300 episodes

Security news, interviews, how-to technical segments. For security professionals by security professionals. We Hack Naked.

Paul's Security Weekly (Video-Only) Security Weekly

    • Technology

Security news, interviews, how-to technical segments. For security professionals by security professionals. We Hack Naked.

    • video
    Discord Vulnerabilities, Chrome 0-Day, & Severe WordPress Flaw - PSW #671

    Discord Vulnerabilities, Chrome 0-Day, & Severe WordPress Flaw - PSW #671

    In the Security News, Testing firm NSS Labs closes up shop, stringing vulnerabilities together to pwn the Discord desktop app, a Wordpress plugin aimed at protecting Wordpress does the opposite, the FDA approves the use of a new tool for medical device vulnerability scoring, 8 new hot, steamy, moist cybersecurity certifications, and 5 things you can do to secure your home office without hiring an expert!
     
    Visit https://www.securityweekly.com/psw for all the latest episodes!
    Show Notes: https://wiki.securityweekly.com/psw671

    • 1 hr 38 min
    • video
    Hackers Hitting Below The Belt - Scott Scheferman - PSW #671

    Hackers Hitting Below The Belt - Scott Scheferman - PSW #671

    In 2020 attackers are increasingly targeting firmware and hardware - going below the operating system to hide from traditional security solutions and gain persistence. Both nation state actors and criminals are exploiting vulnerable, exposed firmware on network and VPN devices, and recently a new UEFI rootkit dubbed #MosaicRegressor was found in the wild. We'll discuss how and why attackers are targeting firmware and hardware, and the steps security professionals can take to gain visibility into this attack surface and protect enterprise devices. This segment is sponsored by Eclypsium.
     
    Show Notes: https://wiki.securityweekly.com/psw671
    Visit https://securityweekly.com/eclypsium to learn more about them!
    Visit https://www.securityweekly.com/psw for all the latest episodes! 

    • 53 min
    • video
    Sysmon Endpoint Monitoring, Now w/ Clipboard Voyeurism - Corey Thuen - PSW #671

    Sysmon Endpoint Monitoring, Now w/ Clipboard Voyeurism - Corey Thuen - PSW #671

    Sysmon is a free endpoint monitoring tool published by Microsoft in their sysinternals suite. It generates process creations, network connections, file creations, DNS, and now clipboard monitoring with v12. We'll discuss what's in the events and how to easily visualize and search them with Gravwell's new Sysmon Kit. This segment is sponsored by Gravwell.
     
    Show Notes: https://wiki.securityweekly.com/psw671
    Visit https://securityweekly.com/gravwell to learn more about them!
    Visit https://www.securityweekly.com/psw for all the latest episodes! 

    • 49 min
    • video
    'BleedingTooth' Vulnerability, Zoom Rolls Out E2EE, & 50,000 Cameras Compromised - PSW #670

    'BleedingTooth' Vulnerability, Zoom Rolls Out E2EE, & 50,000 Cameras Compromised - PSW #670

    In the Security News, Microsoft Uses Trademark Law to Disrupt Trickbot Botnet, Barnes & Noble cyber incident could expose customer shipping addresses and order history, Zoom Rolls Out End-to-End Encryption After Setbacks, Google Warns of Severe 'BleedingTooth' Low to Medium risk vulnerabilities, 5 Signs That Point to a Schism in Cybersecurity, and Using nginx to Customize Control of Your Hosted App!
     
    Visit https://www.securityweekly.com/psw for all the latest episodes!
    Show Notes: https://wiki.securityweekly.com/psw670

    • 1 hr 38 min
    • video
    Democratizing & Saasifying Security Operations - Patrick Garrity - PSW #670

    Democratizing & Saasifying Security Operations - Patrick Garrity - PSW #670

    Threats are no longer only a concern of large sophisticated organizations and there is a continued need to democratize security operations and controls so they are accessible to organizations of any size or skill level. Security services and tools need to be plug-in play for anyone with IT skills without requiring security expertise.
     
    Visit https://www.securityweekly.com/psw for all the latest episodes!
    Show Notes: https://wiki.securityweekly.com/psw670

    • 50 min
    • video
    Prioritize This, Prioritize That, Prioritize With Context! - Roi Cohen, Shani Dodge - PSW #670

    Prioritize This, Prioritize That, Prioritize With Context! - Roi Cohen, Shani Dodge - PSW #670

    Software vulnerabilities are exploding in growth at an unprecedented rate, and security teams are struggling to stay afloat. Lifebuoys (i.e. CVSS base scores) aren’t doing much to save them, either. A new advancement in threat prioritization offers relief, integrating the vulnerabilities’ surrounding characteristics to identify the most severe risks.
     
    This segment is sponsored by Vicarius. Visit https://securityweekly.com/vicarius to learn more about them!
    Visit https://www.securityweekly.com/psw for all the latest episodes!
    Show Notes: https://wiki.securityweekly.com/psw670

    • 49 min

Top Podcasts In Technology

Listeners Also Subscribed To