WhatsApp Flaw, Dropbox Bug Bounty Program, Investigating Web Shell Attacks - ASW #95 | Security Weekly Podcast Network (Video) Podcast

WhatsApp Flaw, Dropbox Bug Bounty Program, Investigating Web Shell Attacks - ASW #95: This week in the Application Security News, Mike and John cover the following news stories: Critical Security Flaw Found in WhatsApp Desktop Platform Allowing Cybercriminals Read From The File System Access, Dropbox bug bounty program has paid out... by Application Security Weekly (Video)

31 min listen

Smart Contract Security, Heroku Breach, & Real World Crypto Highlights - ASW #196: In the AppSec News Mike and John discuss: Secure coding practices and smart contracts, lessons from the Heroku breach, Real World Crypto conference highlights, and an entertaining bug in Google Docs, & more! Visit for all the latest... by Application Security Weekly (Video)

37 min listen

Smart Contract Security, Heroku Breach, & Real World Crypto Highlights - ASW #196: In the AppSec News Mike and John discuss: Secure coding practices and smart contracts, lessons from the Heroku breach, Real World Crypto conference highlights, and an entertaining bug in Google Docs, & more! Visit for all the latest... by Security Weekly Podcast Network (Video)

37 min listen

Talking Heads - ASW #150: While the vision for app security is relatively clear, executing on that vision is still somewhat of a work in progress. Fast-moving, interdependent pieces—custom code and open source packages, infrastructure and network configurations, user... by Security Weekly Podcast Network (Audio)

75 min listen

A Cesspool of Images - ASW #133: This week, we welcome Mike Manrod, CISO of Grand Canyon University, joined by John Delaroderie, Security Solutions Architect at Qualys, to discuss his approach to web application security with an emphasis on improving knowledge of web application... by Security Weekly Podcast Network (Audio)

65 min listen

ANOM Bust, Ransomware Solutions, NAC, & A PCI Deathmatch! - PSW #698: This week, In the Security News Paul & the crew discuss: Microsoft Patches 6 Zero-Days Under Active Attack, US seizes $2.3 million Colonial Pipeline paid to ransomware attackers, the largest password compilation of all time leaked online with 8.4... by Security Weekly Podcast Network (Video)

96 min listen

Renting Your Phone, Public-Key Explained, Toilet Identification, & AutoDiscover Bug - PSW #711: This week in the Security News: What to do with your old hardware, renting your phone, "persistently execute system software in the context of Windows", sensational headline: ransomware could cause a food shortage, could someone please schedule the... by Security Weekly Podcast Network (Video)

80 min listen

ASW #195 - Lynn Marks: This week, Mike and John interview Lynn Marks, Product Manager at Imperva, & discuss Bad Bots: The Automated Threat Targeting Your Websites, Apps, & APIs! In the AppSec News: ExtraReplica in Azure, Chrome disfavors document.domain, appsec... by Security Weekly Podcast Network (Audio)

74 min listen

Everything's All Blurry - PSW #711: This week, we kick off the show with an interview featuring Mike Cohen, from Rapid 7, and Wes Lambert from Security Onion Solutions, for a segment all about Velociraptor & Digging Deeper! Then, we attempt to confirm or deny that Nzyme performs... by Security Weekly Podcast Network (Audio)

200 min listen

IIS Bug, Browsers & Androids & Supply Chains Oh My! - ASW #152: This week in the AppSec News segment, Mike and John talk: HTTP bug bothers IIS, Android platform security, supply chain security (new and old), brief (very brief) history of browser security, & more! Visit for all the latest episodes! Show Notes: by Security Weekly Podcast Network (Video)

32 min listen

IIS Bug, Browsers & Androids & Supply Chains Oh My! - ASW #152: This week in the AppSec News segment, Mike and John talk: HTTP bug bothers IIS, Android platform security, supply chain security (new and old), brief (very brief) history of browser security, & more! Visit for all the latest episodes! Show... by Application Security Weekly (Video)

32 min listen

Inbox: Zero Trust - Ryan Noon - ESW #223: Ryan Noon joins ESW team this week to chat through the significance of recent hacks (namely: SolarWinds and Hafnium), unpack growing enterprise demand for a “digital seatbelt,” and illuminate why Material takes a fresh approach to email security:... by Security Weekly Podcast Network (Video)

32 min listen

Inbox: Zero Trust - Ryan Noon - ESW #223: Ryan Noon joins ESW team this week to chat through the significance of recent hacks (namely: SolarWinds and Hafnium), unpack growing enterprise demand for a “digital seatbelt,” and illuminate why Material takes a fresh approach to email security:... by Enterprise Security Weekly (Video)

32 min listen

Schools of Magic - ASW #173: This week, Mike, John and Dan McKinney from Cloudsmith will be discussing SBOM and what that looks like for your applications. Other topics include: cloud-native tooling for your software supply chain, the history of provenance, GPG Keys & signing... by Security Weekly Podcast Network (Audio)

74 min listen

Facebook, RedHat, & Russian Twitterbots - Application Security Weekly #03: This week, Doug and Keith discuss the last of the top ten most critical web application security risks! They discuss security misconfiguration, insecure deserialization, insufficient logging and monitoring, and more on this episode of Application... by Application Security Weekly (Video)

31 min listen

Facebook, RedHat, & Russian Twitterbots - Application Security Weekly #03: This week, Doug and Keith discuss the last of the top ten most critical web application security risks! They discuss security misconfiguration, insecure deserialization, insufficient logging and monitoring, and more on this episode of Application... by Security Weekly Podcast Network (Video)

31 min listen

Risky Business #721 -- Why Storm-0558's Microsoft hack should have failed: It was great hacking, but it just shouldn't have worked... by Risky Business

20 min listen

Dubious Drones, NSO Group, Apple's Bug Bounties, Ghostscript 0-Day, & IBM Server Bugs - PSW #710: This week in the Security News: Anonymous hacks Epik (with a K), Fuzzing Close-Source Javascript Engines, ForcedEntry, 8 Websites that can replace computer software, REvil decryptor key released, Microsoft fixes Critical vulnerability in Linux App,... by Security Weekly Podcast Network (Video)

98 min listen

Something's Out There - ASW #153: This week, we welcome Daniel Hampton, Senior Solutions Architect at Fastly, to discuss API Security: Understanding Threats to Better Protect Your Organization! In the AppSec News, Tyler Robinson joins Mike & John to discuss: HTTP/3 and QUIC,... by Security Weekly Podcast Network (Audio)

73 min listen

Unicorn Layoffs, Zombiecorns, IronNet, Remediant, & AI Generated Insecurity - ESW #301: Finally, in the enterprise security news, Security funding is back, baby! Security Unicorn layoffs continue though! We talk Zombiecorns, IronNet struggles, Netwrix acquires Remediant, We talk breaches: Lastpass, Rackspace, Okta via Github, Slack via... by Security Weekly Podcast Network (Video)

54 min listen

Unicorn Layoffs, Zombiecorns, IronNet, Remediant, & AI Generated Insecurity - ESW #301: Finally, in the enterprise security news, Security funding is back, baby! Security Unicorn layoffs continue though! We talk Zombiecorns, IronNet struggles, Netwrix acquires Remediant, We talk breaches: Lastpass, Rackspace, Okta via Github, Slack via... by Enterprise Security Weekly (Video)

54 min listen

Log4Shell, Mozilla's BigFix & New Sandbox, Rust in Linux Kernel, Path Traversal in Go - ASW #177: This week in the AppSec News, Mike & John talk: All about Log4Shell, Mozilla's BigFix bug and new sandbox, Rust in the Linux kernel, path traversals, reflections on the security profession, & more! Visit for all the latest episodes!... by Security Weekly Podcast Network (Video)

36 min listen

Log4Shell, Mozilla's BigFix & New Sandbox, Rust in Linux Kernel, Path Traversal in Go - ASW #177: This week in the AppSec News, Mike & John talk: All about Log4Shell, Mozilla's BigFix bug and new sandbox, Rust in the Linux kernel, path traversals, reflections on the security profession, & more! Visit for all the latest episodes!... by Application Security Weekly (Video)

36 min listen

Technado, Ep. 303: The FBI Warns Consumers about the Risks of Public Charging Stations: Catch up on the cybersecurity and tech news of the week with Don, Dan, and Sophie as they cover the latest. This week in tech, Microsoft is beta testing a taskbar workaround that allows users to bypass the task manager program to shut down applications, a blogger discovered a Bitcoin easter egg left behind in Apple’s MacOS systems, and Cisco revealed in a financial report that as its organization was exiting Russia, it destroyed $23 million in equipment. In security news, for our “Doh!” segment, multiple vulnerabilities with Nexx devices were discovered that allow hackers to gain access to smart home systems like doorbells, alarms, and garage doors. In this week’s “Who Got Pwned?” segment, Western Digital’s My Cloud went offline after hackers gained access to its systems. Finally, for Tinfoil Hat, the FBI warned consumers about “juice jacking”, where criminals infect mobile and other devices through by Technado

55 min listen

Equifax, Amazon, & Hacking Hotels - Paul's Security Weekly #557: In the news, Western Digital My Cloud EX2 NAS device leaks files, Equifax has spent $242.7 million on its data breach so far, New Skill let Amazon Alexa Spy on Users, Hackers find devious way to break into hotel rooms, new tool detects evil maid... by Security Weekly Podcast Network (Video)

55 min listen

Thunderdome Technique - ASW #131: This week, in the first segment, Mike, Adrian, and John discuss Threat Modeling! We threat model every day without realizing it. And, of course, we often threat model with systems and products within our organizations. So how formal does our approach... by Security Weekly Podcast Network (Audio)

64 min listen

Adobe Overflow, Microsoft Patches 3 and Skips 1, & Apple Sudo Fix - Wrap Up - SWN #100: On this week's news recap, Microsoft Remote Desktop Web Access Authentication Timing Attack, Multiple TCP/IP stack flaws could leave millions of devices open to attack, Adobe fixes a buffer overflow issue in Reader which is exploited in the wild, and... by Security Weekly Podcast Network (Audio)

10 min listen

AirTags & Threat Models, Qualcomm Modem Vuln, Exim RCE(s), & Binary Hardening - ASW #150: This Week in the AppSec News, Mike and John talk: "Find My threat model" with AirTags, Qualcomm modem vuln hits lots of Android, an Exim update patches lots of vulns, measuring hardened binaries, a maturity model for k8s, & more! Visit for... by Security Weekly Podcast Network (Video)

38 min listen

AirTags & Threat Models, Qualcomm Modem Vuln, Exim RCE(s), & Binary Hardening - ASW #150: This Week in the AppSec News, Mike and John talk: "Find My threat model" with AirTags, Qualcomm modem vuln hits lots of Android, an Exim update patches lots of vulns, measuring hardened binaries, a maturity model for k8s, & more! Visit for... by Application Security Weekly (Video)

38 min listen

S14:E3 - Introducing DevNews (Joseph Cox): Do you know what your app's location data is being used for? by CodeNewbie

33 min listen

Discover this podcast and so much more

WhatsApp Flaw, Dropbox Bug Bounty Program, Investigating Web Shell Attacks - ASW #95

WhatsApp Flaw, Dropbox Bug Bounty Program, Investigating Web Shell Attacks - ASW #95

Description

Titles in the series (100)

More Episodes from Security Weekly Podcast Network (Video)

Related podcast episodes