Episode503

From Security Weekly Wiki
Revision as of 16:26, 2 March 2017 by Jeff (talk | contribs)
Jump to navigationJump to search

Paul's Security Weekly - Episode 503

Episode Audio

[] Coming Soon

Recorded March 2nd, 2017

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Larry Pesce
    Senior Managing Consultant and Director of Research at InGuardians, SANS Instructor.
  • Jeff Man
    Cryptanalyst
    Infosec analyst
    Pioneering ex-NSA pen tester
    PCI specialist
    Tribe of Hackers
    InfoSec Curmudgeon
    Currently a Sr. InfoSec Consultant for Online Business Systems.
  • Joff Thyer
    SANS Instructor, penetration tester, and Security Researcher at Black Hills Information Security.
  • Jack Daniel
    Co-Founder of Security BSides and certified security wizard.

Announcements

  • ITPro.TV courses include Cybersecurity Analyst+, CCNA Cyber Ops, ITIL Operational Support and Analysis, Penetration Testing, Ethical Hacking v9. ITProTV is introducing a new membership level soon. All current Premium Members will be granted the highest membership level available, so ​sign up today! Visit​ itpro.tv/securityweekly and use code ​ SW30.
  • InfoSecWorld - Your 10% off discount code to promote to your members is OS17-SW. This will give them 10% off the main conference or the World Pass.
  • SCADA Security has always been, and continues to be, a hot topic in our industry. Our sponsor Waterfall Security is offering a free book for the first 100 listeners to register titled "SCADA Security: What's Broken and How To Fix It" by Andrew Ginter, Waterfall's VP of Industrial Security. Visit http://securityweekly.com/scada to get your free copy today!
  • Attend the InfoSecWorld conference on April 3-5 in Orlando Florida, tons of great talks and Security Weekly listeners get10% off by using the code OS17-SW. Find out more at infosecworld.misti.com
  • Attend SOURCE Boston on April 24-27th for training and awesome talks! Use the code SECURITYWEEKLY for $100 off either a conference ticket or one of the trainings. Find out more at source conference.com

Interview: - 6:00PM-7:00PM

Security News - 7:00-8:30PM

Paul's Stories

  1. Siemens RUGGEDCOM NMS Equipment Vulnerable to CSRF, XSS
  2. Slack Fixes Cross-Origin Token Theft Bug
  3. Cloudbleed Triggered 1.2M Times, Damage Kept to Minimum
  4. We found a hidden backdoor in Chinese Internet of Things devices researchers
  5. White Hat Hackers Warn Of Easy To Hack Household Robots
  6. Yahoo's Marissa Mayer Loses Cash Bonus Over Security Breaches
  7. Three Years after Heartbleed, How Vulnerable Are You?
  8. Researchers find severe flaw in WordPress plugin with 1 million installs
  9. Researchers uncover PowerShell Trojan that uses DNS queries to get its orders
  10. Recent Security Issues Show Vulnerability of the Cloud
  11. Use an Android password manager? Your private information could be at risk
  12. Over a million websites could be at risk from critical WordPress gallery plugin flaw
  13. Week in review: Mac ransomware, women in infosec, and the death of SHA-1 - Help Net Security
  14. Alarming number of businesses hit by hackers in past year: poll

Joff's Stories

Jeff's Stories

  1. It’s the End of SHA-1 and I Feel Fine
  2. Jeff visited the National Cryptologic Museum
  3. Watson will make Jeff a drink!
  4. What happened to the Amazon Cloud???
  5. Amazon S3 Outage is What Happens When One Site Hosts Too Much of the Internet
  6. (PCI Corner) More on Bluetooth POS Skimmers