ASW Episode24

From Paul's Security Weekly
Jump to: navigation, search

Application Security Weekly #24

Recorded July 16, 2018 at G-Unit Studios in Rhode Island!

Episode Audio


  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Annoucements:

    • We just released our 2018 Listener Survey; Please go to to help us continue to provide you with quality content that doesn't break the build.
    • Mike Thompson joins us to show you how the threat intelligence space is transforming and what techniques security professionals can apply to stay a step ahead of threat actors by mapping their infrastructure. Register now @
    • Come to our Pool Cabana @ Black Hat and Def Con to pick up a free copy of "Cyber Hero Adventures". Here you will be able to get the comic book signed by Gary Berman.

    Topic: AppSec Solutions in a DevOps World


    Bugs, Breaches, and More!

    1.) Compromised JavaScript Package Caught Stealing npm Credentials

    2.) A Remote iOS Bug

    3.) This $39 Device Can Defeat iOS USB Restricted Mode

    If you build it, they will come

    1.) Weirdest. Acquisition. Ever. Broadcom buys CA Technologies

    2.) Security Firm Sued for Failing to Detect Malware That Caused a 2009 Breach

    3.) Restrictions on the USB port will make it tougher for police to get access to your data.

    Learning & Tools

    1.) DefectDojo

    2.) ChaoSlingr - Purple Teaming and chaos engineering in security experimentation

    3.) Burpa - A Burp Suite Automation Tool

    Food for Thought

    1.) DevSecOps Grows Up and Finds Itself a Community

    2.) Tickets Make Operations Unnecessarily Miserable

    3.) Pareto everywhere

    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+