Episode552

From Paul's Security Weekly
Jump to: navigation, search

Paul's Security Weekly #552

Recorded March 22, 2018 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Jeff Man
    Cryptanalyst,
    infosec analyst, pioneering ex-NSA pen tester, PCI specialist,
    Tribe of Hackers, & InfoSec Curmudgeon.
    Currently a Sr. InfoSec Consultant for Online Business Systems.
  • Not Kevin
    Senior Security Engineer at Barkly, Co-Founder of Vermont Hackspaces, definitely Not Kevin.
  • Announcements

    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand. New webcast with LogRhythm called Getting Started With Threat Hunting Basics.
    • Go to itpro.tv/securityweekly and use the code Secweekly30 to try it FREE for 7 days, and receive 30% off your monthly membership for the lifetime of your active subscription.
    • Check out SOURCE Boston 2018 from May 9th - 10th! Go to sourceconference.com and register using the code SW75WMKW to get a $75 discount!
    • Social Engineering Rhode Island 2018 - Ticket Sales are open for Social Engineering RI Conference. Saturday, June 6th at Salve Regina University in Newport RI. Go to - http://se-ri.org/ to register! Patrick Laverty will be joining us for an interview next week. Stay tuned to hear more about this conference!

    Segment: How To Find The Most Innovative Tech At A Security Show - 6:45-7:45PM

    Questions for sales people:

    1. What is the biggest differentiator or even better the reason people buy it?
    2. Who is your competition?
    3. What are people most impressed with when you do a demo?
    4. Why do people buy your product?
    5. What problems do people have that buy your product?
    6. What problems or challenges do you help solve for your existing customers?

    Questions for slightly more technical people (evangelists or sales engineers):

    1. What is the feature you like best about your product?
    2. What is one feature that you wish more people knew about and used?
    3. Be specific with demos, ask to see a specific problem and solution

    What to do when you encounter an event marketing person:

    1. Ask them to help you navigate, who have they sent to the show and what are the roles
    2. Do they have anyone from the vendor speaking at the event?

    Some things that tend to be not the best usage of time:

    1. The printed materials handed out at the trade-show booth
    2. If they have a booth babe, they are out
    3. The signage and video loops seem to be of little help
    4. Sometimes local sales people make seem like you are wasting their time if so, run


    Security News - 7:45PM-8:30PM

    Paul's Stories

    1. Meet The Scarlett Johansson PostgreSQL Malware Attack
    2. Hacker Who Gave Up Wikileaks Source Dies
    3. Alex Stamos Might Be Leaving Facebook
    4. Israeli Security Attacks AMD by Publishing Zero-Day Exploits
    5. How We Reverse Engineered the Cuban Sonic Weapon Attack - IEEE Spectrum
    6. Researchers Can Earn up to $15K in Netflixs New Public Bug Bounty Program
    7. Travel site Orbitz warns data breach may have exposed 880,000 payment card details
    8. Apple To Fix Glitch Allowing Siri To Read Hidden Messages Out Loud
    9. Why Windows Defender Antivirus is the most deployed in the enterprise
    10. Hunting Cybercriminals with AWS Honey Tokens
    11. New whistleblower says Facebook turned a blind eye to covert data harvesting
    12. Is Application Security Dead?

    Jeff's Stories

    1. Uber Self-Driving Car Hits and Kills Pedestrian
    2. Facebook Data Harvesting Ethos Imperils Democracy
    3. Stamos Reportedly Leaving Facebook
    4. US Government Accuses Russia of Hacking Into Energy Infrastructure
    5. CIS Releases Revised Top-20 Critical Security Controls
    6. Atlanta hit by Ransomware Attack


    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+