Player FM - Internet Radio Done Right
11 subscribers
Checked 5d ago
Ditambah seven tahun yang lalu
Content provided by Security Weekly Productions. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Security Weekly Productions or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ro.player.fm/legal.
Player FM - Aplicație Podcast
Treceți offline cu aplicația Player FM !
Treceți offline cu aplicația Player FM !
Paul's Security Weekly (Video)
Marcați toate (ne)redate ...
Manage series 2122373
Content provided by Security Weekly Productions. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Security Weekly Productions or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ro.player.fm/legal.
Where security veterans unpack the latest IT security news, vulnerabilities, and research through a historical and technical lens that can cut through even the thickest cigar smoke. Hosted by Paul Asadoorian and Larry Pesce. Co-hosts: Josh Marpet, Jeff Man, Mandy Logan, Tyler Robinson.
…
continue reading
1135 episoade
Marcați toate (ne)redate ...
Manage series 2122373
Content provided by Security Weekly Productions. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Security Weekly Productions or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ro.player.fm/legal.
Where security veterans unpack the latest IT security news, vulnerabilities, and research through a historical and technical lens that can cut through even the thickest cigar smoke. Hosted by Paul Asadoorian and Larry Pesce. Co-hosts: Josh Marpet, Jeff Man, Mandy Logan, Tyler Robinson.
…
continue reading
1135 episoade
Minden epizód
×P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Prompt Injection, CISA, Patch Tuesday - PSW #861 2:05:09
2:05:09
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut2:05:09![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
You can install Linux in your PDF, just upload everything to AI, hackers behind the forum, TP-Link's taking security seriously, patche Tuesday for everyone including Intel, AMD, Microsoft, Fortinet, and Ivanti, hacking your space heater for fun and fire, Cybertrucks on fire (or not), if you could just go ahead and get rid of the buffer overflows, steam deck hacking and not what you think, Prompt Injection and Delayed Tool Invocation, new to me Ludus, Contec patient monitors are just insecure, Badbox carries on, the compiler saved me, and Telnet command injection! Show Notes: https://securityweekly.com/psw-861…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Deepseek, AMD, and Forgotten Buckets - PSW #860 2:06:54
2:06:54
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut2:06:54![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Deepseek troubles, AI models explained, AMD CPU microcode signature validation, what happens when you leave an AWS S3 bucket laying around, 3D printing tips, and the malware that never was on Ethernet to USB adapters. Show Notes: https://securityweekly.com/psw-860
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Cred Vaults, Cheap AI, and Hacking Devices - PSW #859 2:05:52
2:05:52
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut2:05:52![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
This week, we talked to our friends at Bitwarden about password vaults, storing more than just passwords, free software to manage those SSH keys, and vaults for developers. In the news, new/old Palo Alto vulnerabilities explained, taking down the power grid with a FlipperZero, more vulnerable bootloaders, putting garbage in your .ASS file, the US Government wants to look at routers, magic backdoors, weak password hashing, everyone is talking about Deepseek, hardware-level Anti-Virus, VMware ESXi and SSH, and if you pay the ransom you likely will not get your data back! This segment is sponsored by Bitwarden. Visit https://securityweekly.com/bitwarden to learn more about them! Show Notes: https://securityweekly.com/psw-859…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Vulnerability Prioritization In The Real World - PSW #858 2:19:16
2:19:16
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut2:19:16![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Andy Jaquith joins us to discuss how to prioritize vulnerabilities and remmediation in the real-world, including asset management and more! In the security news: ESP32s in the wild and security, Google oAuth flaw, DDoS targets, Ban on auto components, Bambu firmware updates, Silk Road founder is free, one last cybersecurity executive order, US Treasury hack update, Mitre launches a new program to deal with naming things, and educational content on Pornhub? (not what you think, its SFW!) Show Notes: https://securityweekly.com/psw-858…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Stopping The Bad Things - PSW #857 2:33:47
2:33:47
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut2:33:47![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Rob from ThreatLocker comes on the show to talk about how we can disrupt attacker techniques, including Zero Trust, privilege escalation, LOLbins, and evil virtualization. In the news we talk about security appliances and vulnerabilities, rsync vulnerabilities, Shmoocon, hacking devices, and more! This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them! Show Notes: https://securityweekly.com/psw-857…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Threat Actors With A Thousand Names - PSW #856 2:07:18
2:07:18
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut2:07:18![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
DNA sequencer vulnerabilities, threat actor naming conventions, new CNAs and problems, backdoors are not secrets (again), The RP2350 is hacked!, they know where your car is, treasury department hacked, what if someone hacked license plate cameras? Tenable CEO passes away, and very awkwardly, a Nessus plugin update causes problems, who needs fact-checking anyhow (And how people steal stuff and put it on Facebook), when you are breached, make sure you tell the victims how to be more secure, Salt Typhoon - still no real details other than more people were hacked and they are using the word sanctions a lot, Bitlocker bypassed again, Siri recorded you, and Apple pays, and yes, you can't print on Tuesdays! Show Notes: https://securityweekly.com/psw-856…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Hacker Heroes - Haroon Meer - PSW Vault 1:16:41
1:16:41
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:16:41![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Unraveling Cybersecurity Complexity: A Conversation with Haroon Meer Haroon Meer, an influential figure in the world of cybersecurity, takes center stage in this podcast interview. With a deep reservoir of knowledge and a track record of tackling complex security challenges, Haroon has established himself as a key player in the InfoSec domain. As the founder of Thinkst Applied Research, Haroon brings a wealth of practical experience to the table. Join us as we explore his professional journey, from early forays into cybersecurity to pioneering innovations that have reshaped how organizations approach security. Haroon Meer's insights go beyond the theoretical, offering a pragmatic understanding of cybersecurity issues and solutions. Dive into the intricacies of threat landscapes, security architectures, and the evolving dynamics of cyber threats as Haroon shares his perspectives on the current state of cybersecurity. With a focus on practicality and a knack for simplifying complex concepts, Haroon Meer's interview is a must-listen for anyone interested in the nuances of cybersecurity. Gain a deeper understanding of the challenges faced by security professionals and uncover valuable takeaways that can enhance your approach to securing digital environments. Join us as we explore the mind of a cybersecurity luminary, unraveling the layers of InfoSec intricacies with Haroon Meer in this enlightening podcast episode. Show Notes: https://securityweekly.com/vault-psw-14…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 The Number One Threat - PSW #855 1:49:51
1:49:51
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:49:51![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
XSS is the number one threat?, fix your bugs faster, hacking VoIP systems, AI and how it may help fuzzing, hacker gift guides, new DMA attacks, hacking InTune, Rhode Island gets hacked, OpenWrt supply chain issues, we are being spied on, Germans take down botnet, Bill and Larry are speaking at Shmoocon!, and TP-Link bans. Show Notes: https://securityweekly.com/psw-855…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 When Public Payphones Become Smart Phones - Inbar Raz - PSW #855 57:19
57:19
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut57:19![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
If you've ever wondered how attackers could go after payphones that are "smart" we got you covered! Inbar has done some amazing research and is here to tell us all about it! Segment Resources: https://www.retro.unarmedsecurity.net/post/%D7%9E%D7%A1%D7%AA%D7%91%D7%A8-%D7%A9%D7%92%D7%9D-%D7%98%D7%9C%D7%A4%D7%95%D7%9F-%D7%A6%D7%99%D7%91%D7%95%D7%A8%D7%99-%D7%94%D7%95%D7%90-%D7%98%D7%9C%D7%A4%D7%95%D7%9F-%D7%97%D7%9B%D7%9D Show Notes: https://securityweekly.com/psw-855…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 No Paul? We got this! - PSW #854 1:39:34
1:39:34
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:39:34![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
In the security news, the crew, (minus Paul) get to gather to discus hacks causing disruptions, in healthcare, donuts and vodka, router and OpenWRT hacks (and the two are not related), Salt/Volt Typhoon means no more texting and 10 year old vulnerabilities and more! Show Notes: https://securityweekly.com/psw-854…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Navigating Regulations in Supply Chain Security - Eric Greenwald - PSW #854 1:04:00
1:04:00
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:04:00![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Join us for this segment as we discuss government regulations and certifications as they apply to supply chain security and vulnerability management, and how understanding the mumbo jumbo can enable organizations to improve their cyber security. Show Notes: https://securityweekly.com/psw-854
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Security News - PSW #853 1:41:48
1:41:48
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:41:48![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Bootkitties and Linux bootkits, Canada realizes banning Flippers is silly, null bytes matter, CVE samples, how dark web marketplaces do security, Perl code from 2014 and vulnerabilities in needrestart, malware in gaming engines, the nearby neighbor attack, this week in security appliances featuring Sonicwall and Fortinet, footguns, and get it off the freakin public Internet! Show Notes: https://securityweekly.com/psw-853…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Hacker Gadgets - PSW #853 1:00:43
1:00:43
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:00:43![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
The hosts discuss hacker gadgets! We'll cover what we've been hacking on lately and discuss gadgets we want to work on in the future and other gadgets we want to get our hands on. Paul has been working with some M5Stack devices, a guide can be found here: https://securitypodcaster.com/m5stack-hacking-guide/ We will cover the Clockwork PI "uConsole" (RPI CM4) - https://www.clockworkpi.com/uconsole We want the RPI Pico 2 W and the RPI CM5 ( https://www.raspberrypi.com/products/ ) Paul upgraded one of his Flipper Zeros with Momentum Firmware ( https://momentum-fw.dev/ ) Paul and Larry have the new Crowview Note ( https://www.kickstarter.com/projects/elecrow/crowview-note-empowering-your-device-as-a-laptop?ref=20bm9i ) Larry's List: Cheap Yellow Display - https://github.com/witnessmenow/ESP32-Cheap-Yellow-Display KV4P HT - https://www.kv4p.com/ Lilygo T-Deck - https://lilygo.cc/products/t-deck Helltec LoRa32 https://heltec.org/project/wifi-lora-32-v3/ NRF52840-DK - https://www.mouser.com/ProductDetail/Nordic-Semiconductor/nRF52840-DK?qs=F5EMLAvA7IA76ZLjlwrwMw%3D%3D NRF52840 Dongle - https://www.mouser.com/ProductDetail/Nordic-Semiconductor/nRF52840-Dongle?qs=gTYE2QTfZfTbdrOaMHWEZg%3D%3D&mgh=1 MakerDialry NRF52840 - https://wiki.makerdiary.com/nrf52840-mdk-usb-dongle/ Radioberry - https://www.amazon.com/dp/B0CKN1PW4J Show Notes: https://securityweekly.com/psw-853…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Hacker Heroes - Aaron Turner - PSW Vault 1:31:24
1:31:24
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:31:24![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
In this Hacker Heroes episode, we sit down with Aaron Turner, a highly respected figure in the realm of cybersecurity. With a career spanning decades, Aaron has established himself as a thought leader and authority on various aspects of information security. As a seasoned cybersecurity professional, Aaron has navigated the evolving landscape of digital threats, contributing significantly to the development of strategies and solutions for protecting sensitive information. With a comprehensive understanding of the intricacies of cybersecurity, he brings a wealth of knowledge to our discussion. Join us as we explore Aaron's journey in the field, from the early stages of his career to his current role as a distinguished cybersecurity expert. Throughout the conversation, Aaron sheds light on the challenges faced by professionals in the industry and shares valuable insights into the dynamic nature of cyber threats. Aaron's expertise spans a range of cybersecurity domains, including risk management, incident response, and security policy development. Our discussion delves into the strategies and methodologies he employs to address the ever-changing landscape of cyber threats and secure digital infrastructures. For professionals in the cybersecurity space and those keen on understanding the intricacies of digital security, this podcast episode offers a unique opportunity to gain insights from Aaron Turner's wealth of experience. Tune in to explore the multifaceted world of cybersecurity and discover the strategies that have defined Aaron's impactful career. Show Notes: https://securityweekly.com/vault-psw-13…
P
Paul's Security Weekly (Video)
![Paul's Security Weekly (Video) podcast artwork](/static/images/64pixel.png)
1 Fortinet, Palo Alto, VMWare - PSW #852 1:58:33
1:58:33
Redare mai Târziu
Redare mai Târziu
Liste
Like
Plăcut1:58:33![icon](https://imagehost.player.fm/icons/general/red-pin.svg)
Fast cars kill people, Apple 0-Days, memory safety, poisoning the well, babble babble and malware that tries really hard to be stealthy, Palto Alto and Fortinet have some serious new vulnerabilities, open-source isn't free, but neither is commercial software, get on the TPM bus, find URLs with stealth, stealing credentials with more Palto Alto and Fortinet, the first zoom call, and one person's trash is another person's gaming PC! Show Notes: https://securityweekly.com/psw-852…
Bun venit la Player FM!
Player FM scanează web-ul pentru podcast-uri de înaltă calitate pentru a vă putea bucura acum. Este cea mai bună aplicație pentru podcast și funcționează pe Android, iPhone și pe web. Înscrieți-vă pentru a sincroniza abonamentele pe toate dispozitivele.