Difference between revisions of "ASWEpisode114"
(Added By Paul's Craptastic PPWorks Code)
|Line 42:||Line 42:|
Judy . Ngure is a Cyber Engineer at Africastalking. She is the Founder of Women of Security Kenya and Cyber Security Researcher at hackerone.<br>
Revision as of 06:09, 13 July 2020
- 1 Application Security Weekly Episode #114 - July 13, 2020
- 2 1. Interview - DevSecOps - 12:30 PM-01:00 PM
- 3 2. News - Application News - 01:00 PM-01:30 PM
Application Security Weekly Episode #114 - July 13, 2020
Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe
1. Interview - DevSecOps - 12:30 PM-01:00 PM
- With all the recent changes to BlackHat and DefCon, we realized we can keep doing what we do best - host virtual podcasts! I’m proud to announce Hacker Summer Camp 2020, a Security Weekly Virtual, Live-Stream Event, August 3 - August 6, 2020. To reserve your slot now, visit: https://securityweekly.com/summercamp2020
- Register for our upcoming webcasts or virtual trainings by visiting https://securityweekly.com/webcasts. Or visit securityweekly.com/ondemand to view our previously recorded webcasts!
Judy Ngure is Cyber security engineer at Africastalking
Judy W. Ngure is a Cyber Security Engineer at Africastalking. She is the Founder of Women of Security Kenya and a Cyber Security Researcher at hackerone.
John Kinsella - Vice President of Container Security at Qualys Matt Alderman - CEO at Security Weekly Mike Shema - Product Security Lead at Square
2. News - Application News - 01:00 PM-01:30 PM
- Join the Security Weekly Mailing List for webcast/virtual training announcements and to receive your personal invite to our Discord server by visiting https://securityweekly.com/subscribe and clicking the button to join the list!
- We are looking for high-quality guest suggestions for all of our podcasts to fill our Q3 recording schedule! Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
John Kinsella's Content:
Matt Alderman's Content:
Mike Shema's Content:
- Microsoft OneDrive client for Windows Qt QML module hijack shows once again that DLL hijacking remains relevant and software composition remains rife with flaws.
- Zero-day flaw found in Zoom for Windows 7, which also means you have more security issues to worry about with end-of-life Windows than updated Zoom.
- Protecting your remote workforce from application-based attacks like consent phishing is a long headline that boils down to ensuring your threat models consider how your app protects authentication tokens like OAuth.
- Mozilla suspends Firefox Send service while it addresses malware abuse that boils down to ensuring your threat models consider how your app protects against misuse.
- Verizon Media, PayPal, Twitter Top Bug-Bounty Rankings, which isn't necessarily a ranking to strive for.
- Stop Talking About ‘Technical Debt’ provides a history of the term, but ends up making a case more for using productive metaphors than overwrought ones.