ASW Episode33

From Paul's Security Weekly
Jump to: navigation, search

Application Security Weekly #33

Recorded September 24th, 2018 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Guest Host

    April Wright
    is a Preventative Security Specialist at ArchitectSecurity.org.
    April C. Wright is a hacker, author, teacher, and community leader with over 25 years of breaking, making, fixing, and defending global critical communications and connections. She is an international speaker and trainer, educating others about personal privacy and information security with the goal of safeguarding the digital components we rely on every day. A security specialist for a Fortune 15 company, April has held roles on offensive, defensive, operational, and development teams throughout her career, and been a speaker, trainer, and contributor at numerous security conferences including BlackHat, DEF CON, DerbyCon, Hack in Paris, DefCamp Romania, ITWeb South Africa, as well as for the US Government and industry organizations such as OWASP and ISSA. She has started multiple small businesses including a non-profit, is a member of the DEF CON Groups Core Team, and in 2017 she co-founded the Boston DEF CON Group DC617. April has collected dozens of certifications to add letters at the end of her name, almost died in Dracula’s secret staircase, and once read on ‘teh interwebs’ that researchers at the University of North Carolina released a comprehensive report in 2014 confirming that she is the “most significant and interesting person currently inhabiting the earth”, and even hough it was in The Onion, it was on the internet, so it must be true.

    Annoucements:

    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
    • DerbyCon is holding its first-ever Mental Health & Wellness Workshop - to help support their efforts, please go to DerbyCon.com/wellness
    • Join us for our Webcast with LogRhythm about "Tips & Tricks for Defending the Enterprise Using Open Source Tools". The webcast will be held September 27 @3:00PM EST!


    Interview: Ron Gula, Gula Tech Adventures

    Ron Gula
    is the Founder of Tenable and Gula Tech Adventures.
    Serial Cyber Security Entrepreneur. Founded Tenable Network Security and Network Security Wizards. 15+ years experience as CEO in cyber security industry.

    Ron started his cybersecurity career as a network penetration tester for the NSA. At BBN, he developed network honeypots to lure hackers and he ran US Internetworking's team of penetration testers and incident responders. As CTO of Network Security Wizards, Ron pioneered the art of network security monitoring and produced the Dragon Intrusion Detection System which was recognized as a market leader by Gartner in 2001. As CEO and co-founder of Tenable Network Security, Ron led the company's rapid growth and product vision from 2002 through 2016. He helped them scale to more than 20,000 customers worldwide, raise $300m in venture capital and achieve revenues in excess of $100m annually.


    https://www.belfercenter.org/publication/state-and-local-election-cybersecurity-playbook

    News

    Bugs, Breaches, and More!

    1.) Password bypass flaw in Western Digital My Cloud drives puts data at risk Western Digital's response

    2.) Hackers stole customer credit cards in Newegg data breach

    3.) Hackers are planting credit card stealing malware on local government payment sites

    If you Build It, They Will Come

    1.) John Hancock now requires monitoring bracelets to buy insurance

    2.) State Department confirms data breach exposed employee data

    3.) The Man who Broke Ticketmaster

    Learning & Tools

    1.) Hash Buster

    2.) Hyperpower terminal plugin

    3.) Go-Flashpaper

    Food for Thought

    1.) Engineering Productivity

    2.) New Security Settings available in iOS 12

    3.) CommitStrip: How long it will be alive


    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+