Paul’s Security Weekly Episode #696 – May 27, 2021
Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe
1. Polarity’s Power-up Sessions, Add an Ability in 15 Minutes – 06:00 PM-06:45 PM
Announcements
-
Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, join our Discord Server, and follow us on our newest live-streaming platform, Twitch!
-
Join us for our June 3 webcast at 11am ET, where you will learn about pen testing tools and why every organization should be using them regularly. Then join us on June 10 at 11am ET for our technical training on insider risk to learn how to quickly mitigate data exposure risks. Finally, join us June 24 to learn why web application firewalls keep changing and how these changes affect business in the security industry. Visit https://securityweekly.com/webcasts to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand
Description
Training is critical but it is tough to break away from the day to day. Polarity is running free 15 minute training sessions that leverage our community edition to leave you with a new ability to automate search and save time. Examples include, how to write basic regular expressions, how to find exploit code faster, basics of cyberchef, or how to read a malware sandbox report.
Segment Resources:
Sign up page: https://polarity.io/ctt/
Past 15min session with GreyNoise: https://youtu.be/sEWQbRU4Duc
Teaser for future session on searching malware sandboxes: https://youtu.be/qo3GxeVSdGg
Teaser for future session on searching for exploit code: https://youtu.be/mGcA8_8dPfg
Teaser for future session on searching for YARA rules: https://youtu.be/Fx8d_fIeFy8
Guest(s)
|
Paul Battista – CEO & Founder at Polarity @paulbattista Paul Battista is CEO and Co-Founder of Polarity.io. Prior to Polarity, Paul was an intelligence officer for the United States Government and participated in all elements of the intelligence cycle from planning operations through dissemination to senior policy makers in the White House. Before his government service, Paul was a senior engineer for Aetna Inc., a penetration tester, and incident responder for multiple fortune 100 customers. |
Hosts
Larry Pesce @haxorthematrix Principal Managing Consultant and Director of Research & Development at InGuardians |
Lee Neely @lelandneely Senior Cyber Analyst at Lawrence Livermore National Laboratory |
Paul Asadoorian @securityweekly Founder at Security Weekly |
2. Cybersecurity Canon – 07:00 PM-07:45 PM
Announcements
-
Security Weekly is more than happy to announce that we will be at InfoSec World 2021 IN PERSON October 25th-27th, 2021! This year, our annual partnership with InfoSec World is extra special, as we are both business units under the CyberRisk Alliance brand! What does that mean for Security Weekly listeners & InfoSec World attendees? You will get to see and hear from many of the Security Weekly team at the event AND you will save 20% off on your world pass! Visit https://securityweekly.com/isw2021 to register using our discount code!
Description
Rick Howard joins to talk about his Cybersecurity Canon project, the rock and roll hall of fame for Cybersecurity literature! The Cybersecurity Canon Committee has announced it’s hall of winners for 2021.
Segment Resources:
https://icdt.osu.edu/cybercanon
Guest(s)
|
Rick Howard – CSO at The CyberWire @raceBannon99 Rick is the Chief Analyst, Chief Security Officer, and Senior Fellow at The CyberWire, a cybersecurity podcasting network. His prior jobs include the Palo Alto Networks CSO, the TASC CISO, the iDefense GM (A commercial cyber threat intelligence service at Verisign,) the Counterpane Global SOC Director (one of the original MSSPs), and the Commander of the U.S. Army’s Computer Emergency Response Team where he coordinated network defense, network intelligence and network attack operations for the Army’s global network. He was one of the founding players that created the Cyber Threat Alliance (an ISAC for security vendors) and he also created and still runs the Cybersecurity Canon; a Rock & Roll Hall of Fame for cybersecurity books. Rick holds a Master of Computer Science degree from the Naval Postgraduate School and an engineering degree from the US Military Academy. He also taught computer science at the Academy from 1993 to 1999. He has published many academic papers on technology, security, and risk and has contributed as an executive editor to two books: “Cyber Fraud: Tactics, Techniques and Procedures” and “Cyber Security Essentials.” |
Hosts
Joff Thyer @joff_thyer Security Analyst at Black Hills Information Security |
Larry Pesce @haxorthematrix Principal Managing Consultant and Director of Research & Development at InGuardians |
Lee Neely @lelandneely Senior Cyber Analyst at Lawrence Livermore National Laboratory |
Paul Asadoorian @securityweekly Founder at Security Weekly |
3. M1 Chip Flaw, Boeing 747 Hacking, Don’t Blame the Intern, & John Deere – 08:00 PM-09:30 PM
Announcements
-
Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
Description
This week in the Security Weekly News, Paul and the Crew Talk: Nagios exploits, hacking a Boeing 747, bypass container image scanning, unpatchable new vulnerability in Apple M1 chips, stop blaming employees (Especially interns), spying on mac users, don’t tip off the attackers, security researcher plows John Deere, when FragAttacks, security by design, & more!
Hosts
Joff Thyer @joff_thyer
Security Analyst at Black Hills Information Security |
Larry Pesce @haxorthematrix
Principal Managing Consultant and Director of Research & Development at InGuardians |
|
Paul Asadoorian @securityweekly
Founder at Security Weekly |
|