Threat Modeling Archives - Security Weekly

CloudPassage, VMware Cloud, & Portshift K8SHIELD – ESW #192

Attivo Networks EDN enhancements prevent attackers from fingerprinting an endpoint, CloudPassage Expands Cloud Security Capabilities for Docker, Kubernetes, and Container-related Services on AWS, Digital Shadows…

Fixing Vulnerabilities Effectively & Efficiently – John Matherly – ASW #116

What does it take to fix vulns effectively and efficiently? There’s no lack of vulns identified from bug bounties and vuln reporting programs, but not…

Categories: Application Security Application Security Weekly Bug Bounties Interview IoT Penetration Testing Threat Modeling Vulnerability Management

Cloud Security Posture Management & Governance – Bhasker Nallapothula, Kris Rajana – ASW #115

Digital transformation is taking the IT industry by storm. As the pace of adoption of public cloud increases, security posture management and governance is usually…

Categories: Application Security Weekly Attack Surface Mgmt Cloud Security Container Security Interview Threat Modeling

Top Bug Bounty Rankings, Zoom 0-Day, & Firefox Send Malware – ASW #114

Microsoft OneDrive client for Windows Qt QML module hijack, Zero-day flaw found in Zoom for Windows 7, Protecting your remote workforce from application-based attacks like…

Categories: 3rd Party Risk Application Security Application Security Weekly Identity and Access News Threat Modeling

Protecting Mobile Applications – Catherine Chambers, Will Hickie – ASW #113

Sponsored By Visit https://securityweekly.com/irdeto for more information! What do you do if your ambition is to provide security for all the mobile apps in the…

Categories: Application Security Weekly Interview Mobile Security Security Research Threat Modeling

Guacamole RCE, PAN-OS Flaw, & A Culture of Resilience – ASW #113

Would you like some RCE with your Guacamole?, Attackers Will Target Critical PAN-OS Flaw, Security Experts Warn, Microsoft releases emergency security update to fix two…

Categories: Application Isolation Application Security Application Security Weekly Container Security News Threat Modeling

DLL Hijacking, Trust Through Privacy, & Adobe EOL Data – ASW #112

DLL Hijacking at the Trend Micro Password Manager, Adobe Prompts Users to Uninstall Flash Player As EOL Date Looms, The State of Open Source Security…

Categories: Application Security Application Security Weekly Cloud Security DevOps News Threat Modeling

CallStranger, SMBleedingGhost, & Misconfigured Kubeflow – ASW #111

CallStranger hits the horror trope where the call is coming from inside the house, SMBleedingGhost Writeup expands on prior SMB flaws that exposed kernel memory,…

Categories: Application Security Application Security Weekly DDoS DevOps IoT News Threat Modeling

Zoom Vulns, Apple 0-Days, & Abandoned Domains – ASW #110

Two vulnerabilities in Zoom could lead to code execution, Zero-day in Sign in with Apple, Focus on Speed Doesn’t Mean Focus on Automation, Apple pushes…

Categories: Application Security Application Security Weekly Bug Bounties DevOps Identity and Access News Threat Modeling

Dragos, AttackIQ, Cortex XSOAR, & SureCloud – ESW #186

SureCloud Launches Cyber Resilience Assessment Solution, Blackpoint Cyber launches 365 Defense – a Microsoft 365 security add-on for its MDR service, Endace and Palo Alto…

Categories: Cloud Security Enterprise Security Weekly News Threat Intelligence Threat Modeling Zero Trust

Filter By: