<p>We discuss the details and impact of the latest flaw, disclosed by NSA, in Windows 10 that allows attackers to pass off malware as signed applications and so much more. The Citric Netscaler vulnerability is a rare remote-easy-to-exploit opportunity for attackers. The crew also talks about book recommendations, backdoors in crypto (and why its bad), conspiracy theories and more!</p>

Featured image for CVE-2020-0601, Netscaler RCE, npm – PSW #635 segment from PPWorks

Paul's Security Weekly

<p>If you&#8217;re looking for a bunch of us security nerds to get together and talk shop, then Paul’s Security Weekly is for you. This show features interviews with folks in the security community; technical segments, which are just that, very technical; and security news, which is an open discussion forum for the hosts to express their opinions about the latest security headlines, breaches, new exploits and vulnerabilities, “not” politics, “cyber” policies and more. The topics vary greatly and the atmosphere is relaxed and very conversational. This is a longer show, typically 2+ hours, for those with a long commute.</p>


Headshot for Paul Asadoorian from PPWorks

Founder

Headshot for Jeff Man from PPWorks

Sr. InfoSec Consultant – Online Business Systems

Headshot for Larry Pesce from PPWorks

Product Security Research and Analysis Director

Headshot for Lee Neely from PPWorks

Information Assurance APL

Headshot for Tyler Robinson from PPWorks

Director of Offensive Security & Research at Trimarc Security, Founder & CEO

Topic

CVE-2020-0601, Netscaler RCE, npm – PSW #635

CVE-2020-0601, Netscaler RCE, npm – PSW #635

Hosts

Related

Armoring the Unified Extensible Firmware Interface (UEFI), from Standards to Open Source – Vincent Zimmer – BTS #6

Vulnerability Research (& Other “Things”) – Nico Waisman – PSW #777

Security vs. Operations – Balancing the Risk – Ross Leo – CSP #114