Recent Attacks Against Software Integrity – Ed Skoudis – RSA21 #4



Ed Skoudis joins us to discuss recent attacks against software integrity, including:

– open source libraries
– session tracking for single sign on
– weak crypto
– machine learning (ML) algorithms used to detect malware
– ransomware attacks – how they are evolving

Full Episode Show Notes

Recent Attacks Against Software Integrity

Guests

Ed Skoudis

Ed Skoudis – SANS Fellow and Counter Hack Founder at SANS Institute & Counter Hack

@edskoudis

Ed Skoudis has taught cyber incident response and advanced penetration testing techniques to more than 12,000 cybersecurity professionals. He is a SANS Faculty Fellow and the lead for the SANS Penetration Testing Curriculum. His courses distill the essence of real-world, front-line case studies he accumulates because he is consistently one of the first experts brought in to provide after-attack analysis on major breaches where credit card and other sensitive financial data is lost.

Hosts

Paul Asadoorian

Paul Asadoorian – Founder at Security Weekly

@securityweekly

Paul Asadoorian is the founder of Security Weekly, which was acquired by CyberRisk Alliance. Paul spent time “in the trenches” implementing security programs for a lottery company and then a large university. Paul is offensive, having spent several years as a penetration tester. As Product Evangelist for Tenable Network Security, Paul built a library of materials on the topic of vulnerability management. When not hacking together embedded systems (or just plain hacking them) or coding silly projects in Python, Paul can be found researching his next set of headphones.