Application Security Weekly #33
Recorded September 24th, 2018 at G-Unit Studios in Rhode Island!
April C. Wright is a hacker, author, teacher, and community leader with over 25 years of breaking, making, fixing, and defending global critical communications and connections. She is an international speaker and trainer, educating others about personal privacy and information security with the goal of safeguarding the digital components we rely on every day. A security specialist for a Fortune 15 company, April has held roles on offensive, defensive, operational, and development teams throughout her career, and been a speaker, trainer, and contributor at numerous security conferences including BlackHat, DEF CON, DerbyCon, Hack in Paris, DefCamp Romania, ITWeb South Africa, as well as for the US Government and industry organizations such as OWASP and ISSA. She has started multiple small businesses including a non-profit, is a member of the DEF CON Groups Core Team, and in 2017 she co-founded the Boston DEF CON Group DC617. April has collected dozens of certifications to add letters at the end of her name, almost died in Dracula’s secret staircase, and once read on ‘teh interwebs’ that researchers at the University of North Carolina released a comprehensive report in 2014 confirming that she is the “most significant and interesting person currently inhabiting the earth”, and even hough it was in The Onion, it was on the internet, so it must be true.
- Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
- DerbyCon is holding its first-ever Mental Health & Wellness Workshop - to help support their efforts, please go to DerbyCon.com/wellness
- Join us for our Webcast with LogRhythm about "Tips & Tricks for Defending the Enterprise Using Open Source Tools". The webcast will be held September 27 @3:00PM EST!
Interview: Ron Gula, Gula Tech Adventures
Serial Cyber Security Entrepreneur. Founded Tenable Network Security and Network Security Wizards. 15+ years experience as CEO in cyber security industry.
Ron started his cybersecurity career as a network penetration tester for the NSA. At BBN, he developed network honeypots to lure hackers and he ran US Internetworking's team of penetration testers and incident responders. As CTO of Network Security Wizards, Ron pioneered the art of network security monitoring and produced the Dragon Intrusion Detection System which was recognized as a market leader by Gartner in 2001. As CEO and co-founder of Tenable Network Security, Ron led the company's rapid growth and product vision from 2002 through 2016. He helped them scale to more than 20,000 customers worldwide, raise $300m in venture capital and achieve revenues in excess of $100m annually.
Bugs, Breaches, and More!
1.) Password bypass flaw in Western Digital My Cloud drives puts data at risk Western Digital's response
2.) Hackers stole customer credit cards in Newegg data breach
3.) Hackers are planting credit card stealing malware on local government payment sites
If you Build It, They Will Come
1.) John Hancock now requires monitoring bracelets to buy insurance
2.) State Department confirms data breach exposed employee data
3.) The Man who Broke Ticketmaster
Learning & Tools
1.) Hash Buster
2.) Hyperpower terminal plugin
Food for Thought
1.) Engineering Productivity
2.) New Security Settings available in iOS 12
3.) CommitStrip: How long it will be alive