ASW Episode39

From Paul's Security Weekly
Jump to: navigation, search

Application Security Weekly #39

Recorded November 12, 2018 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Annoucements:

    • If you are interested in quality over quantity and having meaningful conversations instead of just a badge scan, join us April 1-3, at Disney's Contemporary Resort for InfoSec World 2019 where you can connect and network with like-minded individuals in search of actionable information. Use the registration code OS19-SECWEEK for 15% off the Main Conference or World Pass.

    Interview: Brian Kelly, CyberArk

    Brian Kelly
    is the Head of Conjur Engineering for CyberArk.
    Brian Kelly is Head of Conjur Engineering at CyberArk, where he focuses on creating products that add much-needed security and identity management to the landscape of DevOps tools and cloud systems. Brian is passionate about software, building teams, cybersecurity, and DevOps.


    News

    Bugs, Breaches, and More!

    1.) No need for Russia to hack the House of Representatives if the House keeps leaving its doors open

    2.) I found a security hole in Steam that gave me every game's license keys and all I got was this... oh nice: $20,000

    3.) DJI Drone Vulnerability

    If you Build It, They Will Come

    1.) Hackers are increasingly destroying logs to hide attacks

    2.) Adobe ColdFusion servers under attack from APT group

    3.) No Free Lunches In Software: Understanding Open Source Code Use In Your Business

    Learning & Tools

    1.) The Software Developer’s Library: A Treasure Trove of Books for People Who Love Code

    2.) TakeOver v1.0

    3.) Useless Content Security Policy

    Food for Thought

    1.) The Outrageous Cost of Skipping TDD & Code Reviews

    2.) Tracing a Meme From the Internet’s Fringe to a Republican Slogan

    3.) CommitStrip: Experience is a Candle


    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+