Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw – ASW #209



Ideas on debugging with IDEs, Wiz.io shares technical details behind PostgreSQL attacks in cloud service providers, looking at the attack surface of source code management systems, a Xiaomi flaw that could enable forged payments, defensive appsec design from Signal, what targeted attacks mean for threat models when the targeting goes awry Visit https://www.securityweekly.com/asw for all the latest episodes!

Full Episode Show Notes

Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw

Hosts

Joe South

Joe South – Sr Content Creator at CyberRisk Alliance

@SecUnfPodcast

Joe South has been working in Cyber Security for over 8 years and has worked at companies of all sizes across multiple industries. Joe is also the host of the Security Unfiltered Podcast where he discusses current cyber security issues and educates his listeners on how to have a successful career in cyber security. Joe is currently in a role where he is empowered to implement a unified control framework across a multi-cloud environment. Joe has also created a widely known blog where he works to help others get into cyber security and have a successful career in the industry. Joe has obtained the CCSP, CCSK, AWS Security Specialty and the AWS CCP certifications, among others.

John Kinsella

John Kinsella – Co-founder & CTO at Cysense

@johnlkinsella

John Kinsella is the Co-founder & CTO of Cysense

Mike Shema

Mike Shema – Security Partner at Square

@Codexatron

Mike Shema is a Security Partner at Square.

Announcements

  • Don’t miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

  • Don’t forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.