73 min listen
How to get more headcount, BLUFFs Vulnerability, and Ranty Clause debuts!
How to get more headcount, BLUFFs Vulnerability, and Ranty Clause debuts!
ratings:
Length:
79 minutes
Released:
Dec 4, 2023
Format:
Podcast episode
Description
Show Topic Summary: Ms. Berlin proposes a question of how to gather more headcount with metrics, we discuss the BLUFFS bluetooth vulnerability, and “Ranty Claus” talks about CISA’s remarks of putting the onus on device product makers to remove choice for customers and implement secure defaults. #youtube VOD: https://www.youtube.com/watch?v=emcAzTx9z0c Questions and topics: https://cyberscoop.com/cisa-goldstein-secure-by-design/ https://hackaday.com/2023/12/02/update-on-the-bluffs-bluetooth-vulnerability/ Additional information / pertinent LInks (Would you like to know more?): https://cyberscoop.com/jen-easterly-secure-by-design/ https://www.cisa.gov/resources-tools/resources/stop-passing-buck-cybersecurity Examples of companies forcing changes https://www.bleepingcomputer.com/news/microsoft/microsoft-will-roll-out-mfa-enforcing-policies-for-admin-portal-access/ https://github.com/aya-rs/aya - eBPF implementation in Rust https://ossfortress.io/ https://www.darkreading.com/endpoint-security/critical-logofail-bugs-secure-boot-bypass-millions-pcs Show points of Contact: Amanda Berlin: @infosystir @hackershealth Brian Boettcher: @boettcherpwned Bryan Brake: @bryanbrake on Mastodon.social, https://linkedin.com/in/brakeb Brakesec Website: https://www.brakeingsecurity.com Twitter: @brakesec Youtube channel: https://youtube.com/c/BDSPodcast Twitch Channel: https://twitch.tv/brakesec
Released:
Dec 4, 2023
Format:
Podcast episode
Titles in the series (100)
2020-033-garmin hack, Tesla employee thwarted IP espionage, Slack RCE payout, and more!: WWFH Class: (Ms. Berlin) “Breaching the Cloud” @dafthack IWCE 2020 panel: “Being a thought leader” ADKAR class Book Club: 03 September 2020 7pm: TLS cert life is 13 months now (397 day) than now: Tesla... by BrakeSec Education Podcast