From Paul's Security Weekly
- 1 Paul's Security Weekly #581
- 2 Announcements
- 3 Technical Segment: Aleksei Tiurin, Acunetix - 6:00-6:30PM
- 4 Tech Segment: Matt Toussain, BHIS - 6:30PM-7:00PM
- 5 Security News - 7:30 - 8:30PM
Paul's Security Weekly #581
Recorded November 1, 2018 at G-Unit Studios in Rhode Island!
- If you are interested in quality over quantity and having meaningful conversations instead of just a badge scan, join us April 1-3, at Disney's Contemporary Resort for InfoSec World 2019 where you can connect and network with like-minded individuals in search of actionable information. Use the registration code OS19-SECWEEK for 15% off the Main Conference or World Pass.
- Join us for our Webcast with Signal Sciences entitled Which way should you shift testing in the SDLC? This webcast will be held November 8th @3-4pm EST. Go to securityweekly.com/signalsciences to register now!
- One of our illustrious co-hosts, Patrick Laverty, will be co-presenting "Pentesting: Tips, Tricks and Stories" with Aaron Herndon at BSides CT 2019! Ticket sales are open until the day of the show (Saturday, November 3rd) for $20. Go to bsidesct.org to register now!
Technical Segment: Aleksei Tiurin, Acunetix - 6:00-6:30PM
Aleksei's Slides for Java Deser - File:Java Deser PSW.pdf (To Open: Click File and then click the Adobe logo)
Tech Segment: Matt Toussain, BHIS - 6:30PM-7:00PM
Security News - 7:30 - 8:30PM
- Web Security Stats Show XSS & Outdated Software Are Major Problems
- AWS Security Best Practices: AWS Lambda Security Design for Failure
- Employee used US government network for adult websites, infected infrastructure with Russian malware
- Bleedingbit Bluetooth Vulnerabilities Expose WiFi APs to Risk
- Security researchers find flaws in chips used in hospitals, factories and stores
- Not Every Security Flaw Is Created Equal
- Cisco Zero-Day Exploited In The Wild To Crash And Reload Devices
- This One Weird Trick Turns Your Google Home Hub Into A Doorstop
- Masscan and massive address lists
- Best Practices for Threat Hunting in Large Networks
- 9 Traits of A Strong Infosec Resume
- Federal Employees Porn Infects Government Network With Malware
- The “Ping of Death” in Apple products
- Hooray for embedding video in Word docs, because reasons
- Microsoft, making an attacker’s job harder (never thought I’d say that)
- BLE chip vulnerability exposes millions of devices
- Equifax Has Chosen Experian. Wait, What? - Not exactly security related, but ROFL!
- Buying Used Voting Machines on eBay
- Nice work if you can get it: GandCrab ransomware nets millions even though it has been broken