Top Ten List for 2018 – Enterprise Security Weekly #120
December 20, 2018
Paul, Matt Alderman, and John Strand talk Paul’s Top Ten List of 2018! They talk about Paul’s personal favorite acquisitions, breaches, vulnerabilities, interviews, attack tools, news articles, and more!
Paul's Top Ten List for 2018:
Top Productivity Tool: Hubspot
Top Breach: Equifax
Top Vulnerability: All of the Node.js library and add-on issues
Favorite Security Weekly Technical Segment: PHP Type Juggling (Sven)
Favorite 2019 Interview: Tie: Mandy and Dan Farmer & Weitse Venema
Favorite New Startup: Bitdiscovery
Favorite New Attack Technique: EternalSilance, Marcello
Favorite News Article: Drones used to smuggle contraband into prison
Favorite New Attack Tool: Everything MITRE ATT&CK Framework
Favorite Cybersecurity Acquisition: Duo (By Cisco)
Full Show Notes
Visit http://securityweekly.com/esw for all the latest episodes!
[audio src="http://traffic.libsyn.com/sw-all/Top_Ten_List_for_2018_-_Enterprise_Security_Weekly_120_converted.mp3" ]
Apple continues to stay in the limelight with news around zero-day exploits; unknown researcher alleges Apple failed to patch bugs he found and did not give him credit, then claims to have released exploit code.
Vulnerability scanners aren't quite as essential and central as they once were, but they're still necessary. This round of reviews will focus entirely on commercial and open-source network vulnerability scanners.
This review group will cover commercial and open-source network vulnerability scanners. In a few months, we’ll revisit vulnerability management to cover products that focus on analysis and remediation of vulnerability scanning results .