DevOps, IOT, Mobile, Pen testing, Bug bounties

ASW #116

July 28, 2020

What does it take to fix vulns effectively and efficiently? There’s no lack of vulns identified from bug bounties and vuln reporting programs, but not every vuln needs the same attention and not every vuln gets the attention it deserves.Visit https://www.securityweekly.com/asw for all the latest episodes!
Full Episode Show Notes

Fixing Vulnerabilities Effectively & Efficiently

Hosts

John Kinsella

John Kinsella – Vice President of Container Security

Matt Alderman

Matt Alderman – CEO

Mike Shema

Mike Shema – Product Security Lead

Guests

John Matherly

John Matherly – Founder

Announcements

  • Join the Security Weekly Mailing List for webcast/virtual training announcements and to receive your personal invite to our Discord server by visiting https://securityweekly.com/subscribe and clicking the button to join the list!
  • Security Weekly is an official media partner for Virtual BlackHat 2020! To register and save $200, visit https://securityweekly.com/summercamp2020 and click the register button. Discount code: “20SecWeekbh” Alongside Virtual BlackHat, we will be running our conference micro-interviews, you guessed it, virtually, in an event called Security Weekly Virtual Hacker Summer Camp, August 3 – August 6, 2020. Options, pricing and availability are all listed on the same page! Reserve your slot now to get your message out to BlackHat attendees!

TaskRouter JS SDK Security Incident, Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Read-Only Path Traversal Vulnerability, An EL1/EL3 coldboot vulnerability affecting 7 years of LG Android devices, Towards native security defenses for the web ecosystem, Academics smuggle 234 policy-violating skills on the Alexa Skills Store, Apple Security Research Device Program, and What is DevSecOps? Why it’s hard to do well!Visit https://www.securityweekly.com/asw for all the latest episodes!
Full Episode Show Notes

TaskRouter JS SDK, EL1/EL3 Vulnerability, & 234 Alexa Skills Store Violations

Hosts

John Kinsella

John Kinsella – Vice President of Container Security

Matt Alderman

Matt Alderman – CEO

Mike Shema

Mike Shema – Product Security Lead

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
  • Learn how to keep your “internet self” safe in our next webcast on August 13th! Register for our upcoming webcasts or virtual trainings by visiting https://securityweekly.com/webcasts. Or visit securityweekly.com/ondemand to view our previously recorded webcasts!
prestitial ad