Bug Bounties in Windows/WebKit, Edge Hardening, OAuth Hardening, & GoDaddy Breach – ASW #176
This week in the AppSec News: Bug bounty payout practices, Edge goes super duper secure mode, WebKit CSP flaw has consequences for OAuth, GoDaddy breach,…
PAN-OS Vuln, ChaosDB, Fuzzing BusyBox, Refactoring in Rust, HTML Smuggling – ASW #174
In the AppSec news: Disclosure decisions and CVE-2021-3064, technical details behind ChaosDB in Azure, fuzzing BusyBox, Prossimo and Rust, vulns in Nucleus RTOS, & HTML…
Mobile Application Security – Ryan Lloyd – ASW #174
Sponsored By Visit https://securityweekly.com/guardsquare for more information! Mobile applications have a unique attack surface. The tools and techniques being…
Building a Risk Based Security Program That Actually Works – Nick Leghorn – ESW #250
Risk based security programs are all the rage, from managers looking to “trim” the security budget to regulatory bodies looking for excuses to fine your…
Linux Kernel TIPC RCE, NPM Malware, OTP 2FA Bots, & Security Labels – ASW #173
This week in the AppSec News, Mike and John talk: Excel gains support for JavaScript data types and functions, arbitrary code execution in Linux kernel…
Detecting the Next Breach: How to Win the War With NSX NDR – Chad Skipper – ESW #249
Sponsored By Visit https://securityweekly.com/vmware for more information! When it comes to detecting the next cyber breach, would your organization pass the test? Of course, in…
Untangling API Security in 2022 – Peter Klimek – ASW #172
Sponsored By Visit https://securityweekly.com/imperva for more information! Peter will talk to the challenges he’s hearing from customers and partners about managing the security of APIs…
UAParser.js Malware in NPM, Squirrel Sandbox Escape, Securing CI/CD, & AppSec Videos – ASW #171
This week in the AppSec News: Malware in the UAParser.js npm package, security vuln in Squirrel scripting language, a blueprint for securing software development, L0phtCrack…
View Source, Bindiff for Vuln Analysis, Bypass with GitHub Actions, & NIST DevSecOps – ASW #170
This Week in the AppSec News: View source good / vuln bad, IoT bad / rick-roll good, analyzing the iOS 15.0.2 patch to develop an…
Filter By:
Are We Ever Going to Get Information Sharing Right? – Edna Conway – ESW #252
In this interview, we discuss defenders sharing information, how Edna deals with Azure’s supply chain challenges, ransomware trends, and some future predictions. Edna has been…