The Cybersecurity Podcast Network - Security Weekly | SC Media | SC Media

Blurred Lines Between Consumer & Enterprise; Shades of Gray with MFA – Tim Morris – ESW #291

Identity and access

Blurred Lines Between Consumer & Enterprise; Shades of Gray with MFA – Tim Morris – ESW #291

Cloudflare Incentives, Web3 Funding, Emulating Adversaries, & State of the Sec Market – ESW #291

Cloudflare Incentives, Web3 Funding, Emulating Adversaries, & State of the Sec Market – ESW #291

Quantitative Security Planning from the Front-Line – Ryan Fried – ESW #291

Threat intelligence

Quantitative Security Planning from the Front-Line – Ryan Fried – ESW #291

Pig Butchering, Dell Driver FTW, Deep Access, & PHP Supply Chain Attacks – PSW #758

Threat intelligence

Pig Butchering, Dell Driver FTW, Deep Access, & PHP Supply Chain Attacks – PSW #758

Demos & Training

Do It Yourself: Building a Security Lab At Home

Do It Yourself: Building a Security Lab At Home

Free and Open-Source Wireless IDS With Nzyme

Free and Open-Source Wireless IDS With Nzyme

Do These 5 Things to Catch More Bad Guys

Do These 5 Things to Catch More Bad Guys

KQL Kung Fu: Finding the Needle in the Haystack in Azure Environments

KQL Kung Fu: Finding the Needle in the Haystack in Azure Environments

SYSMON: Gaining Visibility Into Your Enterprise

SYSMON: Gaining Visibility Into Your Enterprise

Understanding Blockchain, Crypto, NFT’s, Smart Contracts, Web 3.0

Understanding Blockchain, Crypto, NFT’s, Smart Contracts, Web 3.0

Deploying Cloud Applications Securely

Deploying Cloud Applications Securely

Posts & News

Incident response

Incident response: practice like you play

Bill BrennerAugust 1, 2022

Vulnerability management

User experience: A key to effective vulnerability management

Paul AsadoorianMay 25, 2022

Vulnerability management has always been hard, with patches from myriad companies that must constantly be sorted by version and severity. It’s especially difficult when firmware needs updating.

Forensic Challenges for Security Professionals

Bill BrennerApril 19, 2022

Asset Management

CISA’s Shields Up: What it is, how to use it

Bill BrennerApril 12, 2022

SW Labs

Vulnerability management

Detectify’s Surface Monitoring Review | Security Weekly Labs

Paul AsadoorianMarch 11, 2022

A look at the company’s attack surface monitoring and web application scanning solution

Device Security

As XDR trend gains steam, new alliance seeks ‘shared schema’ for data exchange

Bradley BarthNovember 19, 2021

CrowdStrike CTO Michael Sentonas addressed the recently announced CrowdXDR Alliance and its goal of providing users with an XDR platform featuring a variety of integrated solutions.

SHOWS

Paul's Security weekly Subscribe

Device Paradox: Why Security & Criticality Don’t Overlap in Embedded Systems – Ang Cui – PSW #758

Security awareness

Device Paradox: Why Security & Criticality Don’t Overlap in Embedded Systems – Ang Cui – PSW #758

Firmware VS. Hardware, Tamper Protection, Hacking Gamers, & Unfortunate Spillage – PSW #756

Vulnerability management

Firmware VS. Hardware, Tamper Protection, Hacking Gamers, & Unfortunate Spillage – PSW #756

MFA Fatigue & Authentication – Sinan Eren – PSW #756

MFA Fatigue & Authentication – Sinan Eren – PSW #756

Using No-Code Automation to Tackle Analyst Burnout – Thomas Kinsella – PSW #755

Using No-Code Automation to Tackle Analyst Burnout – Thomas Kinsella – PSW #755

Crappy Exploits, $8 Mil 0-Day, Mac Updates, & Anti-Cheat Is NOT Anti-Hack – PSW #754

Vulnerability management

Crappy Exploits, $8 Mil 0-Day, Mac Updates, & Anti-Cheat Is NOT Anti-Hack – PSW #754

Enterprise security weekly Subscribe

Oracle Whoopsie, Internet 2.0 Funded, Fortanix Series C, & Dig Security – ESW #289

Oracle Whoopsie, Internet 2.0 Funded, Fortanix Series C, & Dig Security – ESW #289

How The Uber Breach Went Down – ESW #289

Identity and access

How The Uber Breach Went Down – ESW #289

Understanding DSPM: Data Security Revisited! – Jonathan Roizin – ESW #289

Understanding DSPM: Data Security Revisited! – Jonathan Roizin – ESW #289

Funding Rounds Rebound, Bitwarden Password Management, Cymulate, & Ethereum’s Merge – ESW #288

Vulnerability management

Funding Rounds Rebound, Bitwarden Password Management, Cymulate, & Ethereum’s Merge – ESW #288

Microsoft Identity Security Issues – Sean Metcalf – ESW #288

Identity and access

Microsoft Identity Security Issues – Sean Metcalf – ESW #288

Business security weekly Subscribe

Fake CISO Profiles, Executive Communication, and Developing Cybersecurity Leadership – BSW #279

Fake CISO Profiles, Executive Communication, and Developing Cybersecurity Leadership – BSW #279

CYBER.ORG’s Project Access: Training a Diverse Future Workforce – Dr. Chuck Gardner – BSW #279

CYBER.ORG’s Project Access: Training a Diverse Future Workforce – Dr. Chuck Gardner – BSW #279

Firing Your Entire Cybersecurity Team? Really? Board Doesn’t Care About Buzzwords! – BSW #278

Firing Your Entire Cybersecurity Team? Really? Board Doesn’t Care About Buzzwords! – BSW #278

The Untold Stories of Ransomware – Fleming Shi – BSW #278

Identity and access

The Untold Stories of Ransomware – Fleming Shi – BSW #278

Cybersecurity’s Too Important, Great Leaders Listen, and Stricter Cybersecurity Rules – BSW #277

Cybersecurity’s Too Important, Great Leaders Listen, and Stricter Cybersecurity Rules – BSW #277

Application security weekly Subscribe

Exchange RCE, Patching at Scale, DORA Metrics, USENIX Best Papers, Passkeys – ASW #214

Exchange RCE, Patching at Scale, DORA Metrics, USENIX Best Papers, Passkeys – ASW #214

Critical Requirements for Cloud Native Application Security – Dean Agron – ASW #214

Critical Requirements for Cloud Native Application Security – Dean Agron – ASW #214

Authz Bypass in Oracle Cloud, Chrome Prototype Pollution, Why Security Products Fail – ASW #213

Authz Bypass in Oracle Cloud, Chrome Prototype Pollution, Why Security Products Fail – ASW #213

Show, Don’t Tell, Your Developers How To Write Secure Code – Janet Worthington – ASW #213

Show, Don’t Tell, Your Developers How To Write Secure Code – Janet Worthington – ASW #213

Uber Breach, Rust Security Team, MiraclePtr, Supply Chain Criticism, Careers – ASW #212

Uber Breach, Rust Security Team, MiraclePtr, Supply Chain Criticism, Careers – ASW #212

Security & Compliance Weekly Subscribe

The Security Hippie, Part 2 – Barak Engel – SCW #99

The Security Hippie, Part 2 – Barak Engel – SCW #99

The Security Hippie, Part 1 – Barak Engel – SCW #99

The Security Hippie, Part 1 – Barak Engel – SCW #99

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 2 – Ben Carr – SCW #98

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 2 – Ben Carr – SCW #98

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 1 – Ben Carr – SCW #98

Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 1 – Ben Carr – SCW #98

Hacker Situational Awareness, Part 2 – John Threat – SCW #97

Hacker Situational Awareness, Part 2 – John Threat – SCW #97

Security weekly news Subscribe

Bruce Willis, Comm100, Cyber month, Chromium, ProxyNotShell, & Cobalt Strike – SWN #244

Vulnerability management

Bruce Willis, Comm100, Cyber month, Chromium, ProxyNotShell, & Cobalt Strike – SWN #244

SmartScreen, Erbium, Graphite, Russian Cyber War, Metador, WhatsApp, & RSOCKS, – SWN #242

Vulnerability management

SmartScreen, Erbium, Graphite, Russian Cyber War, Metador, WhatsApp, & RSOCKS, – SWN #242

Bionic Cockroaches, Credential Stuffing, ICS, Magento, & SIM Swap Mobsters – Wrap Up – SWN #241

Vulnerability management

Bionic Cockroaches, Credential Stuffing, ICS, Magento, & SIM Swap Mobsters – Wrap Up – SWN #241

Hot planets, Chromeloader, MFA Fatigue, Lapsus$, Lastpass, & LockerGoga – SWN #240

Security awareness

Hot planets, Chromeloader, MFA Fatigue, Lapsus$, Lastpass, & LockerGoga – SWN #240

Meat Men, History, Putty, Crypto, Edge, YouTube, EU Laws, & Privacy – Wrap Up – SWN #239

Security awareness

Meat Men, History, Putty, Crypto, Edge, YouTube, EU Laws, & Privacy – Wrap Up – SWN #239

Tradecraft security weekly Subscribe

Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29

Evilginx2 Man-in-the-Middle Attacks – Tradecraft Security Weekly #29

Google Event Injection – Tradecraft Security Weekly #20

Google Event Injection – Tradecraft Security Weekly #20

Dissecting XXE Attacks – Tradecraft Security Weekly #19

Dissecting XXE Attacks – Tradecraft Security Weekly #19

Pivoting Tools Through Meterpreter – Tradecraft Security Weekly #16

Pivoting Tools Through Meterpreter – Tradecraft Security Weekly #16

Black Hat & DEF CON 2017 – Tradecraft Security Weekly #13

Black Hat & DEF CON 2017 – Tradecraft Security Weekly #13