Bugs, Breaches, and More! – Application Security Weekly #48

 

 

Concerns about WordPress’ new “White Screen of Death”, Google Chrome changes could ‘destroy’ ad-blockers, Mozilla is adding and ad-blocker to Firefox Focus 9.0, Websites can steal browser data via extensions APIs, a Fortnite security issue would have granted hackers access to accounts, and more!

News

Bugs, Breaches, and More!
  1. Concerns raised about WordPress’ new ‘White Screen Of Death’ protection feature
  2. Fortnite security issue would have granted hackers access to accounts
  3. Cyber researcher pulls public talk on hacking Apple’s Face ID
If you build it, they will come
  1. Google Chrome changes could ‘destroy’ ad-blockers
  2. Mozilla is adding an Ad Blocker to Firefox Focus 9.0
  3. Websites can steal browser data via extensions APIs
Learning & Tools
  1. Dependency Check GitHub Action by Jerry Gamblin
  2. Sh00t – A Testing Environment for Manual Security Testers
  3. binctr – Fully static, unprivileged, self-contained, containers as executable binaries.
Food for Thought
  1. Security bugs are fundamentally different than quality bugs
  2. The dangers of the unibrow(ser)
  3. CommitStrip: It’s not Magic

Full Show Notes

Follow us on Twitter: https://www.twitter.com/securityweekly

Hosts

Paul Asadorian
Paul Asadorian – CEO, Security Weekly.
Keith Hoodlet
Keith Hoodlet – Application Security Manager, Thermo Fisher Scientific.

 

 

 

 

 

Announcements

  • RSA Conference 2019 is coming up March 4 – 8 in San Francisco! Go to rsaconference.com/securityweekly-us19 to register now using the discount code 5U9SWFD to receive $100 off a full conference pass! If you are interested in booking an interview or briefing with Security Weekly, please go to securityweekly.com/conferencerequest to submit your request!
  • Join us April 1-3, at Disney’s Contemporary Resort for InfoSec World 2019 where you can connect and network with like-minded individuals in search of actionable information. Visit https://infosecworld.misti.com/ and use the registration code OS19-SECWEEK for 15% off the Main Conference or World Pass. If you are interested in booking an interview or briefing with Security Weekly, please go to securityweekly.com/conferencerequest to submit your request!
  • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.