences, HackingTeam and Adobe Flash.