The Cybersecurity Podcast Network - Security Weekly | SC Media | SC Media

The Untold Stories of Ransomware – Fleming Shi – BSW #278

Identity and access

The Untold Stories of Ransomware – Fleming Shi – BSW #278

SmartScreen, Erbium, Graphite, Russian Cyber War, Metador, WhatsApp, & RSOCKS, – SWN #242

Vulnerability management

SmartScreen, Erbium, Graphite, Russian Cyber War, Metador, WhatsApp, & RSOCKS, – SWN #242

Firing Your Entire Cybersecurity Team? Really? Board Doesn’t Care About Buzzwords! – BSW #278

Firing Your Entire Cybersecurity Team? Really? Board Doesn’t Care About Buzzwords! – BSW #278

Authz Bypass in Oracle Cloud, Chrome Prototype Pollution, Why Security Products Fail – ASW #213

Authz Bypass in Oracle Cloud, Chrome Prototype Pollution, Why Security Products Fail – ASW #213

Demos & Training

Do It Yourself: Building a Security Lab At Home

Do It Yourself: Building a Security Lab At Home

Free and Open-Source Wireless IDS With Nzyme

Free and Open-Source Wireless IDS With Nzyme

Do These 5 Things to Catch More Bad Guys

Do These 5 Things to Catch More Bad Guys

KQL Kung Fu: Finding the Needle in the Haystack in Azure Environments

KQL Kung Fu: Finding the Needle in the Haystack in Azure Environments

SYSMON: Gaining Visibility Into Your Enterprise

SYSMON: Gaining Visibility Into Your Enterprise

Understanding Blockchain, Crypto, NFT’s, Smart Contracts, Web 3.0

Understanding Blockchain, Crypto, NFT’s, Smart Contracts, Web 3.0

Deploying Cloud Applications Securely

Deploying Cloud Applications Securely

Posts & News

Incident response

Incident response: practice like you play

Bill BrennerAugust 1, 2022

Vulnerability management

User experience: A key to effective vulnerability management

Paul AsadoorianMay 25, 2022

Vulnerability management has always been hard, with patches from myriad companies that must constantly be sorted by version and severity. It’s especially difficult when firmware needs updating.

Forensic Challenges for Security Professionals

Bill BrennerApril 19, 2022

Asset Management

CISA’s Shields Up: What it is, how to use it

Bill BrennerApril 12, 2022

SW Labs

Vulnerability management

Detectify’s Surface Monitoring Review | Security Weekly Labs

Paul AsadoorianMarch 11, 2022

A look at the company’s attack surface monitoring and web application scanning solution

Device Security

As XDR trend gains steam, new alliance seeks ‘shared schema’ for data exchange

Bradley BarthNovember 19, 2021

CrowdStrike CTO Michael Sentonas addressed the recently announced CrowdXDR Alliance and its goal of providing users with an XDR platform featuring a variety of integrated solutions.

SHOWS

Paul's Security weekly Subscribe

Firmware VS. Hardware, Tamper Protection, Hacking Gamers, & Unfortunate Spillage – PSW #756

Vulnerability management

Firmware VS. Hardware, Tamper Protection, Hacking Gamers, & Unfortunate Spillage – PSW #756

MFA Fatigue & Authentication – Sinan Eren – PSW #756

MFA Fatigue & Authentication – Sinan Eren – PSW #756

Using No-Code Automation to Tackle Analyst Burnout – Thomas Kinsella – PSW #755

Using No-Code Automation to Tackle Analyst Burnout – Thomas Kinsella – PSW #755

Crappy Exploits, $8 Mil 0-Day, Mac Updates, & Anti-Cheat Is NOT Anti-Hack – PSW #754

Vulnerability management

Crappy Exploits, $8 Mil 0-Day, Mac Updates, & Anti-Cheat Is NOT Anti-Hack – PSW #754

Turning Cybersecurity Education Into Industry Impact – John Hammond – PSW #754

Turning Cybersecurity Education Into Industry Impact – John Hammond – PSW #754

Enterprise security weekly Subscribe

Oracle Whoopsie, Internet 2.0 Funded, Fortanix Series C, & Dig Security – ESW #289

Oracle Whoopsie, Internet 2.0 Funded, Fortanix Series C, & Dig Security – ESW #289

How The Uber Breach Went Down – ESW #289

Identity and access

How The Uber Breach Went Down – ESW #289

Understanding DSPM: Data Security Revisited! – Jonathan Roizin – ESW #289

Understanding DSPM: Data Security Revisited! – Jonathan Roizin – ESW #289

Funding Rounds Rebound, Bitwarden Password Management, Cymulate, & Ethereum’s Merge – ESW #288

Vulnerability management

Funding Rounds Rebound, Bitwarden Password Management, Cymulate, & Ethereum’s Merge – ESW #288

Microsoft Identity Security Issues – Sean Metcalf – ESW #288

Identity and access

Microsoft Identity Security Issues – Sean Metcalf – ESW #288

Business security weekly Subscribe

Cybersecurity’s Too Important, Great Leaders Listen, and Stricter Cybersecurity Rules – BSW #277

Cybersecurity’s Too Important, Great Leaders Listen, and Stricter Cybersecurity Rules – BSW #277

Maximizing Risk-Reduction in your Security Program – Paul Baird – BSW #277

Vulnerability management

Maximizing Risk-Reduction in your Security Program – Paul Baird – BSW #277

Coaching, What CEOs Expect, How NOT to Fire Your Security Team – BSW #276

Coaching, What CEOs Expect, How NOT to Fire Your Security Team – BSW #276

Improve Your Leadership, Rekindling Community, and Cybersecurity Spending Strategies – BSW #275

Improve Your Leadership, Rekindling Community, and Cybersecurity Spending Strategies – BSW #275

How to Use Cybersecurity Scorecards and KPIs to Achieve your Security Goals – Brad Thies – BSW #275

How to Use Cybersecurity Scorecards and KPIs to Achieve your Security Goals – Brad Thies – BSW #275

Application security weekly Subscribe

Show, Don’t Tell, Your Developers How To Write Secure Code – Janet Worthington – ASW #213

Show, Don’t Tell, Your Developers How To Write Secure Code – Janet Worthington – ASW #213

Uber Breach, Rust Security Team, MiraclePtr, Supply Chain Criticism, Careers – ASW #212

Uber Breach, Rust Security Team, MiraclePtr, Supply Chain Criticism, Careers – ASW #212

API Security from a Developer’s Perspective – Sam Placette – ASW #212

API Security from a Developer’s Perspective – Sam Placette – ASW #212

Go Vuln Project, OSS-Fuzz Successes, No More Basic Auth, NSA Supply Chain Hardening – ASW #211

Vulnerability management

Go Vuln Project, OSS-Fuzz Successes, No More Basic Auth, NSA Supply Chain Hardening – ASW #211

Shifting Left Probably Left You Vulnerable. Here’s How You Can Make it Right. – Sonali Shah – ASW #211

Shifting Left Probably Left You Vulnerable. Here’s How You Can Make it Right. – Sonali Shah – ASW #211

Security & Compliance Weekly Subscribe

The Security Hippie, Part 2 – Barak Engel – SCW #99

The Security Hippie, Part 2 – Barak Engel – SCW #99

The Security Hippie, Part 1 – Barak Engel – SCW #99

The Security Hippie, Part 1 – Barak Engel – SCW #99

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 2 – Ben Carr – SCW #98

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 2 – Ben Carr – SCW #98

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 1 – Ben Carr – SCW #98

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 1 – Ben Carr – SCW #98

Hacker Situational Awareness, Part 2 – John Threat – SCW #97

Hacker Situational Awareness, Part 2 – John Threat – SCW #97

Security weekly news Subscribe

Bionic Cockroaches, Credential Stuffing, ICS, Magento, & SIM Swap Mobsters – Wrap Up – SWN #241

Vulnerability management

Bionic Cockroaches, Credential Stuffing, ICS, Magento, & SIM Swap Mobsters – Wrap Up – SWN #241

Hot planets, Chromeloader, MFA Fatigue, Lapsus$, Lastpass, & LockerGoga – SWN #240

Security awareness

Hot planets, Chromeloader, MFA Fatigue, Lapsus$, Lastpass, & LockerGoga – SWN #240

Meat Men, History, Putty, Crypto, Edge, YouTube, EU Laws, & Privacy – Wrap Up – SWN #239

Security awareness

Meat Men, History, Putty, Crypto, Edge, YouTube, EU Laws, & Privacy – Wrap Up – SWN #239

Steam, VMWare, Intel,HP, Apple, Craiglist killing, Meta, & Tiktok – SWN #238

Vulnerability management

Steam, VMWare, Intel,HP, Apple, Craiglist killing, Meta, & Tiktok – SWN #238

AI Art, CA Online Safety, Floppy Disks, Chile, Bad Apps, & Instagram – Wrap Up – SWN #237

Security awareness

AI Art, CA Online Safety, Floppy Disks, Chile, Bad Apps, & Instagram – Wrap Up – SWN #237

Tradecraft security weekly Subscribe

Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29

Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29

Google Event Injection – Tradecraft Security Weekly #20

Google Event Injection – Tradecraft Security Weekly #20

Dissecting XXE Attacks – Tradecraft Security Weekly #19

Dissecting XXE Attacks – Tradecraft Security Weekly #19

Pivoting Tools Through Meterpreter – Tradecraft Security Weekly #16

Pivoting Tools Through Meterpreter – Tradecraft Security Weekly #16

Black Hat & DEF CON 2017 – Tradecraft Security Weekly #13

Black Hat & DEF CON 2017 – Tradecraft Security Weekly #13