DevOps Archives - Security Weekly

Bug Bounties in Windows/WebKit, Edge Hardening, OAuth Hardening, & GoDaddy Breach – ASW #176

This week in the AppSec News: Bug bounty payout practices, Edge goes super duper secure mode, WebKit CSP flaw has consequences for OAuth, GoDaddy breach,…

Solving Systemic Risk in Software Development – Chris Wysopal – ASW #176

In today’s session Chris Wysopal will address a number of topics with Mike, including systemic risk in software development and how developers and security teams…

Categories: 3rd Party Risk Application Security Application Security Weekly DevOps Interview

CVEs 4 CSPs, Malicious PyPi, Bounty Programs, Shared Responsibility, & Breach Costs – ASW #175

This week in the AppSec News: What would CVEs for CSPs look like, clever C2 in malicious Python packages, diversity in bounty programs, shared responsibility…

Categories: 3rd Party Risk Application Security Application Security Weekly Bug Bounties Cloud Security DevOps News

wasmCloud – Distributed Computing With WebAssembly – Liam Randall – ASW #175

CNCF wasmCloud helps developers to build distributed microservices in WebAssembly that they can run across clouds, browsers, and everywhere securely. Segment Resources: – https://webassembly.org/ –…

Categories: Application Isolation Application Security Application Security Weekly DevOps Interview

Skill Building: CTFs & Computer Fundamentals – Derek Rook – PSW #719

Derek and the hosts will discuss technologies to build CTFs as well as what types of things to consider while doing so. They will also…

Categories: Attack Simulation DevOps Paul's Security Weekly Security Training Technical Segment

PAN-OS Vuln, ChaosDB, Fuzzing BusyBox, Refactoring in Rust, HTML Smuggling – ASW #174

In the AppSec news: Disclosure decisions and CVE-2021-3064, technical details behind ChaosDB in Azure, fuzzing BusyBox, Prossimo and Rust, vulns in Nucleus RTOS, & HTML…

Categories: Application Security Application Security Weekly Cloud Security DevOps IoT News Threat Modeling

Mobile Application Security – Ryan Lloyd – ASW #174

Sponsored By Visit https://securityweekly.com/guardsquare for more information! Mobile applications have a unique attack surface. The tools and techniques being…

Categories: Application Security Application Security Weekly DevOps Interview Mobile Security Threat Modeling

Who Is Your SOC Really For? – Ricardo Lafosse – CSP #43

Sponsored By Visit https://www.cybereason.com/cisostories for more information! Managing the volume of security events and continuous threat intelligence can be daunting for the largest of organizations….

Categories: 3rd Party Risk Careers DevOps Interview Leadership Managed Security Services Podcast Security Operations The CISO Stories Podcast Threat Intelligence Vulnerability Management

Linux Kernel TIPC RCE, NPM Malware, OTP 2FA Bots, & Security Labels – ASW #173

This week in the AppSec News, Mike and John talk: Excel gains support for JavaScript data types and functions, arbitrary code execution in Linux kernel…

Categories: 3rd Party Risk Application Security Application Security Weekly DevOps News Threat Modeling

A Standardized Approach to SBOM – Dan McKinney – ASW #173

Sponsored By Visit https://securityweekly.com/cloudsmith for more information! In this segment, Mike and Dan McKinney from Cloudsmith will be discussing SBOM and what that looks like…

Categories: 3rd Party Risk Application Security Application Security Weekly Compliance DevOps Interview

Filter By: