Supermicro, Apache Struts, & HTTPS – Paul’s Security Weekly #574 | SC Media

Supermicro, Apache Struts, & HTTPS – Paul’s Security Weekly #574

September 8, 2018
In the security news, Spanish driver tests positive for every drug test, vulnerabilities found in the remote management interface of Supermicro servers, Apache Struts 2 flaw in the wild, HTTPS crypto-shame, and how to manipulate Apple's podcast charts!

Paul's Stories

  1. Spanish driver tests positive for every drug in test
  2. Remotely exploitable flaw in Schneider Electric PLCs is a danger to OT networks - Help Net Security
  3. Vulnerabilities found in the remote management interface of Supermicro servers | ZDNet
  4. Google fixes Chrome issue that allowed theft of WiFi logins | ZDNet
  5. Localhost HTTP debugging with Fiddler
  6. Red Flags Someone Is Spying on Your Computer | Reader's Digest
  7. Browser Extensions: Are They Worth the Risk? Krebs on Security
  8. Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild
  9. U.S. to Charge North Korean Spy Over WannaCry and Sony Pictures Hack
  10. HTTPS crypto-shame: TV Licensing website pulled offline
  11. How to manipulate Apple's podcast charts, and get yourself a top-rated show
  12. The Vulnerability Disclosure Process: Still Broken
  13. Cisco warns customers of critical security flaws, advisory includes Apache Struts | ZDNet

Doug's Stories

Full Show Notes Subscribe to YouTube Channel

Hosts

[caption id="attachment_210" align="alignleft" width="120"]Carlos Perez Carlos Perez - Principal Consultant, Team Lead for Research, TrustedSec.[/caption] [caption id="attachment_210" align="alignleft" width="120"]Not Kevin Not Kevin - Senior Sales Engineer, Barkly.[/caption] [caption id="attachment_210" align="alignleft" width="120"]Jack Daniel Jack Daniel - Security Wizard, Co-Founder of Security BSides.[/caption] [caption id="attachment_210" align="alignleft" width="120"]Paul Asadorian Paul Asadorian - CEO, Security Weekly.[/caption] [caption id="attachment_210" align="alignleft" width="120"]Joff Thyer Joff Thyer - Security Analyst, Black Hills Information Security.[/caption] [caption id="attachment_210" align="alignleft" width="120"]Patrick Laverty Patrick Laverty - Security Consultant, Rapid 7.[/caption] [caption id="attachment_210" align="alignleft" width="120"]Doug White Doug White - Professor, Roger Williams University.[/caption] [audio src="http://traffic.libsyn.com/pauldotcom/Supermicro_Apache_Struts__HTTPS_-_Pauls_Security_Weekly_574_converted.mp3" ]
prestitial ad