Episode523

From Paul's Security Weekly
Jump to: navigation, search

Episode Audio

Recorded on July 20, 2017

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Joff Thyer
    SANS Instructor, penetration tester, and Security Researcher at Black Hills Information Security.
  • Jeff Man
    Cryptanalyst,
    infosec analyst, pioneering ex-NSA pen tester, PCI specialist & certified security curmudgeon.
    Currently a Sr. InfoSec Consultant for Online Business Systems.
  • Tech Segment: Javelin ADProtect vs. Microsoft ATA with Almog Ohayon, Javelin Networks - 6:00PM-7:00PM

    Almog Ohayon, Co-Founder of Javelin Networks

    Almog is a Network & Security Architect who served in the Israeli Air Force as part of the OFEK unit. Afterwards, he worked in the private sector as a leader at companies like Cisco and Orange Telecom. He has designed and implemented hundreds of secured infrastructure networks all over the world.

    Tech Segment: Bypassing Corporate Firewalls with Sven Morgenroth, Netsparker - 7:00-7:30PM

    Sven Morgenroth, Security Researcher at Netsparker
    Sven Morgenroth is a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He likes to exploit vulnerabilities in creative ways and has hacked his smart TV without even leaving his bed. Sven writes about web application security and documents his research on the Netsparker blog.


    https://www.netsparker.com/blog/web-security/vulnerable-web-applications-developers-target/

    Security News - 7:30-8:30PM

    Paul's Stories

    1. New Linux Malware Exploits SambaCry Flaw to Silently Backdoor NAS Devices
    2. Bad Code Library Triggers Devils Ivy Vulnerability in Millions of IoT Devices
    3. Oracle Releases Biggest Update Ever: 308 Vulnerabilities Patched
    4. Apple Patches BroadPwn Bug in iOS 10.3.3
    5. Counter-Strike Bug Allowed Hackers To Completely Own Your Computer With A Frag
    6. FBI Warns About Security Risks From IoT-Connected Toys in Your Home
    7. Segway Hoverboard Hacked Demonstrating IoT Security Risks
    8. Exploit Kits Disappearing as Cloud and Mobile Security Challenges Grow
    9. Healthcare Industry Lacks Awareness of IoT threat, Survey Says
    10. It's Time To Stop Comparing Exploits To Physical Weapons
    11. Insurers Claim Hacks Could Cost More Than Hurricane Sandy
    12. AsTech Announces $5M Security Breach Warranty

    Jeff's Stories

    1. Kaspersky in the Crosshairs
    2. Trump Hotels Hit by 3rd Card Breach in 2 Years
    3. Devil’s Ivy IoT Vulnerability
    4. Five Ways That Companies Can Prepare for a Cyber Attack
    5. Hacker Summer Camp 2017 Planning Guide
    6. AlphaBay, Hansa Shut But Drug Dealers Flock to Dark Web DreamMarket