33 min listen
Infosec Myths, Mistakes, and Misconceptions - Adrian Sanabria - ASW #279
Infosec Myths, Mistakes, and Misconceptions - Adrian Sanabria - ASW #279
ratings:
Length:
61 minutes
Released:
Apr 2, 2024
Format:
Podcast episode
Description
Sometimes infosec problems can be summarized succinctly, like "patching is hard". Sometimes a succinct summary sounds convincing, but is based on old data, irrelevant data, or made up data. Adrian Sanabria walks through some of the archeological work he's done to dig up the source of some myths. We talk about some of our favorite (as in most disliked) myths to point out how oversimplified slogans and oversimplified threat models lead to bad advice -- and why bad advice can make users less secure. Segment resources: https://www.oreilly.com/library/view/cybersecurity-myths-and/9780137929214/ The OWASP Top 10 gets its first update after a year, Metasploit gets its first rewrite (but it's still in Perl), PHP adds support for prepared statements, RSA Conference puts passwords on notice while patching remains hard, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-279
Released:
Apr 2, 2024
Format:
Podcast episode
Titles in the series (100)
Paul's Security Weekly - Special Edition - Mike Poor & Ed Skoudis Interview - Part II: In part II of our interview we discuss: Brazilian hacker groups The physical manifestation of the NOP Sled OS Security/Insecurity, Shmoocon OS X Hack, OS X predictions Apple's move to Intel and its impact on security Bastille for Mac OS X Why not to... by Security Weekly Podcast Network (Audio)