- 1 Paul's Security Weekly #549
- 2 Announcements
- 3 Interview: Mary Beth Borgwing, Mach37 (Women in Cyber Con.) - 6:00PM-6:45PM
- 4 Interview: Bruce Sussman, SecureWorld Boston - 6:45-7:45PM
- 5 Security News - 7:45PM-8:30PM
Paul's Security Weekly #549
Recorded February 22, 2018 at G-Unit Studios in Rhode Island!
- Go to itpro.tv/securityweekly and use the code Secweekly30 to try it FREE for 7 days, and receive 30% off your monthly membership for the lifetime of your active subscription.
- Check out SOURCE Boston 2018 from May 9th - 10th! Go to sourceconference.com and register using the code SW89AEE2 to get a $100 discount!
- InfoSec World is March 19-21st of 2018. It is at Lake Buena Vista, Florida. Security Weekly subscribers can save 15% off the InfoSec World 2018 Main Conference or World Pass with the code OS18-SW!
- Security Weekly listeners save $100 off their registration for a full Conference Pass. Go to www.secureworldexpo.com and use the discount code SecurityWeekly, and join us at SecureWorld Boston!
Interview: Mary Beth Borgwing, Mach37 (Women in Cyber Con.) - 6:00PM-6:45PM
- How did you get your start in information security?
- What should people listening to this show want to know about GDPR?
- Why is the percentage of women working in this field so low compared to men?
- What is Mach37?
- What we can do as a community to support early stage startups?
- Where do some of the best ideas for new companies com from?
- What are some of the pros and cons to creating and running a startup?
- How do you apply to the Mach37 program?
- What are some of the companies that have come out of the program?
- If you were to create a startup today, what type of problem would you solve?
Interview: Bruce Sussman, SecureWorld Boston - 6:45-7:45PM
- How did you get into the security field?
- What was it like making the transition from meteorologist to security journalist?
- What are some of the most interesting people you've met in infosec and why?
- You say this is cybersecurity's prime time, how come?
- Tell us about your role today at Secure World?
- How does Secure World differ from other security conferences?
- Who is the speaker you are most excited about?
Security News - 7:45PM-8:30PM
- Quickjack Advanced Clickjacking & Frame Slicing Attack Tool
- How to Fight Mobile Number Port-out Scams
- Russians Hacked the Olympics
- Top Five Ways Security Vulnerabilities Hide in Your IT Systems
- Attackers Using Memcached Servers to Amplify DDoS Attacks
- GitHub Hit By Largest DDoS Attack Ever Recorded at 1.35 Tbps
- Two Thirds Of Organizations Not Prepared For GDPR Right To Be Forgotten
- 23,000 HTTPS Certs Will Be Axed In Next 24 Hours Amid Bitter Turf War
- Bad AI is still AI
- Detecting Lateral movement
- combine this with even better FB facial recognition...
- Bettercap 2.0!
- Cert compromises and a bit WTF moment - Also, more findings and WTAF
- FUD or REAL: N. Korean malware can jump air gaps
- Github DDoS
Don't forget your CPE's! Chip writes in: "You might remind your listeners, at least those with one or more security related certifications, to keep track of their listening and submit the hours they spend watching/listening as CPE hours to their various agencies. I racked up 35 hours in the last few months of last year.
I listen on my iphone, enter the listen date, show date, and duration into a spreadsheet and total it up every once in a while and submit it.
I’ve heard from several peers that they forgot to do CPE work for their CISSP and had to do a mad scramble in the month(s) before their 3 year cert expired. While keeping track of listening isn’t what I would call fun it is certainly better than going through hell at the end of the cycle.
I have CISSP, PCI-C, and CIPT certifications - I’ve submitted my PSW listening to all of them. "