Aleksei Tiurin is the Senior Security Researcher for Acunetix. He is performing a technical segment on reverse proxies using weblogic, Tomcat, and Nginx.
To learn more about Acunetix, go to: www.acunetix.com/securityweekly
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode42 Follow us on Twitter: https://www.twitter.com/securityweekly
Matt Alderman interviews Jay Prassl, the CEO of Automox. Jay Prassl explains what Automox does, how Automox bridges the gap between ITOps and SecOps use case, and how Automox defines the way to patch systems in the MacOS, Linux, Windows, and MSP.
To learn more about Automox, go to: www.automox.com
Full Show Notes: https://wiki.securityweekly.com/BSWEpisode109
Hackers breach Dunkin Donuts, how insiders are serious threats to security in an organization, the return of email flooding, Microsoft helps police shut down fake tech support in India, and how Las Vegas police are cracking down on Black Market marijuana sales!
Full Show Notes: https://wiki.securityweekly.com/Episode584
Follow us on Twitter: https://www.twitter.com/securityweekly
Wietse Venema and Dan Farmer, the Developers of Security Administrator Tool for Analyzing Networks (SATAN), talk about their experience as developers, their journey to creating SATAN and their decision to keep SATAN a open source tool.
Full Show Notes: https://wiki.securityweekly.com/Episode584
Follow us on Twitter: https://www.twitter.com/securityweekly
Sven will talk about PHP Object injection vulnerabilities and explain the dangers of PHP's unserialize function. He will show the format of serialized PHP Objects, explain PHP's magic methods and how to write an exploit for a PHP Object Injection vulnerability during his technical demo.
Full Show Notes: https://wiki.securityweekly.com/Episode584
To learn more about Netsparker, go to: https://www.netsparker.com/securityweekly
Follow us on Twitter: https://www.twitter.com/securityweekly
tackPath launches EdgeEngine Serverless Computing, Alcide advances Cloud-Native security Firewall platform, Orkus launches Access Governance platform for Cloud Security, Tufin announces a new Cloud Security solution, and more!
Full Show Notes: https://wiki.securityweekly.com/ES_Episode117
Visit http://securityweekly.com/esw for all the latest episodes!
Hackers use Drupalgeddon 2 and Dirty COW exploits to take over web servers, second WordPress hacking campaign underway, USPS took a year to fix a vulnerability that exposed all 60 million users' data, this JavaScript can snoop on other Browser Tabs to work out what you're visiting, and more!
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode41 Follow us on Twitter: https://www.twitter.com/securityweekly
Jeremy Winter is Director of Azure Management, responsible for areas such as Azure Governance, Policy, Configuration, PowerShell, Disaster Recovery, Azure Migrate and the Azure Portal Experiences from within Azure Compute. He joins Paul and John to talk about Microsoft's Azure program, the shift in CloudOps and how it matters to security, and how it helps further the evolving roles of Cloud Ops and Cloud Security.
Full Show Notes: https://wiki.securityweekly.com/ES_Episode117
Visit http://securityweekly.com/esw for all the latest episodes!
The million-dollar question of cyber-risk, risk assessments essential to secure third-party vendor management, how digital tech is transforming business ecosystem, and more!
Full Show Notes: https://wiki.securityweekly.com/BSWEpisode108
Brent Dukes is a hacker, and Director of Information Security for an established manufacturing company. He joins Keith and Paul this week to talk about WAF’s, Pentesting, Burp Suite, and more!
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode41 Follow us on Twitter: https://www.twitter.com/securityweekly
Richard Seiersen a CISO with experience ranging from small technology companies to multi-national conglomerates. He joins Matt and Paul this week to talk about Richard’s CISO experience and expertise, and the book Richard co-authored called, "How to Measure Anything in Cybersecurity Risk".
Full Show Notes: https://wiki.securityweekly.com/BSWEpisode108
Israeli cybersecurity company Tufin plans NASDAQ IPO, F-Secure boosts endpoint detection and response, Mimecast joins IBM Security app exchange community, and Awake Security debuts Network Traffic Analysis Platform to detect risks!
Full Show Notes: https://wiki.securityweekly.com/ES_Episode116
Visit http://securityweekly.com/esw for all the latest episodes!
Rick Fernandez is the Sr. Sales Engineer focused on Sales Integrators at LogRhythm. The discussion is about what Sis want isn’t that different from the Enterprise. They discuss automating the hunt, contextualizing and enriching before analysts have to work with the alarm/data, and the ability to scale contextualization and enrichment so it pulls from your entire environment, not just a single source/log/event.
Full Show Notes: https://wiki.securityweekly.com/ES_Episode116
Visit http://securityweekly.com/esw for all the latest episodes!
Our interviews with Jeff Hudson the CEO of Venafi, Dr. Kimberlee A. Brannock and Michael Howard from HP, and Ben Bennett and Mark Hearn from Irdeto.
For Full DefCon18 Playlist, go to: https://securityweekly.com/summercamp18
Visit http://securityweekly.com/esw for all the latest episodes!
Jason Alburquerque and Paul discuss six ways you can establish which goals are important, how to diversify your professional network, the impact of perception and bias on leadership, and more!
Full Show Notes: https://wiki.securityweekly.com/BSWEpisode107
Michael Pleasant is the Chief Executive Officer at Open Security. Michael talks about how his transferring from Marine training to a business environment, brought a different perspective/technique to the business. He also talks about his company Open Source and their mission for the client.
Full Show Notes: https://wiki.securityweekly.com/BSWEpisode107
Instagram leaks passwords to the public, Clickjacking on Google MyAccount Worth $7,500, James Wickett's thread on Open Source SAST options, an advanced search tool for sensitive information stored in GitHub repos, and more!
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40 Follow us on Twitter: https://www.twitter.com/securityweekl
Previously co-founder and head of product at Layered Insight, John now leads container security engineering at Qualys after it's acquisition of Layered Insight. John talks about Qualys' Container Security that centralized, continuous discovery and tracking for containers and images.
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40 Follow us on Twitter: https://www.twitter.com/securityweekly
7 new Spectre/Meltdown attacks, Hacking ATM's for free cash is easier than Windows XP, AI can now fake fingerprints fooling ID scanners, and Japan's cybersecurity minister admits he's never used a computer!
Full Show Notes: https://wiki.securityweekly.com/Episode583
Follow us on Twitter: https://www.twitter.com/securityweekly
John is a Senior Product Manager at DFLabs, where he performs a wide variety of tasks from product management to content development and partner management. John Moran talks about IncMan SOAR and how DFLabs Automation & Response platform helps automate, orchestrate, and measure CSIRTs and SOCs.
To learn more about DFLabs, go to: www.dflabs.com/securityweekly Full Show Notes: https://wiki.securityweekly.com/Episode583
Follow us on Twitter: https://www.twitter.com/securityweekly
Jon Buhagiar is responsible for Network Operations at Pittsburgh Technical College for the past 19 years. Jon is currently a Network+ Review Course Instructor at Sybex, and he joins us to talk about Network Operations at Sybex.
Full Show Notes: https://wiki.securityweekly.com/Episode583
Follow us on Twitter: https://www.twitter.com/securityweekly
AlgoSec delivers Native Cloud Security Management for Azure, HP Reinvents customer experience with Ping Identity, what mid market security budgets will look like in 2019, and we have some acquisition & funding updates from ForeScout, Dragos, Netskope, Duality, and more!
Full Show Notes: https://wiki.securityweekly.com/ES_Episode115
Visit http://securityweekly.com/esw for all the latest episodes!
Brian Kelly is Head of Conjur Engineering at CyberArk, where he focuses on creating products that add much-needed security and identity management to the landscape of DevOps tools and cloud systems.
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode39
To learn more about Conjur, go to: www.conjur.org/asw
Follow us on Twitter: https://www.twitter.com/securityweekly
James Wickett is the Head of Research at Signal Sciences. James talks about how security is moving to the application space and web applications. WAFs may seem tedious but they are necessary to allow developers to focus on other things.
Full Show Notes: https://wiki.securityweekly.com/ES_Episode115
To learn more about Signal Sciences, go to: www.signalsciences.com/psw
Visit http://securityweekly.com/esw for all the latest episodes!
Dario Forte the CEO & Founder of DFLabs, explains his journey to the position he is in now. Dario talks about DFLabs and their platform tools. Dario also explains DFLabs recent press release about Open Integration Framework and what it allows people to do when it comes to the DFLabs platform addressing SOAR.
Full Show Notes: https://wiki.securityweekly.com/BSWEpisode106