Buffet Overflow – Application Security Weekly #40

November 19, 2018

This week, Keith and Paul interview John Kinsella, Vice President of Container Security at Qualys! John discusses Qualys’ Container Security, continuous discovery, and tracking for containers and images! In the Application Security News, Instagram leaks passwords to the public, Clickjacking on Google MyAccount Worth $7,500, James Wickett's thread on Open Source SAST options, an advanced search tool for sensitive information stored in GitHub repos, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter! Visit our website: https://www.securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

View Show Index

Full Audio

Segments

1. John Kinsella, Layered Insight –

Previously co-founder and head of product at Layered Insight, John now leads container security engineering at Qualys after it's acquisition of Layered Insight. John talks about Qualys' Container Security that centralized, continuous discovery and tracking for containers and images.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40

Hosts

Keith Hoodlet

Principal Security Specialist at GitHub

Paul Asadoorian

Founder at Security Weekly

0offset

https://securityweekly.com

2. Instagram, Kraken, GitMiner –

Instagram leaks passwords to the public, Clickjacking on Google MyAccount Worth $7,500, James Wickett's thread on Open Source SAST options, an advanced search tool for sensitive information stored in GitHub repos, and more!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode40

Hosts

Keith Hoodlet

Principal Security Specialist at GitHub

Paul Asadoorian

Founder at Security Weekly

0offset

https://securityweekly.com

Compliance

Connecting with Higher Education: New Talent at the Source – Fred Kwong – CSP #115

March 28, 2023

Finding cyber talent is difficult in today's market. At a time when cyber salaries are high, working with universities to tap into the new cyber workforce is something all companies should be looking at. Today we will explore how to work with universities to bring talent to your organization.

Managed services

Firing Your Clients: When Should MSSPs Cut Ties With Their Customers? – CFH #14

March 28, 2023

It's a tough call for MSSPs to make, but sometimes when a client relationship isn't working out, it may be time to cut your losses. Perhaps the customer isn't honoring its commitments to security hygiene; or maybe you're at odds over strategy; or it could be that they are a drain on your resources. This session will examine when to know it's the ri...

Managed services

Adopting the CIS Controls Framework: The Biggest Benefits & Challenges – Joe Alapat, Matt Miller – CFH #14

March 28, 2023

Now in its eighth iteration, the Center for Internet Security's Critical Security Controls (CIS Controls) framework provides organizations with 18 categories of high-priority best practices that they can follow in order to improve their cyber hygiene, while remaining in step with key regulations. In this segment, we'll look at what MSSPs and their ...

Buffet Overflow – Application Security Weekly #40

Full Audio

Segments

1. John Kinsella, Layered Insight –

Hosts

2. Instagram, Kraken, GitMiner –

Hosts

Related

Connecting with Higher Education: New Talent at the Source – Fred Kwong – CSP #115

Firing Your Clients: When Should MSSPs Cut Ties With Their Customers? – CFH #14

Adopting the CIS Controls Framework: The Biggest Benefits & Challenges – Joe Alapat, Matt Miller – CFH #14