psw745

Paul’s Security Weekly Episode #745 – June 22, 2022

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Learning Should Be Fun – 06:00 PM-07:00 PM

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

Many people think security is too difficult to learn because it is such a big field, and constantly growing. But it’s endlessly fascinating and surprising, once you learn some fundamentals and get used to feeling stupid. My task is to help people get started, and learn how to appreciate this complex and challenging topic.

Segment Resources:
https://samsclass.info/
https://infosecdecoded.com/

Guest(s)

Sam Bowne

Sam Bowne – Founder at Infosec Decoded, Inc.

@sambowne

Sam Bowne has been teaching computer networking and security classes at City College San Francisco since 2000. He has given talks and hands-on trainings at DEF CON, DEF CON China, Black Hat USA, HOPE, BSidesSF, BSidesLV, RSA, and many other conferences and colleges. He founded Infosec Decoded, Inc., and does corporate training and consulting for several Fortune 100 companies, on topics including Incident Response and Secure Coding.

Hosts

JoshMarpet

Josh Marpet

@quadling

Executive Director at RM-ISAO

PaulAsadoorian

Paul Asadoorian

@securityweekly

Founder at Security Weekly

TylerRobinson

Tyler Robinson

@tyler_robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

2. Plastic Bags, NSA Playsets, Megs Insecure, PHP Strikes Back, & Gamification – 07:00 PM-09:00 PM

Announcements

  • Don’t miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

  • Don’t forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Description

In the Security News for this week: appliances with holes, gamification and its pitfalls, false rocket sirens, PHP strikes again, new laws we may actually agree with, hacking jacuzzis, Icefall and the state of ICS security, Adobe is blocking anti-virus, Mega is Mega insecure, Microcorruption CTF and DIY NSA playset!

Hosts

JoshMarpet

Josh Marpet

@quadling

Executive Director at RM-ISAO

PaulAsadoorian

Paul Asadoorian

@securityweekly

Founder at Security Weekly

  1. Cisco warns of security holes in its security appliances
  2. Gamification of Ethical Hacking and Hacking Esports
  3. Authorities Suspect Cyber Attack Behind False Rocket Sirens in Israel
  4. Critical PHP flaw exposes QNAP NAS devices to RCE attacks
  5. Senate bill would ban data brokers from selling location and health data
  6. Hacking into the worldwide Jacuzzi SmartTub network
  7. Icefall: 56 flaws impact thousands of exposed industrial devices
  8. Zero Day Initiative — CVE-2022-23088: Exploiting a Heap Overflow in the FreeBSD Wi-Fi Stack
  9. Adobe Acrobat may block antivirus tools from monitoring PDF files
  10. Mega says it can’t decrypt your files. New POC exploit shows otherwise
  11. Meta Platforms Hacks CXL Memory Tier Into Linux
  12. Microcorruption
  13. NSA Playset
TylerRobinson

Tyler Robinson

@tyler_robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element