Episdoe543

From Security Weekly Wiki
Jump to navigationJump to search

Paul's Security Weekly #543

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Larry Pesce
    Senior Managing Consultant and Director of Research at InGuardians, SANS Instructor.

  • Interview: Diana Kelley & Ed Moyle - Security Curve - 6:00PM-6:45PM

    Ed Moyle
    is currently Director of Thought Leadership and Research for ISACA. [
    Diana Kelley
    is Executive Security Advisor to IBM Security. [

    Diana Kelley is Executive Security Advisor to IBM Security and manages the IBM Security Newsroom. As ESA she leverages her 25+ years of cyber risk and security experience to provide advice and guidance to CISOs and security professionals. She is a regular contributor to SecurityIntelligence, X-Force Research and a co-author of IBM’s “Securing the C-Suite” study. She is a faculty member with IANS Research and serves on the Advisory Board for InfoSec World, Structure Security and the Content Committee for the Executive Women's Forum.She was an IEEE “Rock Star of Risk” in 2016 and speaks frequently at major conferences including: TED, RSA, CyberTech, CompuTex, and InfoSec World and has been quoted as a cybersecurity expert in many publications including: NYTimes, TIME, MSNBC.com, Information Security Magazine and The Wall Street Journal. She co-authored the bookCryptographic Libraries for Developers, and wrote the chapter on “PKI and Directories” for the PKI: Wiley Tech Brief and is a confirmed guest lecturer for Boston College’s Master of Science in Cybersecurity program.

    Ed Moyle is currently Director of Thought Leadership and Research for ISACA. Prior to joining ISACA, Ed was Senior Security Strategist with Savvis and a founding partner of the analyst firm Security Curve. In his 15+ years in information security, Ed has held numerous positions including: Senior Manager with CTG's global security practice, Vice President and Information Security Officer for Merrill Lynch Investment Managers, and Senior Security Analyst with Trintech. Ed is co-author of Cryptographic Libraries for Developers and a frequent contributor to the Information Security industry as author, public speaker, and analyst.


    Tech Segment: - 6:45-7:45PM

    https://www.endgame.com/blog/technical-blog/detecting-spectre-and-meltdown-using-hardware-performance-counters

    Security News - 7:45PM-8:30PM

    Paul's Stories

    1. Daniel Miessler on My Writings about IoT Security
    2. Prosecutors Say Mac Spyware Stole Millions Of User Images Over 13 Years - Disgusting The indictment, filed in US District Court for the Northern District of Ohio's Eastern Division, went on to say that Durachinsky developed a control panel that allowed him to manipulate infected computers and view live images from several machines simultaneously. The indictment also said he produced visual depictions of one or more minors engaging in sexually explicit conduct and that the depiction was transported across state lines. He allegedly developed a version of Fruitfly that was capable of infecting Windows computers as well. Prosecutors are asking the court for an order requiring Durachinsky to forfeit any property he derived from his 13-year campaign, an indication that he may have sold the images and data he acquired to others.
    3. Fingerprinting Digital Documents
    4. Skype finally getting end-to-end encryption
    5. Apple Set To Patch Yet Another macOS Password Security Flaw
    6. Wi-Fi Alliance launches WPA3 protocol with new security features
    7. FTC Fines IoT Toy Vendor VTech for Privacy Breach
    8. 147 Security Vulnerabilities Reported in ICS Mobile Applications

    Larry's Stories

    Jeff's Stories

    Jack's Stories

    Keith's Stories

    Correction of last weeks story: According to Daniel Miessler’s blog post, it looks like I mismatched the Intel vulnerabilities for the architectures they affect.


    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+