Paul's Security Weekly #526
Recorded August 17, 2017 at G-Unit Studios in Rhode Island!
Interview: Bryson Bort, GRIMM - 6:00PM-7:00PM
Bryson Bort is the Founder and CEO of GRIMM. Prior to GRIMM, Bryson led an elite research & development (R&D) division that directly contributed towards National Security priorities and interest. At the former, he served as the Deputy CTO for the company where he developed the corporate R&D program cybersecurity strategy, and was previously the Program Director of a business unit focused on supporting technology research and global infrastructure for DoD and the Intelligence Community.
As a U.S. Army Officer, Bryson led a tactical communications platoon in support of Operation Bright Star in September 2001. He served as a Battle Captain and as a Brigade Engineering Officer in support of Operation Enduring Freedom before leaving the Army at the rank of Captain.
- How did you get your start in information security?
- How and why did you start Grimm?
- Tell us a little about what Grimm does today?
- Recently you've announced Crossbow, what problem does it solve?
- Why is there such a gap in testing security products?
- What are some of the specific gaps that people miss when testing their security program?
- Doesn't pen testing test such gaps?
- If the tests are malware that does not cause harm, what can it miss?
- What types of gaps does Crossbow test?
- How can you make the most out of testing with Crossbow?
- What is the most common gap found when people use Crossbow?
- Three words to describe yourself.
- If you were a serial killer, what would be your weapon of choice?
- If you wrote a book about yourself, what would the title be?
- In the popular game of ass grabby-grabby, do you prefer to go first or second?
- Choose two celebrities to be your parents.
Tech Segment: Bypassing Input Filters with Sven Morgenroth, Netsparker - 7:00-7:30PM
Sven will be talking about and demoing how to bypass input filters for various web applications vulnerabilities. In his words:
Security News - 7:30-8:30PM
- Woman targeted with 120 images on public transport via AirDrop
- Unpatchable Flaw in Modern Cars Allows Hackers to Disable Safety Features
- Attackers Backdoor Another Software Update Mechanism
- Seven More Chrome Extensions Compromised
- Google Removes Chrome Extension Used in Banking Fraud
- Flash's Final Countdown Has Begun
- HBO Social Media Accounts Have Been Hacked
- ProtonMail Says It Hacked Back, Then Walks Claim Back
- Rowhammer RAM Attack Adapted To Hit Flash Storage
- Organizations Willing to Try Out Longer Passwords, Study Finds
- Study Shows Cyber-Security Pros Confident They Can Find Threats
- Profexor goes dark, but on the other side is a witness for the FBI against the Russians for hacking the DNC
- Scottish parliament under cyber attack
- Self driving Car Hacking
- Hacking over USB...so much less secure than ever thought
- attribution is hard