Angry Floppy Birds – Paul’s Security Weekly #574

This week, Paul and the crew sit down with Wim Remes, Founder and Principal Consultant at Wire Security! In our Technical Segment, we welcome back Chris Brenton, Chief Operating Officer for Active Countermeasures, in which he explains why Beacon Analysis in an integral part of threat hunting! In the Security News this week, Vulnerabilities found in remote management interface of Supermicro servers, Google fixes Chrome issue that allowed theft of WiFi logins, U.S. to charge North Korean spy over WannaCry and Sony Pictures hack, how to manipulate Apple’s podcast charts, and a Spanish driver that tests positive for every drug on the test. All that and more, on this episode of Paul’s Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode574   ** Link to slides for the Technical Segment can be found in the show notes! Visit https://www.securityweekly.com/psw for all the latest episodes!   ?Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hu

View Show Index

Full Audio

Segments

1. Wim Remes, Wire Security bvba –

Wim Remes from Wire Security bvba comes on the show to talk about pentesting, SDLC, the state of security, life of a (virtual) CISO, and certifications.

Full Show Notes: https://wiki.securityweekly.com/Episode574

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Carlos Perez
Carlos Perez
Principal Consultant, Team Lead for Research at TrustedSec
Doug White
Doug White
Professor at Roger Williams University
Jack Daniel
Jack Daniel
Security Wizard at Co-Founder of Security BSides
Joff Thyer
Joff Thyer
Security Analyst at Black Hills Information Security
Not Kevin
Not Kevin
Senior Sales Engineer at Barkly
Patrick Laverty
Patrick Laverty
Security Consultant at Rapid 7

2. Beacon Analysis, Chris Brenton –

Beacon analysis is an integral part of threat hunting. If you are not looking for beacons you take the chance of missing compromised IoT devices or anything that does not have a threat mitigation agent installed. I'll talk about what makes beacon hunting so hard, and how the open source tool RITA can simplify the process.

Full Show Notes: https://wiki.securityweekly.com/Episode574

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Carlos Perez
Carlos Perez
Principal Consultant, Team Lead for Research at TrustedSec
Doug White
Doug White
Professor at Roger Williams University
Jack Daniel
Jack Daniel
Security Wizard at Co-Founder of Security BSides
Joff Thyer
Joff Thyer
Security Analyst at Black Hills Information Security
Not Kevin
Not Kevin
Senior Sales Engineer at Barkly
Patrick Laverty
Patrick Laverty
Security Consultant at Rapid 7

3. Supermicro, Apache Struts, & HTTPS –

In the security news, Spanish driver tests positive for every drug test, vulnerabilities found in the remote management interface of Supermicro servers, Apache Struts 2 flaw in the wild, HTTPS crypto-shame, and how to manipulate Apple's podcast charts!

Full Show Notes: https://wiki.securityweekly.com/Episode574

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Carlos Perez
Carlos Perez
Principal Consultant, Team Lead for Research at TrustedSec
Doug White
Doug White
Professor at Roger Williams University
Jack Daniel
Jack Daniel
Security Wizard at Co-Founder of Security BSides
Joff Thyer
Joff Thyer
Security Analyst at Black Hills Information Security
Not Kevin
Not Kevin
Senior Sales Engineer at Barkly
Patrick Laverty
Patrick Laverty
Security Consultant at Rapid 7

4. Beacon Analysis, Chris Brenton – Paul’s Security Weekly #574

Beacon analysis is an integral part of threat hunting. If you are not looking for beacons you take the chance of missing compromised IoT devices or anything that does not have a threat mitigation agent installed. I'll talk about what makes beacon hunting so hard, and how the open source tool RITA can simplify the process. ***Powerpoint Slides in Full Show Notes*** Full Show Notes: https://wiki.securityweekly.com/Episode574 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Host

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly

6. Supermicro, Apache Struts, & HTTPS – Paul’s Security Weekly #574

In the security news, Spanish driver tests positive for every drug test, vulnerabilities found in the remote management interface of Supermicro servers, Apache Struts 2 flaw in the wild, HTTPS crypto-shame, and how to manipulate Apple's podcast charts! Full Show Notes: https://wiki.securityweekly.com/Episode574 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Host

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
prestitial ad