Paul's Security Weekly #575
Recorded September 13, 2018 at G-Unit Studios in Rhode Island!
- Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
- DerbyCon is holding its first-ever Mental Health & Wellness Workshop - to help support their efforts, please go to DerbyCon.com/wellness
- Join us for our Webcast with LogRhythm about "Tips & Tricks for Defending the Enterprise Using Open Source Tools". The webcast will be held September 27 @3:00PM EST!
Interview: Brian Coulson, LogRhythm - 6:00-6:45PM
Brian Coulson is a Senior Security Research Engineer in the Threat Research Group of LogRhythm Labs in Boulder, CO. His primary focus is the Threat Detection Modules such as UEBA, and NTBA. He also focuses on emerging threat trends and determining what can be derived from the attacks that can be used for hardening guidance, and detections for analysts and incident responders.
Previously, he worked as a Lead Information Security Engineer at the largest commercial imaging satellite company in the United States where he was focused on incident response.
Tech Segment: Eyal Neemany, Bypassing PAM - 6:50PM-7:25PM
Former Head of Israeli Air Force CERT & Forensics Team, Senior Security Researcher at Javelin Networks.
Security News - 7:30-8:00PM
- Microsoft accidentally let encrypted Windows 10 out into the world
- Kernel exploit discovered in macOS Webroot SecureAnywhere antivirus software | ZDNet
- US carriers introduce Project Verify to replace individual app passwords
- Is hiring a hacker ever a good idea? | ZDNet
- Neil deGrasse Tyson on Elon Musk: Let the Man Get High
- Postmortem: Multiple Failures Behind the Equifax Breach
- Whisky business: Uni of Edinburgh servers Irn-Scru'd by cyber-attack
- PowerShell Obfuscation Ups the Ante on Antivirus
- Google Outlines Incident Response Process for Cloud Customers
- Identity and Access Management Market to grow at 10%+ CAGR from 2018 to 2024
- Veeam leaves MongoDB database wide open, exposes 445m records
- Bomgar Buys BeyondTrust
- eSentire Launches Integrated MDR and SIEM Platform for Full Threat Visibility and Rapid Response
- U.S. to Charge North Korean Spy Over WannaCry and Sony Pictures Hack
- British Airways Breach Caused by Credit Card Skimming Malware
- It took hackers just 22 lines of code to steal British Airways’ customer data
- The most popular "privacy" tool in Apple's Mac App Store was stealing users' browsing history and sending it to China
- Feedify Breach - not yet officially reported