Webcasts On-Demand

Do you want the latest information about problems we face today in information security? If so, then you've come to the right place. If you've been busy, like we all are, then you may have missed a webcast (or 3) over the past year. No worries, we are now archiving select webcasts so you can register and watch previously recorded webcasts.

Each Security Weekly webcast that you attend will earn you 1 CPE credit! Grab a cigar and a glass of whiskey and let's earn some CPEs! (Just submit the webcast title with your certification body)

And check back often, as this page will be updated constantly with new webcasts!

The Internet Exposed: Findings from the National Internet Cloud Exposure Report

By Matt Alderman | July 16, 2020

As we all turn to the internet to fulfill our social needs during the global pandemic lockdown, it’s more crucial than ever that we actually understand our exposure. Rapid7 has just released the 2020 National / Internet / Cloud Exposure Report, affectionately called the NICER report. This work is the most comprehensive census of internet-based cyber-exposure yet.  In this live webcast, Paul Asadoorian and Matt Alderman will discuss internet-based risks they’ve seen across the industry, vulnerability management best practices, common security challenges, and more.  Tod Beardsley, Research Director at Rapid7,…

This Webcast is available on-demand
Listen Now!

Stitching and Enriching Flow Data

By Matt Alderman | June 11, 2020

Although Organizations using full packet capture are better prepared to battle cyber threats, the cost of collecting, storing, and accessing packet data can become very expensive. Flow data, on the other hand, doesn’t have enough information but is easier to gather and store. What if we could enrich flow data to solve cyber threats at a fraction of the cost of packet capture? In this live webcast, Paul Asadoorian and Matt Alderman will review various open source packet capture tools and discuss the challenges of collecting, storing, and analyzing packet…

This Webcast is available on-demand
Listen Now!

How to Prevent Account Takeover Attacks

By Matt Alderman | May 27, 2020

Attackers are using methods such as password spraying and credential theft to commit fraud against websites at an alarming rate. Automated bots are aiding the attacker to conduct these operations at scale. Your defensive strategy should include a mechanism to determine if a session is being controlled by a real user or a bot. How can we best accomplish this without creating too much friction between the real users and your web applications? In this webinar, Paul Asadoorian and Matt Alderman will discuss the challenges associated with account takeover and…

This Webcast is available on-demand
Listen Now!

Stranger Danger: Learn How Hidden Vulnerabilities Lead to Application Compromise

By Matt Alderman | May 14, 2020

Using a sample web application we will provide an example of a successful web application attack and highlight the importance of proactively finding and fixing open source vulnerabilities. The sample application has passed various checks for vulnerabilities, including select software composition analysis (SCA) tools. Most software composition analysis tools can discover vulnerabilities in direct dependencies, but what about transient dependencies?  Paul Asadoorian and Matt Alderman will discuss these questions and the challenges of scanning third-party components and libraries in your applications.   Simon Maple, VP of Developer Relations and Community at…

This Webcast is available on-demand
Listen Now!

How Penetration Testing Reduces Risk

By Matt Alderman | April 7, 2020

Though cybersecurity defenses are increasingly sophisticated, threat actors have also become more creative in order to achieve their end goals. They continue to find new ways to use the technologies most integral to businesses–mobile devices, computers, servers, websites, wifi, and email–as entry points to breach networks for malicious purposes. What more can be done to reduce the risk of attack? In this live webcast, Paul Asadoorian and Matt Alderman will review the different levels of penetration testing.  Pros and cons of each level will be discussed, including tools used, how…

This Webcast is available on-demand
Listen Now!

Application Security in the Era of Cloud Native

By Matt Alderman | March 30, 2020

As more organizations undergo digital transformation projects to modernize how they serve their customers, they need to make critical decisions about their applications.  They can either transition their monolithic legacy applications to the cloud or re-architect their applications to modern, distributed applications that leverage the newer cloud-native frameworks like Istio and Envoy Proxy.  In this webcast, Paul Asadoorian and Matt Alderman will discuss the challenges of migrating legacy applications vs. rearchitecting applications to leverage new cloud native capabilities.  Paul will discuss some of the real world challenges Security Weekly faced…

This Webcast is available on-demand
Listen Now!

Better, Faster, More Secure Code By Combining SAST and SCA

By Matt Alderman | March 11, 2020

Static application security testing (SAST) is critical for uncovering and eliminating issues in proprietary code. However, over 60% of the code in an average application today is composed of open source components. SAST isn’t designed to find open source vulnerabilities (CVEs) or identify open source licenses, that’s where software composition analysis (SCA) comes in.In this webcast, Paul Asadoorian and Matt Alderman will discuss the challenges of SAST and SCA as separate steps in the build process. An overview of some of the open source tools will also be discussed. Next,…

This Webcast is available on-demand
Listen Now!

Collecting & Analyzing Logs In Hybrid Cloud Environments

By Matt Alderman | February 26, 2020

This webcast attempts to break past the buzzwords and take a practical look at the changing landscape of IT infrastructure. The cloud has simplified many things but complicated others — like the important job of knowing what the hell is going on with your IT. Things get even crazier if you’re trying to merge in cyberphysical systems like medical devices, PLCs, etc.  With so many disparate systems in disparate locations, it’s more important than ever to find a practical way to unify your visibility. Out-of-the-box magic products and cybersecurity frameworks…

This Webcast is available on-demand
Listen Now!

Passwords Are NOT What They Are CRACKED Up To Be

By Matt Alderman | February 21, 2020

Proper authentication to sensitive systems is critical to the protection of information. Unfortunately, traditional password-based authentication mechanisms have proven to be insufficient and are a significant risk to data confidentiality and liability to organizations. The recently published NIST 800-63B, “Digital Identity Guidelines” reinforces this reality and contains standards for organizations to improve their authentication mechanisms while increasing usability.  In this virtual training, Paul Asadoorian and Online Business Systems will discuss password cracking.  Paul will provide an overview of Hashcat, while Adam Kehler and Rob Harvey will demonstrate how to generate…

This Webcast is available on-demand
Listen Now!

Cloud Native Network Detection and Response

By Matt Alderman | January 14, 2020

As more organizations adopt hybrid environments, integrating visibility and control of your cloud assets with your data center assets is challenging. In this webinar, Paul Asadoorian and Matt Alderman will discuss the challenges of visibility and control in the cloud. Sri Sundaralingam, Vice President, Product and Solutions Marketing at ExtraHop, will discuss a cloud native approach to network detection and response across your hybrid environment and demo ExtraHop’s capabilities, including: – Complete visibility, including cloud– Real-time threat detections– Intelligent response Register and watch this webcast now!

This Webcast is available on-demand
Listen Now!

Filter By: