Nagios and Abandoned Projects, Hacking Trains (to Fix Them), OAuth Threats, 5Ghoul - ASW #267 | Security Weekly Podcast Network (Video) Podcast

Nagios and Abandoned Projects, Hacking Trains (to Fix Them), OAuth Threats, 5Ghoul - ASW #267: Nagios gets a review from NCC Group, hackers hack some anti-fixing code to fix trains in Poland, abusing OAuth post-compromise, 5Ghoul flaws in 5G networks, MITRE teases a new threat model for embedded systems, a conversation on vuln scoring systems,... by Application Security Weekly (Video)

40 min listen

Making Service Meshes Work for People - Idit Levine - ASW #267: Service meshes create the opportunity to make security a team sport. They can improve observability and service identity. Turning monoliths into micro services sounds appealing, but maybe not every monolith needs to be broken up. We'll also talk about... by Security Weekly Podcast Network (Audio)

78 min listen

The Future of Bitcoin Smart Contracts | Matt & Amine of Arch Network by Empire

62 min listen

ThreatMetrix, Palo Alto, and CrowdStrike - Enterprise Security Weekly #77: In the news, ThreatMetrix teams up with GlobalOnePay, CrowdStrike walks away from Cloud distribution, SmartBear announces new API testing and documentation tool, and more enterprise security news! Full Show Notes:... by Security Weekly Podcast Network (Video)

29 min listen

ThreatMetrix, Palo Alto, and CrowdStrike - Enterprise Security Weekly #77: In the news, ThreatMetrix teams up with GlobalOnePay, CrowdStrike walks away from Cloud distribution, SmartBear announces new API testing and documentation tool, and more enterprise security news! Full Show Notes: Visit for all the latest episodes! by Enterprise Security Weekly (Video)

29 min listen

Iot is broken and 1 Million Exposed Endpoints - Paul's Security Weekly #518: One MILLION endpoints, WannaCry is linked to North Korea, IoT is broken (what's new?),inside a porn-pimping spam botnet, fixing Windows Defender, and more security news! Full Show Notes: https://wiki.securityweekly.com/Episode518 Visit Our Website:... by Security Weekly Podcast Network (Video)

65 min listen

ESW #297 - Tony Karam, Dan Frechtling: Infrastructure-as-code (IaC) allows for quick and consistent configuration and deployment of infrastructure components because it’s defined through code. It also enables repeatable deployments across environments. IaC is seeing significant attention... by Security Weekly Podcast Network (Audio)

146 min listen

Ghostcat, Apache, Networks, Starliner - ASW #98: CVE-2020-1938: Ghostcat vulnerability in the Tomcat Apache JServ Protocol. IMP4GT: IMPersonation Attacks in 4G NeTworks demonstrates a proven insecurity on a layer above provably secure protocol, Boeing implementing more rigorous testing of Starliner... by Security Weekly Podcast Network (Video)

32 min listen

Ghostcat, Apache, Networks, Starliner - ASW #98: CVE-2020-1938: Ghostcat vulnerability in the Tomcat Apache JServ Protocol. IMP4GT: IMPersonation Attacks in 4G NeTworks demonstrates a proven insecurity on a layer above provably secure protocol, Boeing implementing more rigorous testing of Starliner... by Application Security Weekly (Video)

32 min listen

All Aboard the 5G Paranoia Train: The direct link to this episode ( We're getting excited and stressed out about the impending 5G network that appears will control our lives and all our cities. Will it be as exciting, productive, and lacking of security protocols as we expect? We... by CISO Series Podcast

31 min listen

Minerva Labs, CrowdStrike, & VMware - Enterprise Security Weekly #104: In the Enterprise News this week, VMWare launches Blockchain project, lacework raises new funds to extend Cloud Security capabilites, Minerva Labs achieves certified integration with McAfee ePO, CrowdStrike helps advance malware searches on hybrid... by Security Weekly Podcast Network (Video)

27 min listen

Minerva Labs, CrowdStrike, & VMware - Enterprise Security Weekly #104: In the Enterprise News this week, VMWare launches Blockchain project, lacework raises new funds to extend Cloud Security capabilites, Minerva Labs achieves certified integration with McAfee ePO, CrowdStrike helps advance malware searches on hybrid... by Enterprise Security Weekly (Video)

27 min listen

Extracting Data from ChatGPT, Vulns Around AI, Secure AI Guidance, LogoFAIL, BLUFFS - ASW #265: Repetition extracts data from ChatGPT, more vulns in the software that surrounds AI, guidelines for secure AI, LogoFAIL trips a boot, BLUFFS attack on Bluetooth, CISA's first secure by design alert, Okta's updated breach disclosure, and more! Show Notes: by Security Weekly Podcast Network (Video)

35 min listen

Extracting Data from ChatGPT, Vulns Around AI, Secure AI Guidance, LogoFAIL, BLUFFS - ASW #265: Repetition extracts data from ChatGPT, more vulns in the software that surrounds AI, guidelines for secure AI, LogoFAIL trips a boot, BLUFFS attack on Bluetooth, CISA's first secure by design alert, Okta's updated breach disclosure, and more! Show Notes: by Application Security Weekly (Video)

35 min listen

RCE Chaos, Zoom 0-Day, & Banning TikTok - PSW #657: Hackers Are Exploiting a 5-Alarm Bug in Networking Equipment, Cisco Talos discloses technical details of Chrome and Firefox flaws, Palo Alto Networks Patches Command Injection Vulnerabilities in PAN-OS, Zoom zero-day flaw allows code execution on... by Security Weekly Podcast Network (Video)

72 min listen

Bluebox-ng, Stock Data Breaches, and CommitStrip- Application Security Weekly #32: Alpine Linux hit with bug that can lead to Poisoned Containers, data breaches affect stock performance in the long run, Bluebox-ng, a Node.js VoIP pentesting framework, and CommitStrip: It's Not an App! Full Show Notes: Follow us on Twitter: by Application Security Weekly (Video)

37 min listen

Bluebox-ng, Stock Data Breaches, and CommitStrip- Application Security Weekly #32: Alpine Linux hit with bug that can lead to Poisoned Containers, data breaches affect stock performance in the long run, Bluebox-ng, a Node.js VoIP pentesting framework, and CommitStrip: It's Not an App! Full Show Notes:... by Security Weekly Podcast Network (Video)

37 min listen

SWVHSC: Netgear Flaws, Satellite Spying, & Stealing UltraLoq Keys - PSW #661: How hackers could spy on satellite internet traffic with just $300 of home TV equipment, Smart locks opened with nothing more than a MAC address, 17-Year-Old 'Mastermind' and 2 Others Behind the Biggest Twitter Hack Arrested, Flaw in popular NodeJS... by Security Weekly Podcast Network (Video)

96 min listen

Kubernetes and silentbob strike back, EV charger hacking, fake POCs - ASW #247: It's a busy news week - We explore what happens when people trust plugging cables into their EVs in public, how an APT is leveraging docker and kubernetes to build a botnet, why you should be careful running code from "researchers," and much more.... by Security Weekly Podcast Network (Video)

41 min listen

Kubernetes and silentbob strike back, EV charger hacking, fake POCs - ASW #247: It's a busy news week - We explore what happens when people trust plugging cables into their EVs in public, how an APT is leveraging docker and kubernetes to build a botnet, why you should be careful running code from "researchers," and much more.... by Application Security Weekly (Video)

41 min listen

ServiceNow, Gurucul Fraud, and Shadow Devices - Enterprise Security Weekly #91: ServiceNow introduces virtual agent, Red Hat to integrate CoreOS with OpenShift, Thycotic announces IBM Security, and Gurucul Fraud Analytics Solution monitors users. Full Show Notes: Visit for all the latest episodes! by Enterprise Security Weekly (Video)

28 min listen

ServiceNow, Gurucul Fraud, and Shadow Devices - Enterprise Security Weekly #91: ServiceNow introduces virtual agent, Red Hat to integrate CoreOS with OpenShift, Thycotic announces IBM Security, and Gurucul Fraud Analytics Solution monitors users. Full Show Notes: https://wiki.securityweekly.com/ES_Episode91 Visit... by Security Weekly Podcast Network (Video)

28 min listen

Breach Disclosures, SSRF in Azure, Integer Flaws, Top 10 Web Hacking Techniques - ASW #226: Breach disclosures from T-Mobile and PayPal, SSRF in Azure services, Google Threat Horizons report, integer overflows and more, Rust in Chromium, ML for web scanning, Top 10 web hacking techniques of 2022 Visit for all the latest episodes!... by Application Security Weekly (Video)

42 min listen

Breach Disclosures, SSRF in Azure, Integer Flaws, Top 10 Web Hacking Techniques - ASW #226: Breach disclosures from T-Mobile and PayPal, SSRF in Azure services, Google Threat Horizons report, integer overflows and more, Rust in Chromium, ML for web scanning, Top 10 web hacking techniques of 2022 Visit for all the latest episodes!... by Security Weekly Podcast Network (Video)

42 min listen

Lax IoT, Adobe Flash Croaks, Link Preview Vulns, & Security Theatre! - ASW #128: Lax IoT security exposes smart-irrigation systems, Adobe Flash goes truly end of line in one last update, confidential computing gets a turbo boost with Nitro, link previews show security and privacy problems, and security theatre gets an encore!... by Security Weekly Podcast Network (Video)

33 min listen

Lax IoT, Adobe Flash Croaks, Link Preview Vulns, & Security Theatre! - ASW #128: Lax IoT security exposes smart-irrigation systems, Adobe Flash goes truly end of line in one last update, confidential computing gets a turbo boost with Nitro, link previews show security and privacy problems, and security theatre gets an encore!... by Application Security Weekly (Video)

33 min listen

ThreatConnect, Optiv, & StackRox - Enterprise Security Weekly #99: Alert Logic transforms Container Security, McAfee announces new enterprise security portfolio, ThreatConnect updates its Playbooks, Optiv Security launches new managed identity service, CA Technologies to become part of Broadcom, and more! Full Show... by Enterprise Security Weekly (Video)

22 min listen

ThreatConnect, Optiv, & StackRox - Enterprise Security Weekly #99: Alert Logic transforms Container Security, McAfee announces new enterprise security portfolio, ThreatConnect updates its Playbooks, Optiv Security launches new managed identity service, CA Technologies to become part of Broadcom, and more! Full Show... by Security Weekly Podcast Network (Video)

22 min listen

ThreatConnect, Auth0 Bot Detection, & Thycotic Identity Bridge - ESW #195: ThreatConnect Integrates with Microsoft Graph Security API to Strengthen Security Automation, Sectigo unveils Sectigo Quantum Labs to help orgs prepare for quantum computers, Trend Micro to offer comprehensive network and endpoint protection for IoT... by Enterprise Security Weekly (Video)

38 min listen

ThreatConnect, Auth0 Bot Detection, & Thycotic Identity Bridge - ESW #195: ThreatConnect Integrates with Microsoft Graph Security API to Strengthen Security Automation, Sectigo unveils Sectigo Quantum Labs to help orgs prepare for quantum computers, Trend Micro to offer comprehensive network and endpoint protection for IoT... by Security Weekly Podcast Network (Video)

38 min listen

Discover this podcast and so much more

Nagios and Abandoned Projects, Hacking Trains (to Fix Them), OAuth Threats, 5Ghoul - ASW #267

Nagios and Abandoned Projects, Hacking Trains (to Fix Them), OAuth Threats, 5Ghoul - ASW #267

Description

Titles in the series (100)

More Episodes from Security Weekly Podcast Network (Video)

Related podcast episodes