CVE-2020-0601, Netscaler RCE, npm – PSW #635

January 16, 2020

We discuss the details and impact of the latest flaw, disclosed by NSA, in Windows 10 that allows attackers to pass off malware as signed applications and so much more. The Citric Netscaler vulnerability is a rare remote-easy-to-exploit opportunity for attackers. The crew also talks about book recommendations, backdoors in crypto (and why its bad), conspiracy theories and more!

Full episode and show notes

Hosts

Paul Asadoorian

Founder at Security Weekly

0offset

https://securityweekly.com

Jeff Man

#HackingisNotaCrime Advocate, Sr. InfoSec Consultant at Online Business Systems

Larry Pesce

Principal Managing Consultant and Director of Research & Development at InGuardians

https://www.inguardians.com/

Lee Neely

Information Assurance APL at Lawrence Livermore National Laboratory

https://www.omp.net/

Tyler Robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

TRob#6466

http://darkelement.io/

Malware

Fancy Bear Nukes, CISA/NSA on PowerShell, & More Crime – Wrap Up – SWN #219

June 24, 2022

This week, Jason Wood talks: Fancy Bear Nukes, CISA/NSA on PowerShell, and Lots More Crime, as well as all the show Wrap-Ups on the Security Weekly News!

Third-party risk

Stopping Phishing Attacks & A Fresh Approach to Reducing Cyber Risk – Chris Cleveland, Mehul Revankar – ESW #278

June 23, 2022

PIXM stops phishing attacks at point of click with computer vision in the browser, protecting users from phishing beyond the mailbox in any application. With the launch of PIXM Mobile, PIXM is now delivering this capability on iPhones as well as desktop devices. Segment Resources: https://pixmse...