Difference between revisions of "ASW Episode47"

From Security Weekly Wiki
Jump to navigationJump to search
(Created page with "''Recorded January 21, 2019 at G-Unit Studios in Rhode Island!'' ==Hosts== {{Template:KeithH}} {{Template:Paul}} == Announcements == *RSA Conference 2019 is the place to be...")
 
 
(9 intermediate revisions by 3 users not shown)
Line 1: Line 1:
 
''Recorded January 21, 2019 at G-Unit Studios in Rhode Island!''
 
''Recorded January 21, 2019 at G-Unit Studios in Rhode Island!''
 +
 +
== Episode Audio ==
 +
 +
<div align="center">
 +
{{#widget:SoundCloud
 +
|id=563598795
 +
|width=75%
 +
|height=100
 +
|color=660202
 +
|visual=false
 +
}}
 +
</div>
  
 
==Hosts==
 
==Hosts==
{{Template:KeithH}}
+
{{Template:Matt}}
{{Template:Paul}}
+
[[File:JWickett.jpg|left|220px|thumb|<center>'''[https://twitter.com/wickett James Wickett]'''<br>Head of Research at [https://itpro.tv/ Signal Sciences].</center>]]
  
 
== Announcements ==
 
== Announcements ==
Line 10: Line 22:
 
*Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
 
*Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
  
= Interview:  =
+
= Topic: The Human Element of Application Security Training and Testing =
 
<!-- [[File:KenJohnson.jpg|right|220px|thumb|<center>'''[https://twitter.com/github Ken Johnson]'''<br> is a Application Security Engineer at [https://www.edgewise.net/securityweekly GitHub].</center>]] -->
 
<!-- [[File:KenJohnson.jpg|right|220px|thumb|<center>'''[https://twitter.com/github Ken Johnson]'''<br> is a Application Security Engineer at [https://www.edgewise.net/securityweekly GitHub].</center>]] -->
<br>
+
<center>{{#ev:youtube|bSQtPlhVMus}}</center>
 
+
Matt and James discuss the human element of application security training and testing, including:
==News==
+
* Why bugs should be treated equally
 +
* Why defect rates are hidden constants
 +
* How vulnerabilities are born
  
===== Bugs, Breaches, and More! =====
+
=News=
 +
<center>{{#ev:youtube|GbW9mTq4YnA}}</center>
 +
== Bugs, Breaches, and More! ==
 +
*[https://www.eweek.com/security/oracle-patches-284-vulnerabilities-in-january-critical-patch-update Oracle Patches 284 Vulnerabilities in January Critical Patch Update]
 +
*[https://securityboulevard.com/2019/01/mac-malware-osx-dok-is-back-actively-infecting-victims/ Mac Malware OSX.Dok is Back, Actively Infecting Victims]
 +
*[https://www.securityweek.com/bug-twitter-android-app-exposed-protected-tweets Bug in Twitter Android App Exposed Protected Tweets]
 +
*[https://securityaffairs.co/wordpress/80057/hacking/es-file-explorer-flaws.html ES File Explorer vulnerabilities potentially impact 100 Million Users]
  
===== If you Build It, They Will Come =====
+
== If you Build It, They Will Come ==
 +
*[https://www.crn.com/news/security/onapsis-to-buy-cyber-security-firm-virtual-forge-to-boost-sap-defense Onapsis To Buy Cyber Security Firm Virtual Forge To Boost SAP Defense]
 +
*[https://www.helpnetsecurity.com/2019/01/16/zix-appriver-acquisition/ Zix to acquire AppRiver, cloud-based cybersecurity solutions provider]
 +
*[https://www.helpnetsecurity.com/2019/01/18/protecting-privileged-access/ Protecting privileged access in DevOps and cloud environments]
  
===== Learning & Tools =====
+
== Learning & Tools ==
 +
*[https://levelup.gitconnected.com/vulnerabilities-management-5-ways-to-find-and-fix-open-source-vulnerabilities-ad4c046eb88 Vulnerabilities Management — 5 Ways to Find and Fix Open Source Vulnerabilities]
 +
*[https://medium.com/apis-and-digital-transformation/4-tips-for-better-api-security-in-2019-7d3a3b852a45 4 Tips for Better API Security in 2019]
 +
*[https://www.eweek.com/security/synopsys-updates-coverity-with-enhanced-analysis-capabilities Synopsys Updates Coverity With Enhanced Analysis Capabilities]
 +
*[https://securityboulevard.com/2019/01/improvements-to-sitecheck-website-scanner/ Improvements to SiteCheck Website Scanner]
  
===== Food for Thought =====
+
== Food for Thought ==
 +
*[https://www.itwire.com/strategy/85775-australian-businesses-increasingly-embrace-artificial-intelligence-report.html Australian businesses increasingly embrace Artificial Intelligence: report]
 +
*[http://www.digitaljournal.com/pr/4109933 Cybersecurity Market Is Growing at a CAGR of 11.45% from 2019 to 2025]
  
  
 
{{SocialMedia}}
 
{{SocialMedia}}

Latest revision as of 18:18, 7 May 2019

Recorded January 21, 2019 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • James Wickett
    Head of Research at Signal Sciences.

    Announcements

    • RSA Conference 2019 is the place to be for the latest in cybersecurity data, innovation and thought leadership. From March 4 – 8, San Francisco will come alive with cybersecurity’s brightest minds as they gather together to discuss the industry’s newest developments. Go to rsaconference.com/securityweekly-us19 to register now using the discount code 5U9SWFD to receive $100 off a full conference pass!
    • If you are interested in quality over quantity and having meaningful conversations instead of just a badge scan, join us April 1-3, at Disney's Contemporary Resort for InfoSec World 2019 where you can connect and network with like-minded individuals in search of actionable information. Use the registration code OS19-SECWEEK for 15% off the Main Conference or World Pass.
    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.

    Topic: The Human Element of Application Security Training and Testing

    Matt and James discuss the human element of application security training and testing, including:

    • Why bugs should be treated equally
    • Why defect rates are hidden constants
    • How vulnerabilities are born

    News

    Bugs, Breaches, and More!

    If you Build It, They Will Come

    Learning & Tools

    Food for Thought


    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+