SSRF at a FinTech, Zoom's Bounties, SLSA Build Provenance, & Raspberry Pi Credentials - ASW #192 | Security Weekly Podcast Network (Video) Podcast

SSRF at a FinTech, Zoom's Bounties, SLSA Build Provenance, & Raspberry Pi Credentials - ASW #192 by Application Security Weekly (Video)

41 min listen

What's the Deal with API Security? - Sandy Carielli - ASW #243: Walking the show floor at RSA Conference, you couldn't trip without falling into an application security vendor booth ... and API security specialists were especially plentiful. Join Forrester Principal Analyst Sandy Carielli for her thoughts on RSA... by Security Weekly Podcast Network (Audio)

77 min listen

Apps Gone Wild: Re-thinking App and Identity Security for SaaS - Guy Guzner - BSW #343: With hundreds or thousands of SaaS apps to secure with no traditional perimeter, Identity becomes the focal point for SaaS Security in the modern enterprise. Yet with Shadow IT, now recast as Business-Led IT, quickly becoming normal practice, it’s... by Security Weekly Podcast Network (Audio)

63 min listen

IBM Announces RSA Conference Withdrawal, Dell Offloads RSA - ESW #173: his week, in the enterprise news segment, IBM announces RSA Conference withdrawal, Dell Offloads RSA, 12 hottest new cybersecurity startups at RSA 2020, and lots of funding announcements. Visit for all the latest episodes! Show Notes: by Enterprise Security Weekly (Video)

41 min listen

IBM announces RSA Conference withdrawal, Dell Offloads RSA, 12 hottest new cybersecurity startups at RSA 2020 - ESW #173: his week, in the enterprise news segment, IBM announces RSA Conference withdrawal, Dell Offloads RSA, 12 hottest new cybersecurity startups at RSA 2020, and lots of funding announcements. Visit for all the latest episodes! Show Notes: by Security Weekly Podcast Network (Video)

41 min listen

Duo, CyberArk, & Demisto - Enterprise Security Weekly #97: This week, Duo integrates with Sophos to address BYOD Security, SkyHigh not the limit of McAfee's ambition; IPO an option, CyberArk's new offering to mitigate privileged access risk, Ping Identity acquires Elastic Beam for AI-Powered API Security, and... by Enterprise Security Weekly (Video)

20 min listen

Duo, CyberArk, & Demisto - Enterprise Security Weekly #97: This week, Duo integrates with Sophos to address BYOD Security, SkyHigh not the limit of McAfee's ambition; IPO an option, CyberArk's new offering to mitigate privileged access risk, Ping Identity acquires Elastic Beam for AI-Powered API Security, and... by Security Weekly Podcast Network (Video)

20 min listen

Is There a Konami Code For Cyber Talent?: All links and images for this episode can be found on . This week’s episode is hosted by me, (), producer of CISO Series and , CISO, . Joining me is our guest , vp, infosec, technology, and enterprise applications, . In this episode: What other... by CISO Series Podcast

39 min listen

Drive - ASW #165: This week, we welcome Manish Gupta, CEO and Co-Founder of ShiftLeft, to discuss Findings From the 2021 AppSec Shift Left Progress Report! Data from the ShiftLeft customer report shows that companies that have rebuilt their core testing processes... by Security Weekly Podcast Network (Audio)

74 min listen

Drone threats, PixieFail firmware, HIBP dataset: Chinese drones considered national security threat PixieFail could spell trouble for cloud providers Have I Been Pwned adds “statistically significant” data leak Huge thanks to our sponsor, Savvy Security Shadow identities on SaaS apps are... by Cyber Security Headlines

7 min listen

The Impossible Traveler - ESW #198: This week, first we talk Enterprise News, discussing how Yubico Delivers New Security Key the YubiKey 5C NFC, ManageEngine ADSelfService Plus now supports MFA for VPNs to protect remote workforce, Sysdig partners with VulnDB to strengthen... by Security Weekly Podcast Network (Audio)

94 min listen

Bug Bounty Costs, GitHub's Advisory Database, ICS Vulns of 2021, CNCF Secure Software - ASW #186: Salesforce reveals their bounty totals for 2021, GitHub opens its advisory database for collaboration, a year in review of ICS vulns, automating WordPress plugin security analysis, the Secure Software Factory from CNCF, Samsung's encryption mistakes,... by Application Security Weekly (Video)

42 min listen

Bug Bounty Costs, GitHub's Advisory Database, ICS Vulns of 2021, CNCF Secure Software - ASW #186: Salesforce reveals their bounty totals for 2021, GitHub opens its advisory database for collaboration, a year in review of ICS vulns, automating WordPress plugin security analysis, the Secure Software Factory from CNCF, Samsung's encryption mistakes,... by Security Weekly Podcast Network (Video)

42 min listen

PCI Workloads in the Cloud - Matt Springfield - SCW #33: Taking a deeper look into moving PCI related resources into cloud platforms. Public cloud, private cloud, do's, don'ts and can'ts! We will explore key considerations and impacts to security compliance and responsibilities related to cloud. ... by Security Weekly Podcast Network (Video)

34 min listen

ThunderScan, F-Secure Countercept, & ZeroFOX AI - ESW #180: This week in the Enterprise Security News, Breach-and-Attack Simulation Firm SafeBreach Raises $19 Million, F-Secure launches protection and response service to protect remote workers, Swimlane acquires Syncurity to spur growth and affirm commitment... by Security Weekly Podcast Network (Video)

23 min listen

ThunderScan, F-Secure Countercept, & ZeroFOX AI - ESW #180: This week in the Enterprise Security News, Breach-and-Attack Simulation Firm SafeBreach Raises $19 Million, F-Secure launches protection and response service to protect remote workers, Swimlane acquires Syncurity to spur growth and affirm commitment... by Enterprise Security Weekly (Video)

23 min listen

Need More Cowbell - ESW #220: This week, our good friend Ron Gula joins us to talk about cybersecurity investments, tips for both enterprises and enturprenurs. In the enterprise security news funding announcements from Coalition, HeraSoft, Cowbell Cyber, Argon, Cynet, Docker, and... by Security Weekly Podcast Network (Audio)

131 min listen

Google postpones cookies, Brocade vulnerability warning, ICICI card gaffe: Google postpones third-party cookie deprecation Brocade SAN appliances and switches exposed to hacking ICICI Bank exposes credit cards to wrong users Thanks to this week's episode sponsor, Veracode Don't miss out on this opportunity to elevate your... by Cyber Security Headlines

8 min listen

ISC StormCast for Friday, May 3rd 2019: SAP Targeted; Cisco Nexus 9000; CryptoJacking Update; DLink; Securepairs; #righttorepair by SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

6 min listen

BBPLR, API Security Trends, Memory Unsafety, & Patching 0-Days - ASW #139: Funding bounties or finding bugs, how should we invest? Talks from Enigma Conference on memory unsafety and 0-days. Coming trends in API security and a review of research from 2020. Visit for all the latest episodes! Show Notes: by Application Security Weekly (Video)

31 min listen

BBPLR, API Security Trends, Memory Unsafety, & Patching 0-Days - ASW #139: Funding bounties or finding bugs, how should we invest? Talks from Enigma Conference on memory unsafety and 0-days. Coming trends in API security and a review of research from 2020. Visit for all the latest episodes! Show Notes: by Security Weekly Podcast Network (Video)

31 min listen

Vendor Failures Coming, MDM Confusion, Cyberinsurance Mess, Tines, & an AI Camera - ESW #322: This week, for the enterprise security news, we discuss the continuing impact of the market downturn and how it might affect late stage startups. We also discuss the state of cyber insurance - is it improving? SEC is starting to get traction with new... by Security Weekly Podcast Network (Video)

66 min listen

Vendor Failures Coming, MDM Confusion, Cyberinsurance Mess, Tines, & an AI Camera - ESW #322: This week, for the enterprise security news, we discuss the continuing impact of the market downturn and how it might affect late stage startups. We also discuss the state of cyber insurance - is it improving? SEC is starting to get traction with new... by Enterprise Security Weekly (Video)

66 min listen

Dealing with the Burden of Bad Bots - Sandy Carielli - ASW #270: Where apps provide something of value, bots are sure to follow. Modern threat models need to include scenarios for bad bots that not only target user credentials, but that will also hoard inventory and increase fraud. Sandy shares her recent research... by Security Weekly Podcast Network (Audio)

69 min listen

What's the Deal with API Security? - Sandy Carielli - ASW #243: Walking the show floor at RSA Conference, you couldn't trip without falling into an application security vendor booth ... and API security specialists were especially plentiful. Join Forrester Principal Analyst Sandy Carielli for her thoughts on RSA... by Application Security Weekly (Video)

37 min listen

What's the Deal with API Security? - Sandy Carielli - ASW #243: Walking the show floor at RSA Conference, you couldn't trip without falling into an application security vendor booth ... and API security specialists were especially plentiful. Join Forrester Principal Analyst Sandy Carielli for her thoughts on RSA... by Security Weekly Podcast Network (Video)

37 min listen

Marina Bay Sands customer data hacked, Atlassian bug escalated to 10.0 severity, Fake crypto app steals over $700,000: Singapore’s Marina Bay Sands customer data stolen in cyberattack Atlassian bug escalated to 10.0 severity Fake Ledger Live app steals over $700,000 in crypto Thanks to today's episode sponsor, OffSec And now a word from our sponsor. (formerly... by Cyber Security Headlines

8 min listen

Unintended Consequences: Evolution of Applications, APIs, and Where They Run - Karl Triebes - BSW #276: While applications and APIs are developed with cloud in mind, many organizations must rely on a hybrid architecture and edge computing to deliver their services given the high cost of cloud services. However, many organizations lack the right security... by Security Weekly Podcast Network (Video)

32 min listen

Bug Bounties in Windows/WebKit, Edge Hardening, OAuth Hardening, & GoDaddy Breach - ASW #176: This week in the AppSec News: Bug bounty payout practices, Edge goes super duper secure mode, WebKit CSP flaw has consequences for OAuth, GoDaddy breach, vuln in MediaTek audio DSP, & more! Visit for all the latest episodes! Show Notes: by Security Weekly Podcast Network (Video)

39 min listen

Bug Bounties in Windows/WebKit, Edge Hardening, OAuth Hardening, & GoDaddy Breach - ASW #176: This week in the AppSec News: Bug bounty payout practices, Edge goes super duper secure mode, WebKit CSP flaw has consequences for OAuth, GoDaddy breach, vuln in MediaTek audio DSP, & more! Visit for all the latest episodes! Show Notes: by Application Security Weekly (Video)

39 min listen

Discover this podcast and so much more

SSRF at a FinTech, Zoom's Bounties, SLSA Build Provenance, & Raspberry Pi Credentials - ASW #192

SSRF at a FinTech, Zoom's Bounties, SLSA Build Provenance, & Raspberry Pi Credentials - ASW #192

Description

Titles in the series (100)

More Episodes from Security Weekly Podcast Network (Video)

Related podcast episodes