Episode427

From Paul's Security Weekly
Jump to: navigation, search


Paul's Security Weekly - Episode 427 - 6:00PM

Episode Media

MP3

Intro, Sponsors & Announcements

Paul

[Cut to Paul Live Shot]

This week we interview Matt Duren from Tenable Network Security on jumpstarting your infosec career, Ed Skoudis joins us live in studio to talk about his latest projects, including NetWars, CyberCity and CyberNetWarCity. Special guests from Black Hills Information Security join us to talk more about Hacking Team, Adobe 0days (Again) and forced security updates... All that and more so stay tuned!

[Cut to Jack Live shot]

Kris

Broadcasting live from G Unit Studios in Rhode Island, the show where exploits run wild, packets aren’t the only things getting sniffed, and the cocktails flow steady its Paul’s Security Weekly!

[Cut to sponsor logo]

  • And by Netsparker, the developers of the ONLY false positive free web application security scanners, enabling you to automatically identify vulnerabilities and security flaws in all your websites, web applications and web services. Netsparker scanners are available in two editions, Netsparker Desktop and Netsparker Cloud, the enterprise level online scanning service. For more information visit their website on https//www.netsparker.com/securityweekly/
  • Brought to you by Pwnie Express - Check out the community edition and turn your Nexus 7 into a lean and mean pen testing machine. For all those hard to reach places, there's Pwnie Express, visit them on the web at http://pwnieexpress.com
  • And by Onapsis the leading provider of solutions to protect ERP systems from cyber-attacks. Customers can secure their SAP and Oracle business-critical platforms from espionage, sabotage and financial fraud risks. Visit them on the web at http://www.onapsis.com/

[Cut to security weekly logo]

Now, fire up a packet capture, pour yourself a beer, and give the intern control of your botnet...

[Cut to live shot of Paul]

Joff: Here's your host, a man who doesn't clean toilet seats, instead buys new ones Paul Asadoorian!"

Paul: Hello everyone and welcome to Paul's Security Weekly - Episode 427 for Thursday, July 16th 2015

  • Introduce hosts and guests

Announcements

EmbedVideo received the bad id "U1OuZ2mqss4"" for the service "youtube".

[Cut to Announcement graphics]

  • Ready to learn Combat Firmware Analysis? Register for Paul's Blackhat course "Embedded Device Security Assessments", a 2-day hosted class at Blackhat Las Vegas. Registration includes breakfast, lunch, and access to the Blackhat Briefings Business Hall, Sponsor Workshops, Sponsor Sessions, and Arsenal! Visit http://securityweekly.com/iot to register today!

[Cut to shot on Paul]

Guest Interview: Matt Duren - 6:05PM-6:30PM

Bio

Matt Duren is a recruiter at Tenable Network Security. Always looking for talented security engineers, C/C++ engineers, front-end / back-end devs, and security sales folks. If you dig JavaScript, PHP, Linux, or low-level programming, then I want to hear from you.

Links

Questions/Topics

  1. How did you get your start in information security?

Five Questions

  1. Three words to describe yourself.
  2. If you were a serial killer, what would be your weapon of choice?
  3. If you wrote a book about yourself, what would the title be?
  4. In the popular game of ass grabby-grabby, do you prefer to go first or second?
  5. Choose two celebrities to be your parents.

Guest Interview: Ed Skoudis - 6:35PM-7:00PM

EmbedVideo received the bad id "MdKDUTOUuOc"" for the service "youtube".

Announcements

  • This segment is sponsored by The SANS institute the most trusted source for computer security training, certification and research. visit www.sans.org to learn more

Bio

And now, a man who has made anonymity a household name, embodies character, integrity, principle (People often want to know why he hasn’t run for public office. Well, I just told you). A man feared by sushi across the galaxy and drinks diet coke only to pee a stream cipher, its Ed Skoudis!

Topics

  • Holiday Hack: We’re already working on the 2015 one. Also, the previous years challenges are still up for people to practice on any time. I don’t think a lot of people know that.
  • NetWars: Latest developments
  • CyberCity: Latest developments
  • Beyond CyberCity: We have some cool stuff we’re working on here too.

Five Questions

  1. Three words to describe yourself.
  2. If you were a serial killer, what would be your weapon of choice?
  3. If you wrote a book about yourself, what would the title be?
  4. In the popular game of ass grabby-grabby, do you prefer to go first or second?
  5. Choose two celebrities to be your parents.

Stories of the Week - 7:00PM-8:00PM

EmbedVideo received the bad id "uimlQaWymEo"" for the service "youtube".

[Play music, Cut to sponsor logo, THEN START RECORDING]

Sponsors

  • Brought to you by Black Hills Information Security, the leaders in penetration testing and active defense. Email consulting@blackhillsinfosec.com to request a quote today!
  • And by Tenable Network Security, creators of Nessus, the world's best vulnerability scanner! Jumpstart your security program today and evaluate SecurityCenter CV, THE continuous monitoring solution. www.tenable.com

Announcements

[Cut to announcement Graphics]

  • Larry teaching SANS 617 Wireless Ethical Hacking and Defense coming up in Las Vegas, NV, September 14-19, and lots more places so be certain to check the SANS web site for more course offerings!

[End Music]

Paul's Stories

  1. Encrypted Web and Wi-Fi at risk as RC4 attacks become more practical
  2. gizmodo/full (Gizmodo) Apple's Thinking About Showing People Ads Based on Their Bank Balances
  3. Security Support Ends For Remaining Windows XP Machines
  4. Authentication Bypass Bug Hits Siemens Energy Automation Device
  5. Wi-Fi Alliance ushers in new era of intrusive apps
  6. Windows 10: you'll get UPDATES LIKE IT or NOT – unless you have Enterprise Edition
  7. Hacking Team: We Were Taken Out By A Government Conspiracy
  8. Third Hacking Team Flash Zero-Day Found
  9. Adobe
  10. After Flash
  11. Celebrity caught on police camera causes Twitter uproar
  12. Software and the bogeyman
  13. Your Wi-Fi Network’s Soft Underbelly
  14. Ford's 400


Joff's Stories of Hippie Love