All Episodes
Security Weekly Podcast Network (Video) — 4839 episodes
You're not going to patch your way out of this - PSW #926
Optimize Legal Operations as the CISO Role Changes to Address Skills Gaps and AI - Walter Scott Wilkens - BSW #447
Tomato, JDownloader, TempPCP, Bad Vibes, Dirty Frag, Giedi Prime, Aaran Leyland... - SWN #580
Why Basic Security Practices Still Work - Rob Allen - ASW #382
The impact of Mythos and Florida Man, confidence gaps, phishing, & AI adoption - Erich Kron, Deepen Desai, Chris Wallis - ESW #458
Canvas, Shai-Hulud, QuasarRat, 0Days, Anthropic, Aaran Leyland, and EU Compliance! - SWN #579
Getting Rid of Your VPN - Rob Allen - PSW #925
Teach to Sell and Two Interviews from RSAC 2026 from Dropzone AI and Microsoft - Dan Rochon, Edward Wu, Arunesh Chandra - BSW #446
Zino, 0auth, VSS, Mental Health Hackers, 3 Days of KEV, Copy/Fail, AI, Aaran Leyland - SWN #578
Keeping Up With the OWASP GenAI Project - Scott Clinton - ASW #381
Post Quantum Migration Struggles, AI Threats, and Modern Defenses - Bobby Ford, HD Moore, Eyal Benishti, Ramin Farassat, Daniel dos Santos - ESW #457
DOS, Seneca the Younger, Outlook, CopyFail, cPanel, QR, Ruby, Go, Talkie, Josh Marpet - SWN #577
FIRESTARTER - PSW #924
The Next Frontier: Autonomous Security and RSAC Interviews from Quantro & SandboxAQ - Mark Hughes, Mehul Revankar, Marc Manzano - BSW #445
Elfsmasher, PYPI, Facebook, Glassworm, Medtronic, OpenSSH, Sararimen, Aaran Leyland - SWN #576
Top 10 Web Hacking Techniques of 2025 and a Hint for 2026 - James Kettle - ASW #380
Rethinking Security from the OS Up in the Age of AI and more RSAC 2026 Interviews - Craig Sanderson, Sachin Jade, Travis Wong, Phil Calvin, Karen Heart - ESW #456
Scylla &Charybdis, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland - SWN #575
Back to (or Start) Fundamentals? - Rajesh Khazanchi - PSW #923
From Shame to Fame: Changing Behaviors and RSAC Interviews from Tanium and Illumio - Craig Taylor, Tim Morris, Andrew Rubin - BSW #444
Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More... - SWN #574
The Human Aspect of Red Teams - Brian Fox, Tom Tovar, T. Gwyddon 'Data' Owen - ASW #379
Making AI actually work in the enterprise and more RSAC Conference 2026 interviews - Aamir Lakhani, Camellia Chan, Ely Abramovitch, Jody Brazil, Jim Spignardo - ESW #455
Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. - SWN #573
The AI "Vulnpocolypse" Is Real? - PSW #922
Not All CISO Gigs Are Created Equal and RSAC Interviews from ESET and Mimecast - Joanna Chen, Tony Anscombe, Rob Juncker - BSW #443
Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more - Kieran Human - SWN #572
Securing Software's Journey with the OWASP SPVS - Cameron W., Farshad Abasi, Rohan Ravindranath, Ido Geffen - ASW #378
We catch up on the news, including AI vuln hunting; also more RSAC interviews! - Mark Lambert, Samuel Hassine, John Wilson, Georges Bossert - ESW #454
Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. - SWN #571
AI Makes All Bug Shallow? - PSW #921
Zero Trust Readiness and Two RSAC 2026 Interviews from Fenix24 and Absolute Security - John Bruggeman, John Anthony Smith, Christy Wyatt - BSW #442
Cthullu, BlueHammer, NK, CUPs, Axios, Fortinet, Cognitive Surrender, Aaran Leyland - SWN #570
AppSec News Roundup on Claude Code Leak, Axios NPM Compromise, Secure Design - Idan Plotnik, Raj Mallempati - ASW #377
Battling payment fraud with tokenization and executive interviews from RSAC 2026 - Brian Oh, Mickey Bresman, Ashish Jain, Thyaga Vasudevan, Jimmy White - ESW #453
DexterBot, Darksword, Eviltokens, Tubular Bells, Claude, Drift, Gmail, Josh Marpet... - SWN #569
What Is A Router? (And all things AI) - PSW #920
Executive Paralysis and Two Pre-Recorded RSAC 2026 Interviews from DigiCert and Okta - Ann Marie van den Hurk, Amit Sinha, Matt Immler - BSW #441
Beyond the Hype: Cyber Readiness, Zero Trust, and an Unscripted Conversation - Rob Allen, Gibb Witham - SWN #568
Developing the Skills Needed for Modern Software Development - Keith Hoodlet, Ron Rasin, Shashwat Sehgal - ASW #376
Oops, all Interviews: Switching to Cyber, CISO Reflections, and the State of TPCRM - Lenny Zeltser, Helen Patton, Alexandre Sieira - ESW #452
Scam Baiting, AI, and the New Grift Economy, Part 2 - Rinoa Poison - SWN #567
Scanning The Internet with Linux Tools - PSW #919
Say Easy, Do Hard - Crypto-Agility - BSW #440
Scam Baiting, AI, and the New Grift Economy, Part 1 - Rinoa Poison - SWN #566
Why Proactive Security Is Far Better Than Patching - Erik Nost - ASW #375
Can AI help critical infrastructure, the state of the cyber market, and weekly news - Kara Sprague, Mike Privette - ESW #451
Ahab and Peewee Herman, Zoom, Vibe Hacking, SharePoint, Meta, AgeID, Josh Marpet - SWN #565
Hacking IP KVMs & Reversing with Radare2 - Sergi Àlvarez - PSW #918
Language of the Board as CISO-Board Time Falls Short and CISOs Struggle with Risk - Ben Wilcox - BSW #439
AI Spicy Mode, Steam, Glassworm, Samsung, Stryker, Waymo, Cole Porter, and More - SWN #564
Creating Better Security Guidance and Code with LLMs - Mark Curphey - ASW #374
AI Governance, new book (Code War) from Allie Mellen, and the weekly news! - Jeremy Snyder, Allie Mellen - ESW #450
Exposed: Bank Leak, Copilot Zero-Click, AI Agent Hijacks, Stryker Wipe & Josh Marpet - SWN #563
Vulnerability Mis-Management - PSW #917
Being Exploitable While Your Risk Tolerance Changes and You Unblock Innovation - Myke Lyons - BSW #438
Precious Bodily Fluids, InstallFix, CISA, Claude, Overtime, Sim Swaps, Aaran Leyland - SWN #562
Making Medical Devices Secure - Tamil Mathi - ASW #373
Breaking in with CrashFix, supply chain security, and CMMC phase 1 - Anna Pham, David Zendzian, Jacob Horne - ESW #449
Iran vs Everyone: 2FA-Bypass Phish, APT41 Drive, iOS 0days, Josh Marpet, and More - SWN #561
Airsnitch, Claude, Hacking Firewalls - PSW #916
Building Trusted Automation as Leaders Struggle with AI Adoption and CISOs Hire - Tim Morris - BSW #437
North Korea, DOJ, APT 28, Anthropic, OpenClaw, Supply Chain, Josh Marpet, and More - SWN #560
Modern AppSec that keeps pace with AI development - James Wickett - ASW #372
OT Security/business resilience, lack of incentives for securing software & the news - Ben Worthy - ESW #448
Brainstorm, SonicWall, Junos, Glienicke Brücke, Burger King, Claude, Josh Marpet... - SWN #559
AI Is Taking Over Cybersecurity - PSW #915
Security as a Business Enabler by Re-envisioning Risk and Leading through Uncertainty - Elyse Gunn - BSW #436
Infinite AI Monkeys, Ploutus, Serv-U, Fortinet, Cyberwar, COBOL, NIST, Aaran Leyland - SWN #558
Helping Users with Practical Advice to Protect their Digital Devices - Runa Sandvik - ASW #371
Bringing intelligence to assets, new White House cybersecurity strategy, and the news - Tim Morris - ESW #447
Code of Hammurabi, RockYou, MimicRat, Trustconnect, Introsort, AI, Josh Marpet... - SWN #557
Firmware Backdoors Be Spying On You - PSW #914
Security Money: The Index and NASDAQ Diverge - BSW #435
Meatbags, AI Soul Harvest, DNS, LastPass, GS7, OpenClaw, MYSQL, Aaran Leyland, and... - SWN #556
Conducting Secure Code Analysis with LLMs - ASW #370
Hardware-level zero trust, don't trust AI with your employees, and the news - Matias Katz, J Wolfgang Goerlich - ESW #446
Cams, Gelbwurst, Chrome, SCCM, CVES, SSHStalker, RAM, TikTok, Josh Marpet... - SWN #555
AI Vulnerability Hunting - PSW #913
Preparing For Q-Day as CISOs Face Quantum Disruption and Cyber Resilience Pressures - Sandy Carielli - BSW #434
Idoru, Singapore, Gambling, Smartertools, Ivanti, ZeroDayRat, Twiki, Aaran Leyland... - SWN #554
Bringing Strong Authentication and Granular Authorization for GenAI - Dan Moore - ASW #369
Clickfixed, Zero Trust World, and OpenClaw is out of control - but that's the point - Rob Allen - ESW #445
The smell of victory, Bongo Fury, Sysmon, Looker, Openclaw, Kimwolf, Josh Marpet - SWN #553
AI: No One Is Safe - PSW #912
Unexamined Leadership Behaviors as CEOs and CISOs Balance Cybersecurity Investments - Hacia Atherton - BSW #433
DBII, Notepad++, Covenant, Fancy Bear, CTFs, Firefox, AI Slop, Josh Marpet, and More - SWN #552
Focusing on Proactive Controls in the Face of LLM-Assisted Malware - Rob Allen - ASW #368
Initial entry to resilience: understanding modern attack flows and this week's news - Warwick Webb - ESW #444
AI Grief, Fortinet, BSODs, WINRAR, Montreaux, Big Iron, Memory Prices, Josh Marpet... - SWN #551
To curmudgeon or not to curmudgeon, that is the question. - PSW #911
Cloud Control As Leaders At Odds Over Cyber Priorities, But Require Strong Leadership - Rob Allen - BSW #432
Doombuds, Office, Telnetd, Chrome, Vishing, Ralph, PeckBirdy, The Boss, Aaran Leyland - SWN #550
Building proactive defenses that reflect the true nature of modern software risk - Paul Davis - ASW #367
The future of data control, why detection fails, and the weekly news - Thyaga Vasudevan - ESW #443
AI Cage Match, Fortinet, Cisco, DVWA, Polonium, Small Town AIs, LastPass, Josh Marpet - SWN #549
We Left It Vulnerable On Purpose - Rob Allen - PSW #910
Internal Audit Focal Points for 2026 as AI Impacts Conventional Cybersecurity - Tim Lietz - BSW #431
Carla the Ogre, extensions, Crashfix, Gemini, ChatGPT, Dark AI, MCP, Joshua Marpet - SWN #548
Lessons from MongoBleed, CWE Top 25, and Secure Coding Benchmarks - ASW #366
Making vulnerability management and incident response actually work. Also, the News! - Beck Norris, Ryan Fried, José Toledo - ESW #442
Miss Cleo, Whisperpair, Fortisiem, REDVDS, Google, Spying, Rob Allen and More... - Rob Allen - SWN #547
Digging For Vulnerability Gold - PSW #909
The Future Of Proactive Security Before Building an AI Enabled Enterprise - Erik Nost - BSW #430
Are you dead?, AI Hellscape, Copilot, Blue Delta, Quishing, Confer, Aaran Leyland... - SWN #546
Secure By Design Is Better Than Secure By Myth - Bob Lord - ASW #365
The State of Cybersecurity Hiring, 2026 content plans, and the weekly news - ESW #441
Nudification, Spying, Ni8mare, Cisco, Chat-GPT, Chrome, SaaS, CES, Josh Marpet & More - SWN #545
No FlipperZeros Allowed - PSW #908
CISO Lessons from a Children's Novel as Cybersecurity Outgrows IT and Building Talent - Tom Arnold - BSW #429
Pornhub Redux, Enki, Grok, BSODs, NORDVPN, Kimwolf, Privacy , Aaran Leyland, and More - SWN #544
The Upsides and Downsides of LLM-Generated Code - Chris Wysopal - ASW #364
Why are cybersecurity predictions so bad? - ESW #440
Defending the Boundaryless Cloud: Understanding Threats That Matter - Cameron Sipes, Steve Stone - SWN #543
Breaking Into Cybersecurity - PSW #907
Say Easy, Do Hard - Preventing Burnout, Focusing on CISO Health and Wellness - BSW #428
SentinelOne and AWS Shape the Future of AI Security with Purple AI - Brian Mendenhall, Rachel Park - SWN #542
AI-Era AppSec: Transparency, Trust, and Risk Beyond the Firewall - Felipe Zipitria, Steve Springett, Aruneesh Salhotra, Ken Huang - ASW #363
Holiday Chat: Local AI datacenter activism, AI can't substitute good taste, and more - ESW #439
Holiday Special Part 2: You're Gonna Click the Link - Rob Allen - SWN #541
Building a Hacking Lab in 2025 - PSW #906
The CISO Holiday Party 2025: Leadership Lessons from the Year That Was - BSW #427
Holiday Special Part 1: You're Gonna Click the Link - Rob Allen - SWN #540
Modern AppSec: OWASP SAMM, AI Secure Coding, Threat Modeling & Champions - Sebastian Deleersnyder, James Manico, Adam Shostack, Dustin Lehr - ASW #362
Auld Lang Syne, Ghostpairing, Centerstack, WAFS, React2Shell, Crypto, Josh Marpet... - SWN #539
With AI Nothing Is Safe - PSW #905
Cybersecurity Hiring Trends as Boards Bridge Confidence Gap and Build Strategic Lever - Jim McCoy - BSW #426
Pornhub, WSL, Santastealer, Geoserver, Webkit, Fortiyomama, Dad's pix, Aaran Leyland. - SWN #538
Developing Open Source Skills for Maintaining Projects - Kat Cosgrove - ASW #361
Illuminating Data Blind Spots, Topic, Enterprise News - Tony Kelly - ESW #437
Disney Gone Wild, Docker, AIs, Passkeys, Gogs, React2Shell, Notepad++, Josh Marpet... - SWN #537
Tech Segment: MITM Automation + Security News - Josh Bressers - PSW #904
Salesforce Security Risks, Boards Duty of Care, and Managing CISO Risks - Justin Hazard - BSW #425
Hypnotoad, AI Galore, Storm-0249, DocuSign, Broadside, Goldblade, Aaran Leyland... - SWN #536
Making OAuth Scale Securely for MCPs - Aaron Parecki - ASW #360
Fix your dumb misconfigurations, AI isn't people, and the weekly news - Danny Jenkins, Wendy Nather - ESW #436
Toilet Cams, N. Korea, Brickstorm, MCP, React2Shell, Proxmox, Metaverse, Josh Marpet - SWN #535
Holiday Hack Challenge, AI, Internet of Trash - Ed Skoudis - PSW #903
Shadow Risks in SaaS, Cybersecurity Market Has Lost Its Mind, and Rise of the CTrO - Mike Puglia - BSW #424
AI semantics, Calendly, Teams, Schmaltz, India, Antigravity, Scada, Aaran Leyland... - SWN #534
Making TN Critical Infrastructure the Most Secure in the Nation - T. Gwyddon 'Data' ("Gwee-thin") Owen, James Cotter - ASW #359
From Misconfigurations to Mission Control: Lessons from InfoSec World 2025 - Rob Allen, Perry Schumacher, Marene Allison, Ryan Heritage, Patricia Titus, Dr. Ron Ross - ESW #435
Dealing with loss, phone loss with Aaran, Doug, and Josh. - SWN #533
Vibe Coding For Success and Failure - PSW #902
Security Money: The Index is Back Near Highs as AI Leads the Discussion - BSW #423
AI and Cybersecurity - Shakour Abuzneid - SWN #532
Figuring Out Where to Start with Secure Code - ASW #358
Aligning teams for effective remediation, Anthropic's latest report, and the news - Ravid Circus - ESW #434
Emoticons, Sonicwall, Global Protect, Pop ups, WhatsApp, 7Zip, Roblox, Josh Marpet... - SWN #531
Give Me Liberty or Linux, Badge Hacking Interview - Bryce Owen - PSW #901
Health and Wellness of the CISO as They Crack Under Pressure and Need a BISO to Scale - Dr. Yonesy Núñez - BSW #422
Cloudflare, Gh0stRAT, npm, North Koreans, Arch, Steam, Documentaries, Aaran Leyland.. - SWN #530
Secure Coding as Critical Thinking Instead of Vulnspotting - Matias Madou - ASW #357
Year of the (Clandestine) Linux Desktop, topic, and the news - Rob Allen - ESW #433
Augustus De Morgan, Doordash, Fortiweb, Typosquatting, Vista, Ransomware, AI, More... - SWN #529
Going Around EDR - PSW #900
Securing Model Context Protocol as Companies Plan to Replace Entry Roles with AI - Rahul Parwani - BSW #421
Miles, 10/8 time, Lost Phones, Whisper Leak, Quantum Route, AI Galore, Rob Allen... - Rob Allen - SWN #528
Ransomware, Defaults, and Proactive Defenses - Rob Allen - ASW #356
OT Security Doesn't Have to be a Struggle, Spotting Red Flags, Enterprise News - Joshua Hay, Todd Peterson - ESW #432
AI-Obfuscating Malware, China Influence Ops, and Meta's Fraud Fortune and Jason Wood - SWN #527
Turning To The Darkside & AI Cyberslop - PSW #899
Defense Against Configurations as CIOs and CISOs Show Value Through Risks and Metrics - Rob Allen - BSW #420
Rogue Negotiators, Gemini Pulled, Apple's AI Shift, Disappearing CAPTCHAs, and More! - SWN #526
Researching and Remediating RCEs via GitHub Actions - Bar Kaduri, Roi Nisimi - ASW #355
Transforming Frontline Workflows with Passwordless Access, AI costs, and the News - Joel Burleson-Davis - ESW #431
AI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen - Rob Allen - SWN #525
Cybersecurity Is Dead - PSW #898
Emergence of the Chief Trust Officer as CISOs Earn Business Respect and Agenda Shifts - Jeff Pollard - BSW #419
Lockpick chaos, CoPhish, Atlas, Turing, ForumTroll, PKD, Kilgore Trout, Aaran Leyland - SWN #524
Quantum Computing Isn't A Threat To Blockchains - Yet - Sandy Carielli, Martha Bennett - ASW #354
Securing AI Agents with Dave Lewis, Enterprise News, and interviews from Oktane 2025 - Dave Lewis, Mike Poole, Conor Mulherin - ESW #430
Robo Bees, side, AI Risk, Red Tiger, SessionReaper, Bad Bots, Willow, Josh Marpet - SWN #523
Its Always DNS - PSW #897
Security That Sticks: Shaping Human Behavior - Nicole Jiang, Rinki Sethi - BSW #418
The Afterlife, AWS, ClickFix, Agentic AI, Robot Lumberjacks, Robocalls, Aaran Leyland - SWN #522
Reacting to Ransomware and Setting Secure Defaults - Rob Allen - ASW #353
Mitigating attacks against AI-enabled Apps, Replacing the CIA triad, Enterprise News - David Brauchler - ESW #429
Erotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland... - SWN #521
AI, EDR, and Hacking Things - PSW #896
Automating Compliance and Risk with Agentic AI as CISOs (R)Evolve - Trevor Horwitz - BSW #417
Bikers, Apple, Storm-657, Astaroth, EES, Salesforce, Aaran Leyland, and more... - SWN #520
Inside the OWASP GenAI Security Project - Steve Wilson - ASW #352
New book from Dr. Anand Singh, why CISOs buy, and the latest news - Anand Singh - ESW #428
Ballistic Hot Dogs, Clayrat, Twonet, Lockbit, Resumes, Discord, Aaran Leyland and... - SWN #519
IoT Hacks Galore - Kieran Human - PSW #895
Forrester's Global Cybersecurity Market Forecast Before AI Fully Kicks In - Merritt Maxim - BSW #416
Bad Crypto, Zombie CPUs, Y2K38,Park Mobile, Redis, Red Hat, Deloitte, Aaran Leyland.. - SWN #518
Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351
AI & IAM: Where Security Gets Superhuman (Or Supremely Stuck) - Dor Fledel, Alexander Makarov, Aaron Parecki, Heather Ceylan, Matt Immler, Nitin Raina - ESW #427
Ratboi, Clop, Oracle, svgs, Impact Solutions, The Pentagon, Open AI, Josh Marpet... - SWN #517
AI: The new trigger word. Or is it Robots? - PSW #894
Future Forward: CIO 2025 Outlook - Cybersecurity, AI, and Economic Uncertainty? - Amanda Jack - BSW #415
Attica, Crustacean Porn, Broadcom, William of Ockham, Jaguar, SVG, Aaran Leyland... - SWN #516
Changing the Vuln Conversation from Volume to Remediation - Francesco Cipollone - ASW #350
Live interviews from Oktane 2025: threats, AI in apps, and AI in cybersecurity tools - Brett Winterford, Shiv Ramji, Damon McDougald - ESW #426
Riker's Curse, River City, EDR-Freeze, MCP, WordPress, GitHub, Josh Marpet, and More. - SWN #515
Broadcom, LastPass, SEO Poisoning, QR codes, H1B visas, Distributed Computing... - PSW #893
Rearchitecting Systems for Privacy as AI Agents Force You to Rethink Security - Guillaume Jaulerry - BSW #414
Uhura, Collins, Nimbus Manticore, Sonic Wall, Async Rat, Solar Winds, Aaran Leyland.. - SWN #514
Design Errors in Entra ID, Design Defenses in iOS, Design Difficulties in DeepSeek - ASW #349
Disruption is Coming for the Vulnerability Management Market - Tod Beardsley - ESW #425
CrowdStrike's AI Innovations in Cyber Defense - SWN #513
Safes, Hackers, and Web Servers - PSW #892
Board Priority But Lack of Access & CISO Pressure, 360 Privacy and Pentera Interviews - Chuck Randolph, Tom Pore - BSW #413
AI Nuns, Steganography, You're fired, VoidProxy, C++, Carplay Apriso, Josh Marpet... - SWN #512
How OWASP's GenAI Security Project keeps up with the pace of AI/Agentic changes - Scott Clinton - ASW #348
Forrester's AEGIS Framework, the weekly news, and interviews with Fortra and Island - Jeff Pollard, Rohit Dhamankar, Michael Leland - ESW #424
Diella, Texas, Movie Rip Offs, WAF, AdaptixC2, Nano11, and More... - SWN #511
Americans Can't Hack It - PSW #891
Forrester 2026 Budget Planning Guide and BlackHat 2025 Interviews - Jess Burn, Danny Jenkins, Matt Muller - BSW #412
Hellhounds, Anthropic, iCloud, NPM, gitforked, notdoor, TOR, Signal, Josh Marpet - SWN #510
Limitations and Liabilities of LLM Coding - Ted Shorter, Seemant Sehgal - ASW #347
Ransomware, Agentic AI, and Supply Chain Risks: Insights from Black Hat 2025 - Theresa Lanowitz, Yuval Wollman, Mickey Bresman, J.J. Guy, Jason Passwaters, HD Moore, Jawahar "Jawa" Sivasankaran - ESW #423
AI Trolley Problems, Rhode Island Drivers, and Kohlbergian Post Conventionalism - SWN #509
Lasagna DoS, AI Slop, Hacker Ultimatums - PSW #890
Security Money: The Index Dips and 20 Years of Cybersecurity Consolidation - Ross Haleliuk - BSW #411
Rinoa Poison, Scambaiter Extraordinaire - Rinoa Poison - SWN #508
AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Michael Callahan, Idan Plotnik, Josh Lemos, Chris Boehm - ASW #346
Dave Lewis talks M&A due diligence, TBD topic, the weekly news - Dave Lewis - ESW #422
Astro Oblivion, FreePBX, GitHub, OWASP, Promptlock, Claude Aaran Leyland - SWN #507
Hackers Steal Your Car and Vulnerabilities - Rob Allen - PSW #889
vCISO Benefits as the CISO Becomes Strategic and the Board's Responsible for Security - Brian Haugli - BSW #410
Naughty RBG, Docker, RDP, SBOMS, Kullback-Leibler, Oneflip, Youtube, Josh Marpet... - SWN #506
Translating Security Regulations into Secure Projects - Emily Fox, Roman Zhukov - ASW #345
Oktane Preview with Harish Peri, Invisible Prompt Attacks, and the weekly news! - Harish Peri - ESW #421
Humans extinct: 2040, Okta, Elastic, Bad Bots, Berserk Bear, Siemens, Aaran Leyland.. - SWN #505
What We've Learned from LockBit and Black Basta Leaks (and News) - Ian Gray - PSW #888
Misconfiguration, The Forgotten Vulnerability and the Power and Failure of "Yes" - Danny Jenkins - BSW #409
The cult of Doug, Crime, Pipemagic, Clickfix, Cats in Space, Josh Marpet, and more... - SWN #504
Managing the Minimization of a Container Attack Surface - Neil Carpenter - ASW #344
Rethinking risk based vulnerability management, Black Hat expo insights, and the news - Snehal Antani - ESW #420
Creepy chatbots, Fortinet, CISA, Agentic AI, FIDO, EDR, Aaran Leyland, and More... - SWN #503
Hackberry PIs and Other Hacker Things - PSW #887
Defending Trust & Reputation as CISOs and Leaders Prepare Their AI Strategy - Santosh Nair - BSW #408
300 Baud, Buddy Hackett Nudes, Dell, badUSB, Exchange, Erlang/OTP, Josh Marpet... - SWN #502
The Future of Supply Chain Security - Janet Worthington - ASW #343
ESW at BlackHat and the weekly enterprise security news - ESW #419
SonicWall, Informants Exposed, Cisco Vishing, Perplexity, GPT‑5, Josh Marpet–SWN #501 - SWN #501
Devices Are Attacking - PSW #886
Say Easy, Do Hard - AI Governance in the Supply Chain - Nick Mistry, Richard Bird - BSW #407
MFA Bypass, SonicWall, BIOS Shade, Sex Toys, FBI Warning, Claude v GPT-5, Josh Marpet - SWN #500
Uniting software development and application security - Jonathan Schneider, Will Vandevanter - ASW #342
Weekly Enterprise Security News and Tips on Building Security From Day 1 - Guillaume Ross - ESW #418
Pipes, Thorium, Excel, ATM Hillbilly Cannibal Attack, Lambdas, AIs, Aaran Leyland - SWN #499
Hacking Washing Machines - PSW #885
Aligning Security Objectives, Ditch the Ego, Lead for Real and Succeed - BSW #406
Popup Porn, LoveSense, Tea, Fire Ant, Scatterede Spider, AI Pricing, Josh Marpet... - SWN #498
How Product-Led Security Leads to Paved Roads - Julia Knecht - ASW #341
tj-actions Lessons Learned, US Cyber Offense, this week's enterprise security news - Dimitri Stiliadis - ESW #417
Total Recall, Steam, Storm-2063, Unmarker, Altair, Josh Marpet, and More... - SWN #497
Protecting G-Suite/MS365 and Security News - Abhishek Agrawal - PSW #884
Getting Consensus as a CISO, While Calculating Cybersecurity ROI and Building a Team - Khaja Ahmed - BSW #405
Donatello, SharePoint, CrushFTP, WordPress, Replit, AllaKore, Rob Allen, and more... - Rob Allen - SWN #496
Rise of Compromised LLMs - Sohrob Kazerounian - ASW #340
The Cyber Canon, ditching the SOC 2, and the weekly enterprise news - Helen Patton - ESW #416
Existential Dread, MCP, Cloudflare, ESXI, QR Codes, Salt Typhoon, Aaran Leyland... - SWN #495
Hackers On A Train - PSW #883
Minimize SAP Migration Challenges, Cybersecurity Maturity, and Radical Transparency - Christopher Carter - BSW #404
AI meltdowns, Gigabyte, NCSC, Rowhammer, Gravity Form, Grok, AsyncRat, Josh Marpet... - SWN #494
Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339
Monzy Merza, How Much AI is Too Much, and the Weekly News - Monzy Merza - ESW #415
Tapjacking, ZuChe, PerfektBlue, McHacking, OT in the IT, Add Ons, Josh Marpet... - SWN #493
Citrixbleed 2, Hardware Hacking, and Failed Bans - PSW #882
SolarWinds Settlement, Upgrade Your Leadership Instincts to Build Your Legacy - BSW #403
Spying on your kids, Bank Robberies, Qantas, LOTL, sudo, Hunters, Aaran Leyland... - SWN #492
Checking in on the State of Appsec in 2025 - Sandy Carielli, Janet Worthington - ASW #338
Identity, AI & Access: Highlights from Identiverse 2025 - Treb Ryan, Sagi Rodin, Amir Ofek, Artyom Poghosyan, Ajay Amlani, Ajay Gupta - ESW #414
North Korea, ransomware, social engineering, AI, Apple, Drugs & Iran - SWN #491
Exploring Meshtastic and LoRa Mesh Networks - Rob Allen - PSW #881
The Value of Zero Trust - Rob Allen - BSW #402
Sony, Scattered Spider, Hikvision, Cybercrime, Iran, BSODs, Cloudflare, Josh Marpet.. - SWN #490
Simple Patterns for Complex Secure Code Reviews - Louis Nyffenegger - ASW #337
The Illusion of Control: Shadow IT, SSO Shortcomings, and the True Path to Security - Dave Lewis - ESW #413
Broadcom, Direct Send, N0auth, UNFI, Cisco, Oneclik, Russ Beauchemin, and more... - SWN #489
Is Vuln Management Dead? - HD Moore - PSW #880
Thriving Through Volatility: Insights for CISOs - Jeff Pollard, Pejman (Pej) Roshan, Deepen Desai - BSW #401
The Rise of Malware: Salt Typhoon and Spark Kitty - SWN #488
How Fuzzing Barcodes Raises the Bar for Secure Code - Artur Cygan - ASW #336
Rethinking Identity: IAM, PAM & Passwordless Trends from Identiverse - Chip Hughes, Ashley Stevenson, John Pritchard, Amit Masand, Matt Caulfield, David Lee - ESW #412
Donut Holes, clickfix, rapperbots, bad devs, war, Doug Rants about Backups, and More. - SWN #487
Hacking Drivers - PSW #879
CISO Cyber Insurance Empowerment - Peter Hedberg, Stephan Jou, Morey Haber - BSW #400
AI Zombie Lawyer, Scattered Spider, ASUS, Mainframes, GrayAlpha, Backups, Josh Marpet - SWN #486
Threat Modeling With Good Questions and Without Checklists - Farshad Abasi - ASW #335
Insider threats, migrating away from cloud, RSAC interviews with Cyera and Blumira - Yotam Segev, Matthew Warner, Rob Allen - ESW #411
$200,000 Zoom Call, Microsoft, Zero-Click, China & HD With $649 million of Bitcoin - SWN #485
UEFI Vulnerabilities Galore - PSW #878
Security Money: The Index is Up, CISOs Need to Get Out, and Are You Burning Out? - BSW #399
Vixen Panda, NPM, Roundcube, IoT, 4Chan, Josh Marpet, and more... - SWN #484
Bringing CISA's Secure by Design Principles to OT Systems - Matthew Rogers - ASW #334
The enterprise security news, more secure by removing credentials, & RSAC interviews - Marty Momdjian, Amit Saha, Dr. Tina Srivastava - ESW #410
Elsa, Redline, ChaosRat, iMessage, Bladed Feline , Aaran Leyland, and More... - SWN #483
Updating & Protecting Linux Systems - PSW #877
Regain Control of Business Risks, Your Leadership Habits, and Being Present - Alla Valente - BSW #398
Bovril, Deranged, Crocodilus, Cartier, Jinx, Conti, Scattered Spider, Josh Marpet... - SWN #482
AIs, MCPs, and the Acutal Work that LLMs Are Generating - ASW #333
Building Cyber Resilience: AI Threats, Mid-Market Risks & Ransomware Trends - Eyal Benishti, Chris Peluso, Chad Alessi, Tony Anscombe, Karl Van den Bergh, Nick Carroll - ESW #409
Edge, Safari, CISO Pay and Loathing, Fake AI, ASUS, OneDrive, Manus, Aaran Leyland... - SWN #481
It's A Trap! - PSW #876
Quantum Readiness & Zero Trust: Strategies to Strengthen Digital Resilience - Amit Sinha, Chris Hickman, Albert Estevez Polo, Jordan Avnaim - BSW #397
AP Tests, Hyper-V, Notepad, Google, Nova Scotia, NHI, Bond, Josh Marpet, and more... - SWN #480
AI in AppSec: Agentic Tools, Vibe Coding Risks & Securing Non-Human Identities - Mo Aboul-Magd, Brian Fox, Mark Lambert, Shahar Man - ASW #332
Reality check on SOC AI; Enterprise News; runZero and Imprivata RSAC interviews - HD Moore, Joel Burleson-Davis, Erik Bloch - ESW #408
Keyboards, 3am, TikTok, LummaC2, Cityworks, Honeypots, Fancy Bear, Aaran Leyland... - SWN #479
Malware Laced Printer Drivers - PSW #875
CISO Cheat Sheet, as Role Evolves and vCISO is Viable, Cobalt Strike and Resilience - Theresa Lanowitz, Rohit Dhamankar - BSW #396
WSL, Defendnot, Clippy, Crawlomatic, Take It Down, Pwn2Own, Aaran Leyland, and More.. - SWN #478
Appsec News & Interviews from RSAC on Identity and AI - Charlotte Wylie, Rami Saas - ASW #331
The State of Cybersecurity Readiness for the Next Big Emergency - Bri Frost, David Aviv, Marshall Erwin - ESW #407
Steganography, RICO, CMMC, End of 10, AI is coming for you, Aaran Leyland and More... - SWN #477
Ransomware in your CPU - PSW #874
CISO Communication and Hiring, as they Combat Threat and Penetration Testing Trends - Derek Manky, Gunter Ollmann - BSW #395
Deepfake, South Korea, Moonlander, ChineseAI, FBI, AI damages professional reputation - SWN #476
Secure Code Reviews, LLM Coding Assistants, and Trusting Code - Rey Bango, Karim Toubba, Gal Elbaz - ASW #330
Secrets and their role in infrastructure security - Jawahar Sivasankaran, Chas Clawson, Sergey Gorbaty, Fernando Medrano - ESW #406
Sudo watch, AI Dreams, Kickidler, Powershool, Old Man Router, PSMU, Aaran Leyland... - SWN #475
Are You Down With RDP? - PSW #873
C-Suite Gaps, Cybersecurity is not Working to Solve Exposures and Supply Chain Risks - Lenny Zeltser, Dr. Aleksandr Yampolskiy - BSW #394
Deepfake Porn Bots, Skype, dd, Venom Spider, CISA, IT Helpdesk, Rob Allen... - Rob Allen - SWN #474
AI Era, New Risks: How Data-Centric Security Reduces Emerging AppSec Threats - Idan Plotnik, Vishal Gupta - ASW #329
2025 Security Trends: Identity, Endpoint, Cloud & the Rise of Browser Threats - Hed Kovetz, Vivek Ramachandran, Rob Allen, Jason Mical, Alex Pinto, Lori Robinson - ESW #405
Security Weekly News Interviews Leaders of NECCDC competition - SWN #473
AI Tips, Tricks, and Traps! - PSW #872
Say Easy, Do Hard - Defining Objectives and Key Results Aligned to Business Goals - BSW #393
Security Weekly News Interviews Participants and Coaches at NECCDC - SWN #472
Secure Designs, UX Dragons, Vuln Dungeons - Jack Cable - ASW #328
The reason for Zoom's outage is crazy, huge funding amounts before RSA - ESW #404
The Future of Access Management - Jeff Shiner - ESW #404
Reviewing the Verizon 2025 Data Breach Investigations Report - ESW #404
Beating the AI Game, Ripple, Numerology, Darcula, Special Guests from Hidden Layer... - Malcolm Harkins, Kasimir Schulz - SWN #471
Hacking Crosswalks and Attacking Boilers - PSW #871
ISO 42001 Certification, CIOs Struggle to Align Strategies, and CISOs Rethink Hiring - Martin Tschammer - BSW #392
Brains, Elusive Comet, AI Scams, Microsoft Dog Food, Deleting Yourself, Josh Marpet - SWN #470
Managing Secrets - Vlad Matsiiako - ASW #327
The past, present, and future of enterprise AI - Pravi Devineni - ESW #403
Tailscale rakes it in, CVE dead to us, cool Chrome extensions, dog saves toddler - ESW #403
Patch It Like You Stole It: Vulnerability Management Lifestyle Choices - Matthew Toussain - ESW #403
HR Chatbots, MITRE, 4chan, Oracle, Identity, Port 53, NTLM, Zambia, Josh Marpet... - SWN #469
Govt Unravelling, AI Hijinx, Bot Chaos, Recall, Oracle, Slopesquatting, Tycoon 2FA... - PSW #870
Deny By Default as CISOs Battle Platform Fatigue and Show Value to the Board - Danny Jenkins - BSW #391
QUBIT AI, Recall This, Defender, Tycoon, Slopsquatting, Feng Mengleng, Aaran Leyland - SWN #468
More WAFs in Blocking Mode and More Security Headaches from LLMs - Sandy Carielli, Janet Worthington - ASW #326
What is old is new again: default deny on the endpoint - Danny Jenkins - ESW #402
The rise of MSSPs, CVE drama, Detection Engineering How-To & Doggie Survival Skills - ESW #402
I SIEM, you SIEM, we all SIEM for a Data Security Strategy - Colby DeRodeff - ESW #402
Win95, Shuckworm, Ottokit, DCs, EC2, IAB, OSS, Recall, Josh Marpet, and More... - SWN #467
You Should Just Patch - PSW #869
Balancing AI Opportunities vs. Risks to Drive Better Business Outcomes - Summer Fowler, Matt Muller - BSW #390
DOS, Web Cams, VSCODE, Coinblack, Oracle, P&G, Satan, Sec Gemini, Josh Marpet... - SWN #466
In Search of Secure Design - ASW #325
Best of Cyber April Fools, Tons of Free Tools, runZero positioned to disrupt? - ESW #401
How attackers exploit identity gaps to get into your cloud and SaaS - Paul Nguyen - ESW #401
Soft skills for engineers - Evgeniy Kharam - ESW #401
AI Doomsday, Hot Robots, Google, palo Alto, Ivanti, CrushFTP, AI, Aaran Leyland... - SWN #465
Not-So-Secure Boot - Rob Allen - PSW #868
Vulnerability Prioritization Can Produce Better Business Outcomes - Greg Fitzgerald, Steve Lodin - BSW #389
Schrodinger, Lucid, Crocodilus, Wordpress, Ivanti, Oracle, Android, Josh Marpet... - SWN #464
Avoiding Appsec's Worst Practices - ASW #324
The toughest decisions CISOs have to make, MCP servers, Napster's comeback - ESW #400
The Top Trends Shaping Identity and Access Management in 2025 - Geoff Cairns - ESW #400
Setting up your SIEM for success - Pitfalls to preclude and tips to take - Neil Desai - ESW #400
Mrtentacle, Morphing Meerkat, Tor, VMWare, Waymo, Oracle, Aaran Leyland, and more... - SWN #463
SignalGate and How Not To Protect Secrets - PSW #867
The Pace of Investments Requires Better Risk Management, Boards Challenged, & More - BSW #388
Curdled Miscreant, VanHelsing, MFA, Room 237, MFA, Velora, 23nMe, Josh Marpet... - SWN #462
Finding a Use for GenAI in AppSec - Keith Hoodlet - ASW #323
Google picks up a Wiz kid, GitHub's malicious actions, Agentic AI is sus - ESW #399
We need better detection feedback loops - Michael Mumcuoglu - ESW #399
Building the SOC of the Future - JP Bourget - ESW #399
Orange Drop Caps, apps, Veeam, jobs, Heathrow, vpentest, Aaran Leyland, and More... - SWN #461
Its Not Really A 0-Day - PSW #866
Smart Cybersecurity Spending, as CISOs Architect Resilience and Grade Themselves - BSW #387
Breaking Down Human-Element Breaches To Improve Cybersecurity - Jinan Budge - BSW #387
Angry Iguana, Squid Bot, Bruted, 0Auth, Dragon Medical, Clippy 2.0, CISA, Josh Marpet - SWN #460
Redlining the Smart Contract Top 10 - Shashank . - ASW #322
Security doesn't trust AI, but startups are using it to write 95% of their code - ESW #398
Your Cloud is a Mess, and We Explore 5 Reasons Why - Marina Segal - ESW #398
Penetration Tests: useful, pointless, harmful, required, ineffective? - Phillip Wylie - ESW #398
AI Bad, PHP, RDP, SuperBlack, VT, Deepseek, MassJacker, Roblox, Aaran Leyland... - SWN #459
AI Is Oversharing and Leaking Data - Sounil Yu - PSW #865
CISO vs. CIO, as CISOs Are Opting for Consulting Gigs and Cyber Pros Look for Change - BSW #386
The Counterfeit Problem: How Blockchain Is Revolutionizing Brand Protection - Noam Krasniansky - BSW #386
Brains, kill switch, parking fees, CobaltStrike, Minja, Allstate, GitHub, Josh Marpet - SWN #458
Skype Hangs Up, Android Backdoors, Jailbreak Research, Pretend AirTags, Wallbleed - ASW #321
CISA's Secure by Design Principles, Pledge, and Progress - Jack Cable - ASW #321
Cybereason CEO quits, Skybox shuts down, More Bybit heist details - ESW #397
AlmaLinux and the State of Open Source Enterprise Linux - benny Vasquez - ESW #397
Ransomware Attacks a Decade In: What Changed? What Didn't? - Mike Mitchell - ESW #397
Secret YouTube Videos, Thunderforge, ByBit, 365, Chrome, VMWARE, Aaran Leyland... - SWN #457
Don't Hack Russia - PSW #864
CISO Transformation Lessons from CIO While Balancing Security vs. Innovation - BSW #385
Security Money: Sailpoint's IPO Saves the Index - BSW #385
QR Codes Replacing SMS, MS Pulls VSCode Extension, Threat Modeling, Bybit Hack - ASW #320
Keeping Curl Successful and Secure Over the Decades - Daniel Stenberg - ASW #320
Ransomware is down, Mac malware is up, AI disappoints - ESW #396
Alice and Bob Learn Secure Coding - Tanya Janca - ESW #396
First Do No Harm - Security Challenges in Healthcare - Ed Gaudet - ESW #396
Mr. Kurtzmann, Boffins gone Wild, Grasscall, Vo1d, CE, Shadowpad, Aaran Leyland... - SWN #455
Zero Days Are Not Just Fiction - PSW #863
CISOs Struggling, Culture Hurting, But Cybersecurity Salaries Stay Competitive - BSW #384
Cronenbergs, Dangling Twitchbots, Crypto, Kaspersky, SMS, OT, Josh Marpet... - SWN #454
Regex DoS, LLM Backdoors, Secure AI Architectures, Rust Survey - ASW #319
Developer Environments, Developer Experience, and Security - Dan Moore - ASW #319
AI Security Concerns: Real Threats or Distractions? Also - unhinged security teams! - ESW #395
Is Shift Left Just Starting to Catch On? And Other AppSec Trends & Insights - Jenn Gile - ESW #395
The Future of Cyber Regulation in the New Administration - Ilona Cohen - ESW #395
False Claims Act, Google Cloud PQC, Salt Typhoon, AI in SOC, Ivanti Flaws, ICS, DeFi - SWN #453
Live from ZTW - PSW #862
Say Easy, Do Hard - Data Inventory and Classification, Part 2 - BSW #383
Say Easy, Do Hard - Data Inventory and Classification, Part 1 - BSW #383
AI Threat Intelligence, AI Hacking, Data Breaches, Zhong, DOGE, and more - SWN #452
Top 10 Web Hacking Techniques of 2024 - James Kettle - ASW #318
The dark side of security leadership, will agentic be a thing, OWASP AI resources - ESW #394
A SecOps Medley: we talk automation, AI, data management, and EDR evaluations - Allie Mellen - ESW #394
Evolving the SOC: Automating Manual Work while Maintaining Quality at Scale - Tim MalcomVetter - ESW #394
Bad Romance, Kimsuky, Red Mike, Ivanti, Nvidia, C code, Postgre, Aaran Leyland... - SWN #451
Prompt Injection, CISA, Patch Tuesday - PSW #861
Speak the Same Language, as Cybersecurity is Everyone's Responsibility - BSW #382
PlayStation, KerioControl, SEC SimSWAP, 8base, Copilot, AI, Bird, Josh Marpet... - SWN #450
Unforgivable Vulns, DeepSeek iOS App Security Flaws, Memory Safety Standards - ASW #317
Code Scanning That Works With Your Code - Scott Norberg - ASW #317
Breach details need to be transparent and kids need cybersecurity education - ESW #393
Inside look and lessons from a Recent APT Attack on a U.S. Aerospace Company - John Dwyer - ESW #393
The groundbreaking technology addressing employment scams and deepfakes - Aaron Painter - ESW #393
AI Cheese, CISA, Scaryware, Kimsuky Returns, Backups, Encryption, Jason Wood... - SWN #449
Deepseek, AMD, and Forgotten Buckets - PSW #860
C-Suite Cybersecurity Responsibilities, Humble Leaders, and Effective Communication - BSW #381
Enforcement of the Digital Operational Resilience Act (DORA) - Madelein van der Hout - BSW #381
DeepSeek, Nicolas Cage, OpenAI, Hackers, Ransomware, Canada, Joshua Marpet and More - SWN #448
New SLAP & FLOP Attacks, OCSP Fades Away, DeepSeek's ClickHouse, OAuth 2.0 Security - ASW #316
Threat Modeling That Helps the Business - Sandy Carielli, Akira Brand - ASW #316
Semgrep non-drama, Facebook hates Linux - Vulns in Cars, Cell Towers, M365, and more - ESW #392
Special Breaking AI News - there's too much AI news, can we please stop - ESW #392
The Growth of Women in Cybersecurity Has Slowed - Why, and What Can We Do About It? - Lynn Dohm - ESW #392
.ASS, Deepseek, AI Time Travel, Google, HeartBlocker, TikTok, Aaran Leyland, and More - SWN #447
Cred Vaults, Cheap AI, and Hacking Devices - PSW #859
The CISO Role Elevates, Boosts, Rises, and Evolves - BSW #380
AI in 2025: The Shifting Regulatory Landscape For Artificial Intelligence - BSW #380
DeepSeek, AIDs, Sex Crime, Microsoft, PayPal, GitHub, Joshua Marpet and More - SWN #446
Opengrep & Semgrep, Hacking Subarus, Hacking Synths, Stealing Cookies, and RANsacked - ASW #315
Security the AI SDLC - Niv Braun - ASW #315
IPOs are back, AI jumps the shark, NGFWs have some serious security issues - ESW #391
Guiding an Open Source-Based Business Through Troubled Times - Francis Dinha - ESW #391
AI Red Teaming Comes to Bug Bounties - Michiel Prins - ESW #391
Cursive Funk, Microsoft, Ivanti, Sonic Wall, Exchange, PowerSchool, Aaran Leyland... - SWN #445
Vulnerability Prioritization In The Real World - PSW #858
The Future Of The CISO - Part 2 - Jess Burn, Jeff Pollard - BSW #379
The Future Of The CISO - Part 1 - Jess Burn, Jeff Pollard - BSW #379
Smishing, Microsoft, Star Blizzard, Sneaky Log, VMARE, Josh Marpet, and more... - SWN #444
Appsec Predictions for 2025 - Cody Scott - ASW #314
Enterprise News - ESW #390
50,000 critical exposures + one of the most vulnerable IT environments: our schools - Kiran Chinnagangannagari, Jeff Smith - ESW #390
The Next Era of Data Security: AI, Cloud, & Compliance - Dimitri Sirota - ESW #390
AIs in Love, UEFI, Fortinet, Godaddy, Juggalos, Aaran Leyland, and More. - SWN #443
Stopping The Bad Things - PSW #857
Boards Stepping Up, as CISOs Build Stronger Bonds with Legal and Safeguard Leadership - BSW #378
Smishing, Beyond Trust, CryptoReligion, Aviatrix, Azure, Josh Marpet, and more... - SWN #442
PyPI's Quarantine, Phishing & Awareness, Porting Fishshell to Rust, Cyber Trust Mark - ASW #313
Discussing Useful Security Requirements with Developers - Ixchel Ruiz - ASW #313
Celebrity investors, creator metrics, and Chrome extension compromise - ESW #389
Building a map of hacker history, one conversation at a time - Nathan Sportsman - ESW #389
How threat-informed defense benefits each security team member - Frank Duff - ESW #389
Robot Dogs, Ivanti, SonicWall, Banshee, Telegram, Motorola, Aaran Leyland, and more. - SWN #441
Threat Actors With A Thousand Names - PSW #856
The Business of Cybersecurity, as CISOs Budget Wisely for 2025 Priorities - BSW #377
Organizations Must Adapt To Safeguard Data In Evolving Environments - Lamont Orange - BSW #377
Ättestupa, Moxa, Typhoons, WordPress, Likert Scales, Algol, Josh Marpet, and more... - SWN #440
Removing Rust, Double Clickjacking, h3i CLI, JWT Mistakes, Reviewing Recursion - ASW #312
DefectDojo and Bringing Quality Appsec Tools to Small Appsec Teams - Greg Anderson - ASW #312
Endpoint Security - Rob Allen - SWN Vault
The Future in the Age of AI - SWN Vault
Say Easy, Do Hard, Minimum Viable Security - Part 2 - Jon Fredrickson - BSW Vault
The Impact of Tariffs - SWN Vault
Hacker Heroes - Haroon Meer - PSW Vault
Compliance & Privacy - SWN Vault
Say Easy, Do Hard, Minimum Viable Security - Part 1 - Jon Fredrickson - BSW Vault
2024 End-of-Year News and Wrapup - ESW #388
Final fundings for 2024, Blackberry sells Cylance cheap, Product Testing Drama - ESW #388
Dysentery, TP-Link, Piracy, Calendar Scams, Tencent, TikTok, Aaran Leyland and More.. - SWN #439
D3FEND 1.0: A Milestone in Cyber Ontology - Peter Kaloroumakis - ESW #388
The Number One Threat - PSW #855
When Public Payphones Become Smart Phones - Inbar Raz - PSW #855
Day in the Life of a CISO, as They Consider Personal Risks and New Defenses in 2025 - BSW #376
NAC is Back - How Network Access Control Can Protect Your Remote Devices and Data - Rob Allen - BSW #376
Vogons, Task Scams, HiatusRat, Cellebrite, Deloitte, Quantum, Aaran Leyland, and More - SWN #438
Ancient Curl Bug, AWS re:Invent, Malware in NPM, Census III Report, MS OTP - ASW #311
Applying Usability and Transparency to Security - Hannah Sutor - ASW #311
AWS does IR, credit card canarytokens, shared responsibility, phishing tests do harm - ESW #387
Pondering Portable Passwordless Passkeys in 2025 - Rew Islam - ESW #387
Nudity, Krispy Kreme, Cleo, AIAPIs, NHI, North Korea, Jersey Drones, Josh Marpet - SWN #437
The 2024 Cybersecurity Market Review - Mike Privette - ESW #387
No Paul? We got this! - PSW #854
Navigating Regulations in Supply Chain Security - Eric Greenwald - PSW #854
AI's Junk Vulns, Web3 Backdoor, LLM CTFs, 5 GenAI Mistakes, Top Ten for LLMs - ASW #310
Evil ISPs, Deloitte, YOLO11, Microsoft, Gift Cards, Navix, Telegram, Josh Marpet... - SWN #436
Looking Back on 2024 - ASW #310
The CISO's Vital Role, As They Step Away and Companies Seek Top Cyber Talent - BSW #375
Okta Secure Sign-In Trends Report Shows Companies are Getting Smarter about MFA - Chris Niggel - BSW #375
Cybersecurity from Santa, office surveillance, Apple work/life balance issues, & more - ESW #386
Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386
Deloitte, e-Tattoos, Cp3o, Chemonics, IPv6, 6, Chinese Emperors, Aaran Leyland... - SWN #435
Tackling Barriers on the Road To Cyber Resilience - Theresa Lanowitz - ESW #386
Security News - PSW #853
Hacker Gadgets - PSW #853
Fuzzing Barcodes, Fuzzing with AI, AI vs. Scammers, CWEs, Repo Swatting - ASW #309
ISIS, Enron, Tor, Scams, Wintermute, Zabbix, Josh Marpet and more... - SWN #434
Adding Observability with OpenTelemetry - Adriana Villela - ASW #309
Debate: Should the CISO Role Be Split or Establish Additional Leadership Roles? - BSW #374
Security Money: Of Course Okta Should Be In The Index - BSW #374
Terms & Acronyms pt.2 - SWN Vault
2023 Funding and Acquisition Summary with Return on Security - Mike Privette - ESW Vault
Hacker Heroes - Aaron Turner - PSW Vault
Terms & Acronyms - SWN Vault
2nd Edition: How to Measure Anything in Cybersecurity Risk - Doug Hubbard - BSW Vault
AI messes with scammers, autonomous endpoint security, malware targets Excel - ESW #385
All the biggest cybersecurity news out of Microsoft Ignite 2024 - ESW #385
Tesla, Druids, Salt Typhoon, North Korea, Amazon, Microsoft, Google, Joshua Marpet... - SWN #433
Fixing how cybersecurity products are bought and sold - Mariana Padilla - ESW #385
Fortinet, Palo Alto, VMWare - PSW #852
Confessions of a Cyber Criminal Stalker - Ken Westin - PSW #852
AI fixes everything, C++ the actual worst, IAM is hard - ASW #308
Finally, Liability Coverage for CISOs as the Cybersecurity Workforce Peaks - BSW #373
Google DeGoogled, Hammerbarn, Blofeld, VMWare, DeepData, SafePay, Josh Marpet and... - SWN #432
Similarities Between SOX And SEC's Cyber Rule - Padraic O'Reilly - BSW #373
Biometric Frontiers: Unlocking The Future Of Engagement - Andras Cser, Enza Iannopollo - ASW #308
Funding, Trustwave/Cybereason, NVIDIA Morpheus AI SOC, and the job situation is bad - ESW #384
The Top-Down Approach in Cybersecurity and Compliance Isn't Working - What's Next? - Justin Beals - ESW #384
Granny Bots, Microsoft, Shrinklocker, SlugResin, BlueSky, Aaran Leyland, and More... - SWN #431
AI and the Autonomous SOC - Separating Hype from Reality - Itai Tevet - ESW #384
Holiday Hack Challenge - PSW #851
No CVE and No Accountability - PSW #851
CISO Evolution and Leadership Paradigm as Burnout Rate Hits 93% - BSW #372
Typosquatting NPM, vulnerability analysis, and AI challenges - ASW #307
Struwwelpeter, Krampus, Flutter, Apple, DLink, C++, Josh Marpet and more... - SWN #430
Modernizing AppSec - Melinda Marks - ASW #307
How to Combat the CISO Mental Health Crisis - Ram Movva - BSW #372
$200M for IoT security, 4 acquisitions, fake job openings, vapes are trash - ESW #383
The State of DSPM, One of the Hottest New Cybersecurity Markets in Years - Todd Thiemann - ESW #383
Robo-Turing, BlueNoroff, Palo Alto, German Law, Fabric, Cisco, Bans, Aaran Leyland... - SWN #429
Cybersecurity Budgets: the Journey from Reactive to Proactive - Theresa Lanowitz - ESW #383
We're Not Saying "I told you so" - PSW #850
Cybersecurity For Schools - Kayne McGladrey - PSW #850
Tariffs, Pygmy Goat, Schneider, SQLite, Deepfakes, Military AI, Josh Marpet... - SWN #428
Today's Hybrid Work Era: Integrated Approach & Implementing Identity - ESW #382
The Right CISO, with a New Security Leadership Style, to Safeguard Your Business - BSW #371
Total Recall? LLM finds bug in SQLite, C++ safety failures, zero time for zero privs - ASW #306
Bug bounties, vulnerability disclosure, PTaaS, fractional pentesting - Grant McCracken - ASW #306
Planning A Merger Or Acquisition? Ask These Five Cyber Questions First - Craig Davies - BSW #371
Funding, AI controls your PC, Cyberstarts stops Sunrise, public cyber goes private - ESW #382
Recall, Russia, Win 10, Phish n Ships, Midnight Blizzard, Rob Allen, and More... - SWN #427
What if securing buildings was as easy as your smartphone? - Blaine Frederick - ESW #382
EDR Is Dead, EDR Is Not Dead - PSW #849
Halloween, TikTok, Telcos, Win 11, Five Eyes, AWS, France, ChatGPT, and more... - SWN #426
Shadow IT and Security Debt - Dave Lewis - PSW #849
Protecting Identity of AI Agents & Standardizing Identity Security for SaaS Apps - Shiven Ramji, Arnab Bose - ASW #305
Making TLS More Secure, Lessons from IPv6, LLMs Finding Vulns - ASW #305
Stay Ahead of Identity Threats & Addressing Cybersecurity Disparities - David Bradbury, Erin Baudo Felter - BSW #370
The CISO Mindset, Top Strategies, and Mandating Office Presence Without Purpose - BSW #370
Era of Bot Battlers & Security Focused Company Culture - ESW #381
Cyber Security Awareness for Election and Poll Workers - Kirsten Davies - ESW #381
Tourists, Fortis, apps, TLP, AWS, Google, Chatbots, Aaran Leyland, and More... - SWN #425
Transforming the Defender's Dilemma into the Defender's Advantage - Lenny Zeltser - ESW #381
Not The Vulnerabilities You're Looking For - PSW #848
Secure By Default - How do we get there? - Andy Syrewicze - PSW #848
JSON Parsing, Email Parsing, CISA's Bad Practices Guide, Abusing Disclosure Policies - ASW #304
CEO Accountability as CISOs Concerned Over Demands and Measured by Profit/Cost - BSW #369
Doom Brain, E2EE, OT, Adload, Cisco, VMware, internet archive, Josh Marpet ... - SWN #424
The Complexities, Configurations, and Challenges in Cloud Security - Scott Piper - ASW #304
Aligning Tech Execs on Cyber Resilience - Theresa Lanowitz - BSW #369
Alternative CISO career paths, budget planning, and one easy trick to bypass EDR! - ESW #380
Exploring Unified SASE as a Service - Renuka Nadkarni - ESW #380
Stealing, Kubernetes, Passkeys, SolarWinds, Intel, Sextortion, and... - SWN #423
Cybersecurity Success is Business Success - Theresa Lanowitz - ESW #380
Everything is Overrated - PSW #847
Effective Operational Outcomes - Ken Dunham - PSW #847
Perl & PHP Vulns, Fuzzing & Parsers, Protecting Multi-Hosted Tenants, Secure Design - ASW #303
Stego, uBlock, PPTP, Log4J, Command Jacking, Windows 10, Feet, Josh Marpet, and More. - SWN #422
Setting the Tone at the Top as CISOs and C-Suite Remain at Odds - BSW #368
Budget Planning Guide 2025: Security And Risk - Jeff Pollard - BSW #368
Funding, acquisitions, DFIR reports, bad products, secure by design, and more! - ESW #379
Cybercab, Golden Jackal, Mamba 2FA, Microsoft, iPhone thieves, esims, Aaran Leyland.. - SWN #421
Discovering a common Salesforce mistake launched this security professional's career - Aaron Costello - ESW #379
Community Knowledge Sharing with CyberNest - Ben Siegel - ESW #379
The Code of Honor: Embracing Ethics in Cybersecurity - Ed Skoudis - PSW #846
RCE from Iconv + PHP, Fuzzing a Codec, Fuzzing LLMs, Revisiting Recall - ASW #302
Give CISOs a Seat at the Table as CISO Salaries Surge - BSW #367
The Future of Zed Attack Proxy - Simon Bennetts, Ori Bendet - ASW #302
AI, American Water, Broadband, Claroty, Okta, Meta, Phishing, Robocop, Josh Marpet... - SWN #420
The Saga Continues - PSW #846
Run Your Security Program Like an Election Campaign - Kush Sharma - BSW #367
Secure the Browser & Vulnerability and Exposure Management - Brian Contos, Neko Papez - ESW #378
Perfctl, Pig Butchering, Ivanti, Zimbra, BabyLockerKZ, AI gone Wild, Aaran Leyland... - SWN #419
Nothing Is Safe - PSW #845
Cybersecurity Career Paths: from touring musician to purple teaming at Meta - Jayson Grace - ESW #378
Cybersecurity best practices are the worst, AI indegestion, real time doxxing - ESW #378
Analyzing Malware at Scale - John Hammond - PSW #845
Death Stars, Recall, Microsoft, Brocade, AI, Josh Marpet, and more... - SWN #418
Underfunding and Leadership Gaps, as AI Replaces CEO and Senate Eyes Healthcare - BSW #366
How to Attain Zero Trust - Rob Allen - BSW #366
Quantum threats, SOC automation, funding trends - ESW #377
Oh the Places You'll Go (in Cybersecurity) - Jason Shockey - ESW #377
Passwords, CUPS, KIA, Gilbert Gottfried, Salt Typhoon, Rob Allen from ThreatLocker... - SWN #417
AI in Cyber & Addressing Analyst Burnout - Kayla Williams - PSW #844
SIEM: Shakeup in Event Management - What's Happening in the SIEM market today? - Seth Goldhammer - ESW #377
Unsophisticated Methods - PSW #844
Fuzzing for Vulns, GitLab Auth Bypass, JPEG Vulns, Programming Language Ranks - ASW #300
C3pbot, Kaspersky, Octo2 , Honkai: Star Rail, ServiceNow, LinkedIn... - SWN #416
Vulnerable APIs and Bot Attacks: Two Interconnected, Growing Security Threats - David Holmes - ASW #300
Authentication and Authorization in the AI Era - Shiven Ramji - BSW #365
Answering the Board's Questions While UnitedHealth Group 'Starts Over' - BSW #365
Cybersecurity: is the talent gap a myth? Is the industry delusional? - ESW #376
Speed, Flexibility, and AI: The Case for Migrating from Legacy SOAR Systems - Whitney Young - ESW #376
Shroombots, pagers, Tor, Raptor Train, GRU, Blue Light, Aaran Leyland, and More... - SWN #415
Back to the office, Void Banshee, ServiceNow, Taiwan, Dlink, C++, Aaran Leyland... - SWN #414
Do phishing tests do more harm than good? - Wolfgang Goerlich - ESW #376
The Known Exploited Vulnerability catalogue, aka the KEV - Tod Beardsley - PSW #843
Exploding Pagers - PSW #843
A TLD Takeover, An LLM CTF, A Firmware Flaw, 6 Truths of Cyber Risk - ASW #299
Bringing Secure Coding Concepts to Developers - Dustin Lehr - ASW #299
Consolidating C-Suite Tech Roles as Security Budgets and Workforce Growth Flatline - BSW #364
Solving the Cybersecurity Data Problem - Padraic O'Reilly - BSW #364
Cybersecurity at the speed of Formula One - Darren Guccione, Harry Wilson - ESW #375
Oktane 2024 and the Current State of Identity Security - Harish Peri - ESW #375
Li-On, Lazarus, Whatsup, Scattered Spider, Hadooken, Dead People, Aaran Leyland... - SWN #413
Cybersecurity has too many distractions and can the White House fix BGP? - ESW #375
Wifi Vulns, Yubikeys, and Firmware - PSW #842
Recent Cyber Security Laws & Regulations - Lee Kim - PSW #842
AI Trucks, Solid Concrete, Sonicwall, Progress, Rust, Apple, and more... - SWN #412
Paying Down Tech Debt, Rust in Firmware, EUCLEAK, Deploying SSO - ASW #298
C-Suite & Boardroom Blind Spots While Aligning Cybersecurity Strategy with Business - BSW #363
Cybersecurity and the Business - Theresa Lanowitz - BSW #363
IP Addresses - SWN Vault
How to Make the World Quantum Safe - Vadim Lyubashevsky - ESW Vault
Hacker Heroes - Mark Loveless - PSW Vault
Encryption - SWN Vault
Leadership Lessons from the First 100 Episodes of CISO Stories - Todd Fitzgerald - BSW Vault
Close the Security Theater: Enter Resilience - Kelly Shortridge - ASW Vault
SaaS Security Beyond Just Misconfiguration & Expert Insights on Cybersecurity Ethics - Ed Skoudis, Maor Bin - ESW #374
Interview with ThreatLocker: Is Application Allowlisting Making a Comeback? - Danny Jenkins - ESW #374
Daleks, AVTECH, Palo Alto, VMWARE, Travel, California AI Dreamin', Aaran Leyland... - SWN #411
What asset management (ITAM) looks like outside cybersecurity - Jeremy Boerger - ESW #374
I want ALL The Firmware - PSW #841
Building AI BOMs - Helen Oakley - PSW #841
Apache HTTPD Vulns, Hacking IoT Speakers, Use Cases for WASM, Slack AI Leak - ASW #297
MGs, Free Speech, sedexp, Cthulhu, SeaTac, GrimResource, ServiceBridge, Josh Marpet.. - SWN #410
Changing the Course of IoT's Future from Its Insecure Past - Paddy Harrington - ASW #297
CEOs need to be bold, but can CISOs keep up? - BSW #362
The Changing Risk Landscape: CISO Liability - Darren Shou - BSW #362
Let's Get Real About Where AI can Help SecOps & AI, Automation & Low-Code - Mike Lyborg, Brandon Potter - ESW #373
Faking your own death, Fake Reviews, Solar Winds, Recall, Winux, Kubernetes, and More - SWN #409
Vulnerabilities, Vulnerabilities Everywhere - PSW #840
The end of the road for some cyber startups & making detection actually work! - ESW #373
How do we patch the right things? - PSW #840
Secure Web Gateways Have Failed Us & Using AI to Prevent the Next CrowdStrike Outage - Vivek Ramachandran, Vivek Bhandari - ESW #373
Navigating the Path to Maturity & AI is helping combat cyber threats - Shimon Modi, Boaz Barzel - ASW #296
Dangerous books, Microsoft plus, NPD, Solar Winds, Jenkins, and more... - SWN #408
The Fallout and Lessons Learned from the CrowdStrike Fiasco - Allie Mellen, Jeff Pollard - ASW #296
Navigating Innovation and Risk & Any Browser Can Be A Secure Enterprise Browser - Theresa Lanowitz, Andrew Harding - BSW #361
Why Cyber Resilience Matters - Theresa Lanowitz - BSW #361
Operational Resilience in Healthcare & Zscaler Uncovers Record-Breaking Ransom - Marty Momdjian, Brett Stone-Gross - ESW #372
Devo Launches New Capabilities & Revolutionizing Cyber Resilience - Rakesh Nair, Rekha Shenoy - ESW #372
Quantum AI Drones, Ransomhub, Pixel, Mad Liberator, the return of Russ Beauchemin... - SWN #407
Highlights from BlackHat/DefCon, Vulnerabilities, and Cyber Marketing Challenges - ESW #372
LPE FTW - PSW #839
Cybersecurity Myths - Eugene Spafford - PSW #839
Reducing Supply Chain Risk & What's lurking in your phone? - Danny Jenkins, Nikos Kiourtis - ASW #295
DEFCON Hijinx, AMD, Ukraine, FreeBSD, OpenVPN, the Pwnie Awards, Josh Marpet... - SWN #406
When Appsec Needs to Start Small - Kalyani Pawar - ASW #295
Cybersecurity Leadership Crisis, Is It Time to Pivot Your Strategy? - BSW #360
Security Money: Crowdstrike Crashes the Index - BSW #360
More AI funding, Crowdstrike ripples continue, GPT yourself - ESW #371
Interviewing Black Hat Startup Spotlight Winner, Knostic - Sounil Yu - ESW #371
0.0.0.0, Blacksuit, OpenAI, AWS, Cisco Phones, Win 10, Aaran Leyland, and More... - SWN #405
AI Red Teaming and AI Safety - Amanda Minnich - ESW #371
Things Not to Miss at BH/DC/Bsides - PSW #838
Downgrades and Attacking Security Things - PSW #838
Dead Code, CrowdStrike's Kernel Lessons, VMs & Security Boundaries, SLUBStick Attack - ASW #294
Fake IDS, Storm Bamboo, uBlock, Rhysida, Snake, Delta, TikTok, Josh Marpet... - SWN #404
Building Successful Security Champions Programs - Marisa Fagan - ASW #294
Say Easy, Do Hard - Job Search Strategies for CISOs - Part 2 - Merlin Namuth, Brad Rager - BSW #359
Say Easy, Do Hard - Job Search Strategies for CISOs - Part 1 - Merlin Namuth, Brad Rager - BSW #359
Funding, Cato, Code42, DoS Robots, and Blackhat Prep - ESW #370
10 Security Researcher Qualities Marketers Should Adopt - Dani Woolf - ESW #370
Taco Bell AI, Azure, Scams, AI Emails, IBM, Crowdstrike, Aaran Leyland, and More... - SWN #403
Cybersecurity's Love Affair with Distractions - Fred Wilmot - ESW #370
It's Always DNS - PSW #837
PK Fail - John Loucaides - PSW #837
Forever mouse, RPC, WhatsApp, NIST, PKFail, 0Auth, Josh Marpet, and More... - SWN #402
A CISO's Perspective on AI, Appsec, and Changing Behaviors - Paul Davis - ASW #293
The Evolving Role of the CISO - Allan Alford - BSW #358
Identity Security Posture Management - Dor Fledel - BSW #358
AI Ruining the Internet, Crowdstrike Post Mortem, Wiz Walks - ESW #369
Can the latest wave of AI innovation deliver for security operations teams? - ESW #369
Twitter, the DOJ, DarkSeoul, Fake Employees, PlugX, Stargazer Ghost, Aaran Leyland... - SWN #401
Generative AI (as used by defenders AND attackers) will Drive SOC Evolution - Greg Notch - ESW #369
Crowdstrike: The Aftermath - PSW #836
MS Patch Tuesday: Which Vulnerabilities Really Need Prioritizing - Douglas McKee - PSW #836
SAPwned, Squarespace Domain Hijacks, AIs Fixing Code, Infosec Investments - ASW #292
Risk Management Insights: What CEOs and Boards Really Need - Jeff Recor - BSW #357
Where Generative AI Can Actually Help Security (And Where It Doesn't) - Allie Mellen, Farshad Abasi - ASW #292
Killer Robots, Crowdstrike, Southwest, Play, FrostyGoop, Josh Marpet and More - SWN #400
Closing CISO-CEO Communication Gap Requires a Common Business Language - Sumedh Thakar - BSW #357
Analyzing the CrowdStrike Incident and Its Ripple Effects - SWN #399
Rumored Wiz Deal Would be HISTORIC (if it happens), redefining shared responsibility - ESW #368
What's wrong with the cybersecurity industry and what we can do about it - Richard Hollis - ESW #368
Book Discussion: Jump-start Your SOC Analyst Career - Jarrett Rodrick, Tyler Wall - ESW #368
Vulnerability Chains - PSW #835
3D Printing For Hackers - David Johnson - PSW #835
A 2024 Appsec Report, Preparing for the AIxCC, Secure Design and Post-Quantum Crypto - ASW #291
Floppy Disks, Exim, Kaspersky, Darkgate, AT&T, Josh Marpet and more... - SWN #398
Producing Secure Code by Leveraging AI - Stuart McClure - ASW #291
Board and CEO Understanding of CyberSecurity as CISOs Grapple with the C-Suite - BSW #356
Solving the Complexities of Cyber Insurance for SMBs - Brian Fritton - BSW #356
Autobahn, APT 40, Meliorator, RADIUS, AT&T, Apple, Josh Marpet, and More... - SWN #397
More Vulnerability Shenanigans - PSW #834
Rockyou2024 is a scam, Google has a whoopsie, and AI is giving folks indigestion - ESW #367
Joiners, Movers, Leavers, and Failures: Why is Identity Management Still Struggling? - Henrique Teixeira - ESW #367
RFID hacking - Iceman - PSW #834
Zotac, Eldorado, Donex, Qlins, Ticketmaster, AI, Physical Security, Aaran Leyland... - SWN #396
State Of Application Security 2024 - Sandy Carielli, Janet Worthington - ASW #290
Bringing the Boardroom to the Cyber Battlefield as CISOs Navigate the Role - BSW #355
Polyfill Empties Trust, regreSSHion, CocoaPods Vulns & Secure Design, LLM Bughunters - ASW #290
Technology Rationalization in Cybersecurity - Max Shier - BSW #355
Binary - SWN Vault
Hacker Heroes - Joe Grand - PSW Vault
How To Avoid Being Phished - SWN Vault
CISOs 2023 Planning Guide: Forecast The Recession's Impact On Your Program - Jeff Pollard - BSW Vault
Is GenAI Having a Rough Time? We check in to see how it's doing. - ESW #366
Shifting Cybersecurity Philosophy from Threat-Centric to Compromise-Centric - Martin Roesch - ESW #366
MoveIT, Entrust, Fed Reserve, ISPs, Volt Typhoon & More - SWN #395
The risks and best practices of deploying AI to an enterprise - Anurag Lal - ESW #366
Hack all the things, patch all the things - PSW #833
Do We Need Penetration Testing and Vulnerability Scanning? - Adrian Sanabria, Josh Bressers - PSW #833
Shared Responsibility Models, AI in Offensive Security, Apple's Private Cloud Compute - ASW #289
Baltimore, GPS Jammed, US bans, ARM, YouTube, Kraken and Joshua Marpet - SWN #394
OAuth 2.0 from Protecting APIs to Supporting Authorization & Authentication - Aaron Parecki - ASW #289
AI at Work 2024: C-suite Perspectives on Artificial Intelligence - Bhawna Singh - BSW #354
Building a Successful API Security Strategy - Luke Babarinde - BSW #354
Access vs Actions, Beyond Traditional IGA, Remote Identity Verification, & Fraud - Tim Prendergast, Damon Tompkins, Andrew Bud, Chris Meyer - ESW Vault
Cybersecurity In College - SWN Vault
iShield Key Experience, Automated (PKI) Infrastructure, & GenAI Identity Attacks - Kevin Fadaie, Roni Bliss, David Mahdi - ESW Vault
Bringing Autonomy to AppSec - Dr. David Brumley - ESW Vault
Hacker Heroes - Dave Aitel - PSW Vault
Learning EBPF - Liz Rice - ASW Vault
Back To School: Networking 101 - SWN Vault
Zero Trust Is Not A SKU - Saša Zdjelar - BSW Vault
Unlocking Business Value, Beyond Outages, & Combat Account and Platform Fraud - Ajay Gupta, Gerry Gebel, Mark Batchelor - ESW #365
Increasing KYB Coverage, Is your SSO on point, & The Future of Identity Management - Vibhuti Sinha, Tarvinder Sembhi, Chris Simmons - ESW #365
Trust in Microsoft, Apple, and the Holy AI, Moonstone Sleet, Cheating, Joshua Marpet - SWN #393
Shared irresponsibilities and the importance of product privacy: Apple vs Microsoft - ESW #365
Bricking PCs and IoT Hacking - PSW #832
GenAI, Security, and More Lies - Aubrey King - PSW #832
Buzz Aldrin, the Gray Lady, Veeam, Microsoft squared, Nvidia, Josh Marpet... - SWN #392
Microsoft Recall's Security & Privacy, Hacking Web APIs, Secure Design Pledge - ASW #288
Deep Learning to Combat AI Threats & Disrupting the Browser Security Market - Carl Froggett, Vivek Ramachandran - BSW #353
The State of the Cybersecurity Market, At Least According to Gartner - Padraic O'Reilly - BSW #353
Securing Health, Creating Phishing-Resistant Users & Rising Ransomware Stakes - Jim Broome, John Shier, Christopher Harrell - ESW #364
AI, Lockbit, Veeam, Club Penguin, Kali, Commando Cat, HugeGraph, Aaran Leyland... - SWN #391
The Cybersecurity Market Gets Some New Quirks and Features - ESW #364
Routers, Breaches, and Vulnerabilities - PSW #831
Interest in Identity Security is Spiking - Will Lin - ESW #364
Whose Vulnerability Is It Anyway? - Josh Bressers - PSW #831
Bots are Taking Over the Internet & Defining ASPM - Idan Plotnik, Erez Hasson - ASW #287
BCNF, Azure, Roaring Kitty, Hugging Face, Okta, Linux, Oracle, Josh Marpet... - SWN #390
Open Source Software Supply Chain Security & The Real Crisis Behind XZ Utils - Luis Villa - ASW #287
Harnessing the Power of Data and AI & The Evolving Role of the CISO - James Doggett, Sivan Tehila - BSW #352
Emotional Intelligence for Cyber Leaders - Jessica Hoffman - BSW #352
A CISO's Perspective, Defending Against AI & Ransomware Evolution - Kris Lahiri, Jim Broome, Mike Lyborg - ESW Vault
Securing Backups - SWN Vault
Achieving Cyber Resilience, External Cybersecurity & Risk Reduction - Margarita Barrero, Andy Grolnick, Alexandre Sieira - ESW Vault
Exploring the latest FortiGuard Labs Threat Report - Derek Manky - ESW Vault
Hacker Heroes - Josh Corman - PSW Vault
Securing Shadow Apps & Protecting Data - Guy Guzner, Pranava Adduri - ASW Vault
Collecting Bounties and Building Communities - Ben Sadeghipour - ASW Vault
College Degrees - SWN Vault
Shifting Third Party Risk & What You Need to Know About PCI DSS 4.0 - Lynn Marks, Paul Valente - BSW Vault
The VC Perspective: Embracing Uncertainty & Staying the Course - Alberto Yépez - BSW Vault
Secure Code From the Start, Security Validation & Platformization - Maxime Lamothe-Brassard, Volkan Ertürk, Chris Hatter - ESW #363
Gold Pressed Latinum, VBScript, ORBS, Rockwell, Chrome, SKY, Aaran Leyland, and More - SWN #389
Unified Identity Security, Identity is Under Attack & Identity is Security - Andre Durand, David Bradbury, Wendy Wu - ESW #363
This Week: short on funding, long on research and analysis - ESW #363
Exploits Make You More Secure - PSW #830
Pen Testing As A Service - Seemant Sehgal - PSW #830
Unpacking XDR & Business Applications - Chris Thomas, Oliver Tavakoli - ASW #286
Big Tech, Fighting a Junta, Keylogger in Microsoft, APT Hackers, Free Laundry, Josh - SWN #388
Node.js Secure Coding - Liran Tal - ASW #286
2024 Cyber Resilience Trends & Leveling the Cybersecurity Playing Field - Theresa Lanowitz, Jim Simpson - BSW #351
Security Money: Rubrick Saves The Index As It Continues To Climb - BSW #351
AI SOC Solutions, Revamp Your Cybersecurity, & Nightwing Introduction - Jon Check, Ricardo Villadiego, Jim McDonough - ESW #362
Microsoft, North Korea, Santander, CISA, Deepfakes, Aaran Leyland & More - SWN #387
Vulnrichment, Hardware Hacking, VPNs - PSW #829
Flexxon Server Defender, Unforeseen Innovation Outcomes, & Security through Data - Jeetu Patel, Amit Sinha, Camellia Chan - ESW #362
The Impacts Of Cryptocurrency - Nicholas Weaver - PSW #829
Post-RSAC, Our Heads Are Spinning, and Big News Keeps on Coming! - ESW #362
The Enterprise Browser & AI in Securing Software and Supply Chains - Mike Fey, Josh Lemos - ASW #285
3000 Years Ago, Dell, Robocalls, PyPI, Cinterion, Cacti, Chat-GPT, Josh Marpet... - SWN #386
Inside the OWASP Top 10 for LLM Applications - Sandy Dunn - ASW #285
Leveraging AI & The Role Identity Plays - BSW #350
Identity Resilience: The Next Frontier in Security - Ray Zadjmool - BSW #350
Easy Passwords, BIG-IP, Ascension, Lockbit, Google, Poland, ZScaler, Aaran Leyland... - SWN #385
Automated Pentesting, AI in SecOps, & AI-Powered Analytics - Jason Keirstead, Jay Mar-Tang, Anthony Aurigemma - ESW #361
Phishing Attacks Increase, Network Transformation, & Unified SASE as a Service - Deepen Desai, Renuka Nadkarni, Tim Roddy - ESW #361
Next Gen Threats, CTEM Essentials, & Proactive MDR - Randy Watkins, Paul Reid, Zaira Pirzada - ESW #361
Hacker Heroes - Jeremiah Grossman - PSW #828
Corporate Ransomware Deep Dive - Mikko Hypponen - PSW #828
Tetris, APT42, Kimsuky, Android, ChatRTX, MITRE, Computer Dating, Josh Marpet, More - SWN #384
Hacking AI Bias with Human Techniques - Keith Hoodlet - ASW #284
AI & Hype & Security (Oh My!) - Caleb Sima - ASW #284
Say Easy, Do Hard - Train How You Fight, Part 2 - BSW #349
Say Easy, Do Hard - Train How You Fight, Part 1 - BSW #349
Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383
RSA Conference, Verizon DBIR, funding, reports, partnerships and more - ESW #360
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360
ChatGPT Writes Exploits - PSW #827
Kicking Off With Crypto - PSW #827
Random Problems, Protecting Packages, and Vulns in Designs, Defaults & Data Leaks - ASW #283
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN #382
Why Companies Continue to Struggle with Supply Chain Security - Melinda Marks - ASW #283
Board's Pivotal Role in Cybersecurity as CISO-CEO Communication Gaps Continue - BSW #348
Meet Silver SAML: Golden SAML in the Cloud - Eric Woodruff - BSW #348
Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359
TikTok, Flowmon, Cisco, Brokewell, RuggedCom, Deepfakes, Non-Competes, Aaran Leyland - SWN #381
How GenAI Can Improve SecOps - Ely Kahn - ESW #359
Your TV Is Scanning You - PSW #826
Autonomous - I don't think that word means what you think it means - ESW #359
Advising The President On Cyber-Physical Resilience - Philip Venables - PSW #826
XZ & Open Source, PuTTY's Private Keys, LeakyCLI, LLMs Writing Exploits - ASW #282
Robofly, CRUSHFTP, Github, Palo Alto, MITRE, Fancy Bear, Deepfakes, Aaran Leyland... - SWN #380
Sustainable Funding of Open Source Tools - Simon Bennetts, Mark Curphey - ASW #282
Unraveling the "Materiality" Mystery: A CISO's Guide to SEC Compliance - Mike Lyborg - BSW #347
What does DoD's CMMC Requirement Mean for American Businesses - Edward Tuorinsky - BSW #347
Win 95, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland... - SWN #379
Crazy money and crazy outcomes - cybersecurity acquisitions in all shapes and sizes - ESW #358
From Hackers to Streakers - How Counterintelligence Teams are Protecting the NFL - Joe McMann - ESW #358
Hacker Heroes - Winn Schwartau - PSW #825
PCI 4.0 - PSW #825
Arg Parsing in Rust, End of Life Hardware, CSRB & MS, Chrome's V8 Sandbox - ASW #281
Duo, Steganography, Roku, Palo Alto, Putty, Cerebral, IPOs, SanDisk, & Josh Marpet - SWN #378
Demystifying Security Engineering Career Tracks - Karan Dwivedi - ASW #281
Generative AI Legal Challenges as SEC Charges Disrupt Journey to CISO Role - BSW #346
From Idea to Success: How to Operationalize a Startup from Zero to Exit - Seth Spergel - BSW #346
Combadges, SISENSE, Microsoft, CISA, Lastpass, Palo Alto, Broadband, Aaran and More - SWN #377
The AI-est news segment ever, now with even more AI! - ESW #357
Why Is Your TV & NAS On The Internet? - PSW #824
Understanding KillNet and Recent Waves of DDoS Attacks - Michael Smith - ESW #357
Digging Into Supply Chain Security - James McMurry - PSW #824
OWASP Breach, Types of Prompt Injection, Device-Bound Sessions, ASVS & APIs - ASW #280
Dronepocalypse, Microsoft, DLINK, Home Depot, Phishing, NIST, VenomRat, Josh Marpet - SWN #376
Lessons That The XZ Utils Backdoor Spells Out - Farshad Abasi - ASW #280
Understanding the Cybersecurity Ecosystem, Part 2 - Ross Haleliuk - BSW #345
Understanding the Cybersecurity Ecosystem, Part 1 - Ross Haleliuk - BSW #345
SEXi, Powerhost, Acuity, Layerslider, JSOutProx, Byakugan, Josh Marpet, and More - SWN #375
Have you heard about AI? Lots of AI news. Also, RSA conference, and RooBadges! - ESW #356
Getting Vulnerability Management Back on the Rails - Patrick Garrity - ESW #356
It's A Minifilter! - PSW #823
XZ - Backdoors and The Fragile Supply Chain - PSW #823
Top 10's First Update, Metasploit's Second Update, PHP Prepares Statements, RSA & MS - ASW #279
Lena, XZ, WallEscape, AT&T, OWASP, Google, Microsoft, AI, Josh Marpet, and More - SWN #374
Infosec Myths, Mistakes, and Misconceptions - Adrian Sanabria - ASW #279
CISO Soul Searching: Navigating the Evolving Role of the CISO - Harold Rivas - BSW #344
C-Level Perspective, Communication Failure, and Leadership Misconceptions - BSW #344
Electric Sheep, Exchange, Darcula, NuGet, Rockwell, FTX, Aaran Leyland, and More - SWN #373
Multi-Layered Defense Platforms and other terms we found in security press releases - ESW #355
Why cyber hygiene requires curious talent - Clea Ostendorf - ESW #355
Crypto, Bluetooth Vulns, Unsafe Locks - PSW #822
Are we winning? - Jason Healey - PSW #822
Patrick Stewart, Colorama, Strelastealer, CVSS scores, CHUDS, Josh Marpet, and more - SWN #372
Apps Gone Wild: Re-thinking App and Identity Security for SaaS - Guy Guzner - BSW #343
GoFetch Side Channel, OpenSSF & Security Education, Fuzzing vs. Formal Verification - ASW #278
CSO Role vs. Changing CISO Role as 60% of Both Roles are Omitted from SEC Filings - BSW #343
Top 5 Myths About API Security and What to Do Instead - Robert Dickinson - ESW #354
Successful Security Needs a Streamlined UX - Benedek Gagyi - ASW #278
Robots, UDP, GoFetch, DCs, Pwn2Own, Verner Vinge, Reddit, Aaran Leyland, and More - SWN #371
Lots Of Funding News, Airbus Says No, and Cato Networks Going IPO? - ESW #354
A Dive into Vulnerabilities and Compliance - PSW #821
Securing All The Things - Josh Corman - PSW #821
Emerging Trends CISOs Should Pay Attention To - Tom Parker - BSW #342
Vulns in Smart Locks, FCC labels for IoT, ZAP's New Home - ASW #277
Sick Jokes, WEBGPU, Fortra, Azorult, Fujitsu, Phishing, Josh Marpet, and More - SWN #370
Figuring Out Where Appsec Fits When Starting a Cybersecurity Program - Tyler VonMoll - ASW #277
How The Evolving Threat Landscape Drives Innovation In Cybersecurity - Dave Dewalt - BSW #342
Will AI allow us to finally scale vuln mgmt and threat detection? - ESW #353
Cynicism, TikTok, Redline, Securam, Ghostrace, eSim Swaps, Aaran Leyland, and More - SWN #369
Addressing Identity-Related Threats in 2024 - Rod Simmons - ESW #353
Printers Are "Not Nice" - PSW #820
Memory Safety, Re-Writing Software, and OSS Supply Chains - Omkhar Arasaratnam - PSW #820
TeamCity Authn Bypass, ArtPrompt Attacks, Low Quality Vuln Reports, Secure by Design - ASW #276
Dem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet and More - SWN #368
More API Calls, More Problems: The State of API Security in 2024 - Lebin Cheng - ASW #276
CISO's Guides to Engaging The Board, Artificial Intelligence, and Cyber Insurance - BSW #341
Protecting Executives: Why The Home Is The New Battle Ground - Chris Pierson - BSW #341
Star Trek, JetBrains, Facebook, Chrome, FBI, USBs, TikTok, Aaran Leyland, and More - SWN #367
Early stage startup M&A on fire, funding healthy, and attackers are like lawyers? - ESW #352
What can we do today to prevent tomorrow's breach? - Michael Mumcuoglu - ESW #352
DCNextGen, Memory Safety And More! - PSW #819
Facing the Reality of Risk Prioritization - Dan DeCloss - PSW #819
ToddleShark, Zeek, Stuxnet revisited, ICS, AMEX, Apple, Change, Josh Marpet, and More - SWN #366
The Simple Mistakes and Complex Seeds of a Vulnerability Management Program - Emily Fox - ASW #275
Security Starts At The Top and as CISOs Struggle, do they replace the CIO? - BSW #340
SAML & Secrets, Serializing AI Models, OWASP ISTG, More Memory Safety - ASW #275
The Convergence of Security, Compliance, and Risk - Igor Volovich - BSW #340
Clueless pols, Lazarus, Ubiquity, UAMPQP, BlackCat, Airlines, Aaran Leyland and More - SWN #365
Funding goes quiet while M&A makes some noise! - ESW #351
Hacktivism Unveiled: Insights into the Footprints of Hacktivists - Pascal Geenens - ESW #351
Malware In Strange Places, Overheating, LockBit - PSW #818
Social Engineering: AI & Living Off The Land - Jayson E. Street - PSW #818
PrintListener, Post-Quantum Crypto in iMessage, Silent Sabotage, Rust Survey Results - ASW #274
Avast, Hadoop & Druid Servers, HackerGPT, Apple, Crowdstrike, EFF Lockbit, & More - SWN #364
Creating the Secure Pipeline Verification Standard - Farshad Abasi - ASW #274
How Application Performance Transformed into Application Security - Shibu George - BSW #339
The Unique Challenges of AI Risks - Padraic O'Reilly - BSW #339
Two-Factor Authentication - SWN Vault
Threat Intelligence & Threat Hunting - Chris Cochran - ESW Vault
Illuminating Cybersecurity Wisdom: Insights from a Thought Leader - Wendy Nather - PSW Vault
Redefining Threat Modeling - Security Team Goes on Vacation - Jeevan Singh - ASW Vault
Back to School: Networking 101 - SWN Vault
The New BISO Role – A Career Path to CISO? - BSW Vault
Batman, Microsoft, War Driving, OpenAI, DevDrive, The Dead, Aaran Leyland, and More - SWN #363
Pretending to be Batman, self-destructing USB drives, and controlling your dreams - ESW #350
Material: cybersecurity word of the year, thanks to the SEC - Amer Deeba - ESW #350
Navigating the Cybersecurity Frontier: Insights from a Seasoned Professional - Toby Miller - PSW #817
Panel: Physical Security and Social Engineering - PSW #817
Proactive Compliance, Improving Cybersecurity Culture, and Hiring The Right Skills - BSW #338
LLMs & Security Tools, Shim Vuln, AI Threat Models, Configuration as Code with Pkl - ASW #273
Creating Code Security Through Better Visibility - Christien Rioux - ASW #273
Angry mobs, Azure, Avanti, Rhysida, Warzone, Flipper Zero, Josh Marpet, and More - SWN #362
Fake IDs threaten ID verification services, PANW hits $100B valuation, and other news - ESW #349
RoboJoe, SHIM, Fortinet, FaceOff, Simswap, sudo in Windows, Aaran Leyland, and More - SWN #361
Shim Shady and Algorithm Lovers - PSW #816
Zero-Trust is Meaningless if Your Cryptography is Flakey - Vincent Berk - ESW #349
You Can't Defend What You Can't Define - Sergey Bratus - PSW #816
Sorting Out Glibc Vulns, Apple's Security Research Device, BoringSSL, Old C Vulns - ASW #272
Teens Gone Wild, Nintendo, Anydesk, RUST, Google, Deepfakes, Jason Wood, and more - SWN #360
Starting an OWASP Project (That's Not a List!) - Grant Ongers - ASW #272
Pick Your Battles To Avoid Overconsolidation - Jess Burn, Jeff Pollard - BSW #337
Security Money - The Index Comes Roaring Back - BSW #337
E-Coli, Mercedes, Cloudflare, Ivanti, VT, GIGO, AI, Congress, Aaran Leyland and more - SWN #359
The Internet of Shit, AI Funding, Market Struggles, The Cyber Why, and when to Quit - ESW #348
The Elephant in the Pipeline: Securing the Wild, Untamed Software Supply Chain - Pete Morgan - ESW #348
Identifying Bad By Defining Good - Danny Jenkins - PSW #815
CVE, CVSS, EPSS Falls Short - PSW #815
Vulns & Secure Design, MiraclePtr Success, Abandoned Projects & Maven, Old "AI Chip" - ASW #271
Google, WhiteSnake, Outlook, NSA, Juniper, Jason Wood, and More - SWN #358
Getting Your First Conference Presentation - Sarah Harvey - ASW #271
Year of the CISO as CISOs Struggle for C-Suite Status and Expectations Skyrocket - BSW #336
Cyber Readiness: Train As You Fight - William Hutchison - BSW #336
Veolia, FeverWarn, SystemK, Fortra, GitLab, Ring, Trickbot, Aaran Leyland, and More - SWN #357
Secret Double Octopus, Furbies, and Too Much Data! - ESW #347
2024: The Year Cross-Platform Endpoint Management Finally Gets Good? - Zach Wasserman - ESW #347
MS Breach, printers, Android hacking - PSW #814
What Smart CISOs and Mature Orgs Get That Others Don't About Cyber Compliance - Matt Coose - PSW #814
RoboJoe, Apple, VMWARE, AI, Confluence, Scarcruft, Microsoft, Jason Wood, and More - SWN #356
Security in Wrenches, Vulns in Atlassian and GitLab, 2023's Top Web Hacking Tricks - ASW #270
Dealing with the Burden of Bad Bots - Sandy Carielli - ASW #270
Say Easy, Do Hard, Hiring a CISO, Part 2 - BSW #335
Google, Pax, LeftOverlocals, Mint Sandstorm, DJI, Colossus, Aaran Leyland, and More - SWN #355
Dogs, AI, and Gyrogears (it's a slow security news week) - ESW #346
Creating Trust in Biometric Authentication for Identity Verification - Sabrina Gross - ESW #346
Bigpanzi, PixieFAIL, Dark Xmas - PSW #813
K-12 Cybersecurity - Brian Stephens - PSW #813
Atari 400, Gitlab, Sonicwall, Juniper, Stats, Ivanti, Sharepoint, Jason Wood and More - SWN #354
Communicating Technical Topics Without Being Boring - Eve Maler - ASW #269
Say Easy, Do Hard, Hiring a CISO, Part 1 - BSW #334
Funding, acquisitions, AI, CES, and dumpster fires kick off security for 2024! - ESW #345
Smart Cars, Microsoft, Layoffs, PyTorch, Mandiant, SEC, Aaran Leyland, and More News - SWN #353
The Pros and Cons of Building a Security Business Around Open Source - Ev Kontsevoy - ESW #345
Predicting GenAI Threats and Concerns in 2024 - Greg Notch - ESW #345
We're Old Now - PSW #812
The Evolution of Purple Teaming - Jared Atkinson - PSW #812
23andMe Blames Users, Abusing Google's OAuth2, Rustls Performance, AI Goes OSINT - ASW #268
Jobs, QNAP, NIST, Spectral Blur, Stuxnet, Swatting, Volkswagen, Jason Wood - SWN #352
What's in Store for 2024? - ASW #268
Advice to Aspiring CISOs as SEC Mandate Fosters New Risk Management Framework - BSW #333
Best Practices for Moving Sensitive Data into the Cloud - Mike Scott - BSW #333
Former US Congressman talks about Cybersecurity and Emerging Technologies - Jim Langevin - SWN Vault
2023 End-of-Year Wrapup - ESW Vault
Hacker Heroes - Casey Ellis - PSW Vault
New Year's Resolution - SWN Vault
The Booming Business of Cybersecurity - Robert Herjavec - BSW Vault
HTTP RFCs Have Evolved, Breaking Into Cloud, Scaling AppSec at Netflix, & Confluence - Keith Hoodlet - ASW Vault
Doug and Russ together again, one night only. - SWN Vault
MegatronAL on Kicking in the Door to Cybersecurity - Angela Marafino - ESW Vault
Interview with Dr. Whitfield Diffie - PSW Vault
Crypto Identity - SWN Vault
Security Maturity: From Hostage Negotiator to Business Leader - Sandy Dunn - BSW Vault
OWASP SAMM - Software Assurance Maturity Model - Sebastian Deleersnyder - ASW Vault
Ransomware prevention, ransomware stats, SSH vulns, and $1 Chevy Tahoes! - ESW #344
Deepfakes, China, Strangest Scams, NordVPN, Russia, Aaran Leyland & More - SWN #351
Creating a certification path for SASE products and services - Pascal Menezes - ESW #344
2023 Funding and Acquisition Summary with Return on Security - Mike Privette - ESW #344
Supply Chain - PSW #811
Learning About Firmware Security - Xeno Kovah - PSW #811
Nagios and Abandoned Projects, Hacking Trains (to Fix Them), OAuth Threats, 5Ghoul - ASW #267
Effective Security Strategy, Overlooked Leadership Attributes, and Fun Icebreakers - BSW #332
Santa, SEC, Google, Qakbot, VMWARE, AI, Turing, Voight-Kampff, Jason Wood, and more - SWN #350
Making Service Meshes Work for People - Idit Levine - ASW #267
Cyber Risk Management Starts with Risk Quantification - Padraic O'Reilly - BSW #332
Funding continues for early startups, cybersecurity isn't special, but pickleball is - ESW #343
Telemetry Data's Role in Cybersecurity - Tucker Callaway - ESW #343
The Pillars of Trust in Identity Verification - Rob O'Farrell - ESW #343
Tesla, TikTok, Karakurt, VISS, Cozy Bear, GambleForce, Aaran Leyland, and More - SWN #349
LogoFAIL, Default Passwords and Android Hacking - PSW #810
Embracing AI - Alex Sharpe - PSW #810
Prompt Injection Scanners, Better AI Jailbreaks, Purple Llama, Linux Kernel Security - ASW #266
Cybertruck, Viagra, Struts, Atlassian, Log4Shell, Pharmacies, Jason Wood, and More - SWN #348
The ABCs of RFCs - Heather Flanagan - ASW #266
The Impact of the New SEC Regulations on Cybersecurity - BSW #331
World's First CISO Dies as SEC Turns Up Enforcement on Cybersecurity - BSW #331
Holiday News Edition Featuring Special Guests - PSW #809
Vulnerability Management and Disclosure - PSW #809
Carbon Black's Solo Venture, Cybersecurity in Space, Rethinking Human Error, & More! - ESW #342
Q*, Unitronics, SLAM, Bluetooth, Cold Fusion, Google Drive, Aaran Leyland, and More - SWN #347
Hardware Hacking - PSW #809
Lessons from 10 years running the first cyber-exclusive investment firm - Bob Ackerman - ESW #342
Extracting Data from ChatGPT, Vulns Around AI, Secure AI Guidance, LogoFAIL, BLUFFS - ASW #265
Surprise Cam Nudes, Staples, Turtle, Apple, 23andme, P2Pinfect, Gmail, Jason Woods - SWN #346
All the News -- Just Six Months Later - ASW #265
Uber CISO Speaks Out as CISOs Draft Letters to the CEO, CMO, and CCO - BSW #330
Real Edge Computing Use Cases from the AT&T Cybersecurity Insights Report - Theresa Lanowitz, Mark Freifeld - BSW #330
AI and Ransomware dominate the news cycles - ESW #341
Cybertruck, Okta, Google, Black Basta, Zoom, Unitronics, Aaran Leyland, and More - SWN #345
Cybercrime is booming: understanding why and what we can do about it - Keith Jarvis - ESW #341
Vulnerability Reporting, Zyxel, GPS Spoofing - PSW #808
Non-profits need security too - Kelley Misata - ESW #341
AI, LLMs and Some Hardware Hacking - Matthew Carpenter - PSW #808
AI and LLMs - Think of the Children - Josh More - PSW #808
Randstorm, Nothing Chats, Platform Engineering, PyPI Security Audit - ASW #264
Chimera, Aliquippa, FNF, Lazarus, DARPA, Namedrop, Google, Aaran Leyland, and More - SWN #344
Starting with Appsec -- Is It More of a Position or a Process? - ASW #264
Another CISO Scapegoat as SEC Welcomes CISOs to the Big Leagues - BSW #329
1% Leadership - Andy Ellis - BSW #329
Spying & Cyber Warfare - SDL - SWN Vault
Breaking into Cyber – Perspective from a High School - Tim Cathcart - ESW Vault
Interview with Brian Snow - PSW Vault
Travel Security - SDL - SWN Vault
Building Security from Scratch: One Year as CISO at a Start-up - Guillaume Ross - BSW Vault
Platform Firmware Security - Maggie Jauregui - ASW Vault
New security startups, Stamos and Krebs go to SentinelOne, NY takes cyber seriously - ESW #340
Cashwarp vs. Reptar, Rackspace, BlackCat, Bots, Aaran Leyland and More - SWN #343
Five Lessons Learned From Okta's Customer Support System Breach - ESW #340
Cybertruck, Solarwinds, Bitcoin, Docker, Ducktail, Experian, More News and Jason Wood - SWN #342
Exploring the Intersection of Security for Edge Computing and Endpoint - Theresa Lanowitz, Mani Keerthi Nagothu - ESW #340
SSH Under Attack, IoT Routers, BLE Spam, & Patching a House of Cards - PSW #807
3 Layers of App Security to Keep Hackers Out, Let Customers In - Aviad Mizrachi - PSW #807
Fuzzing Strategies, Responding to CISA's Open Source Security RFI, 35 Year Old Worm - ASW #263
How 2023 Changed Application Security and What's to Come in 2024 - Karl Triebes - ASW #263
Say Easy, Do Hard - Cyber Risk Management, Part 2 - BSW #328
Say Easy, Do Hard - Cyber Risk Management, Part 1 - BSW #328
Palo Alto buys Talon, the changing world of security exits, 6 Qs to ask your CISO - ESW #339
Fakes, SysAid, Sumo, farnetwork, CPU-Z, Google, Chat-GPT, Aaran Leyland, and More - SWN #341
Security Chaos Engineering: Realigning the Security Industry - Kelly Shortridge - ESW #339
The State of Internet Attack Surface - Aidan Holland - ESW #339
Firmware, Mainframes, Security and Risk - PSW #806
Testing AI Before It Comes To Get You - Austin Carson - PSW #806
Citrix Bleed, Atlassian Authz Vuln, OpenJS & jQuery, Secure Future Initiative - ASW #262
Grok, Okta, Looney Tunables, HelloKitty, Gootbot, Veeam, More News and Jason Wood - SWN #340
Security from a Developer's Perspective - Josh Goldberg - ASW #262
SEC Charging SolarWinds Is A Game Changer, Forcing Us To Rethink CISO Accountability - BSW #327
Security Money: The Index is Rebounding - BSW #327
HAR files, Okta breach, EO on AI, Ransomware, Solarwinds CISO charged, and Bagels! - ESW #338
Bots, Citrix, Mitre, Solarwinds, Naked Nudes, Scarlett, Aaran Leyland, and More News - SWN #339
Data Chaos MUST be Curbed, but how? - Jackie McGuire - ESW #338
Quarterly Market Review with a VC: Strategic Cyber Ventures - Hank Thomas - ESW #338
Source Code Revealed, Resume Prompt Injection, iPhones Be Updating, & Florida Man - PSW #805
Trustworthy AI for National Security - Kathleen Fisher - PSW #805
Abusing OAuth, State of DevOps, Nightshade and AI, iLeakage, Sandboxing Apps - ASW #261
How Security Tools Must Evolve - Dan Kuykendall - ASW #261
Proactive Boards Lead to Flexible CISOs as Companies Prepare for What's to Come - BSW #326
Dr. Who, iLeakage, Canada, AI, Killnet, NuGet, More News and Jason Wood - SWN #338
The Enterprise Browser for the Modern Workforce - Robert Shield - BSW #326
Cybersecurity Unicorns Are Back, the Okta Breach Is Bad, & Don't Invest in Startups - ESW #337
Pumpkin Spice, VMWARE, RoundCube, Apple, Big-IP, Oktapus, Aaran Leyland and More - SWN #337
The Evolving Role of the Browser in the Modern Enterprise World - Noriko Bouffard, Marco Genovese - ESW #337
VSCode Vulnerabilities - Thomas Chauchefoin, Paul Gerste - PSW #804
Shenanigans and more - PSW #804
Alternative Approaches to Startup Funding - The Syndicate Group - Chad Cardenas - ESW #337
Okta Breach, SolarWinds RCEs, CISOs and Boards, Crypto Business Logic, Secure Design - ASW #260
Goatse, Okta, Cisco, Ducktail, 0Auth, China, Spain, More News and Aaran Leyland. - SWN #336
OAuth, WebAuthn, and the Impact of Design Choices - Dan Moore - ASW #260
Cybersecurity: Business Priority, More Than Mere Compliance, and SEC Filings - BSW #325
Securing Edge Computing Use Cases by Aligning to Business Outcomes - Theresa Lanowitz, Scott Stout - BSW #325
Securing AI, SingTel sells Trustwave, Yubico IPO, Healthcare attacks & CISO Tenure - ESW #336
Skynet, India, North Korea, China, passwords, KeePass, Cisco, AI, Aaran Leyland, More - SWN #335
Leveraging Open Source and Network Effects to Fight Cybercrime at Scale - Philippe Humeau - ESW #336
The State of Cybercrime and Breach Response - Shane Sims - ESW #336
Fried Squid, Flipper Zero BLM Spam, Apple Devices, Signal Vulns? & Android TV Devices - PSW #803
Meet the Cyber Mercenary who can Overthrow a Government - Chris Rock - PSW #803
HTTP/2 Rapid Reset, Curl's SOCKS5 Bug, Standardizing CycloneDX, AI Bug Bounty - ASW #259
Cisco, Juniper, AVOSLocker, NoEscape,Valve, FreedomGPT, More News, and Aaran Leyland - SWN #334
OT Security - Huxley Barbee - ASW #259
Is Your Board Cyber-Ready as CISO Salaries Slow, Thus Making Difficult Decisions - BSW #324
Companies should be hiring CISOs for their leadership talent - Jason Loomis - BSW #324
Weaponizing Asset Intelligence, App Sec at ISW - Kevin Johnson, Brian Contos, Stacy Kooistra - ESW #335
Microsoft, SeroxenRAT, Smart Links, ToddyCAT, ShellBot, More News & Aaran Leyland - SWN #333
Getting Real with AI, Ending Point Solutions, InfoSec Burnout - Mike Campfield, Nathan Wenzler, Deidre Diamond - ESW #335
What does it mean for AI to be trustworthy? - Pamela Gupta - ESW #335
Android TVs (Malware Included), Patch Netscaler, Fixing Legacy Auth, & GNOME Bugs! - PSW #802
Getting Started With Reverse Engineering Hardware - PSW #802
Curl's Impending Patch, Glibc's Looney Tunables, ShellTorch, Another Top 10 List - ASW #258
23andMe, Facebook, GitHub's Secret Scanning, MGM Resorts, Grindr, & Jason Wood - SWN #332
Shifting Focus to Make DevSecOps Successful - Janet Worthington - ASW #258
Valuing Cybersecurity Investment, Cybersecurity is a CFO Issues, and CISO Career Path - BSW #323
Digital Transformation Breaks Risk Management - Chris Morales - BSW #323
Stop PII Exposure, Know Your Data Location, Cloud Threat Visibility - Ward Cobleigh, Reuben Moretz, Trace Woodbury - ESW #334
Feet, Google, Apple, Predator, r77, Qualcomm, qakbot, Deepfakes, & Aaran Leyland - SWN #331
Data Lakes - Security's Savior, or Waste of Money? Also, the News! - ESW #334
Lessons Learned from a Year of Cybersecurity Breaches - ESW #334
Fake Dead Grandma's, No Flipper Zero, Looney Tunables, & $20 Mil For Zero Days - PSW #801
Malware Trends - Anuj Soni - PSW #801
A Deceptive Dependabot, Insecure JWT, CISA Wants HBOMs, OpenSSF's Critical Projects - ASW #257
PKD, NSA, WS_FTP, Exim, Sextortion, BunnyLoader, CISA, More News, and Jason Wood - SWN #330
Creating Presentations and Training That Engage an Audience - Lina Lau - ASW #257
The CISO Carousel's Effect While Struggling to Get Budgets and Feel Free to Disagree - BSW #322
Risk Management in the Cloud Starts with Identities - Eric Kedrosky - BSW #322
Splunk Acquisition and The Blob with Allie Mellen - ESW #333
NarcBots, Blacktech, ZenRat, Chrome, CISOs, Privacy, More News & Aaran Leyland - SWN #329
Security's Role in Edge Computing Today - Theresa Lanowitz, Chris Goettl - ESW #333
SaaS Security in the Golden Age of SaaS - Yoni Shohet - ESW #333
The Right Skills For The Job - Kayla Williams - PSW #800
Snowden Revelations, Cult of The Dead Cow Saves The Internet, & Stealing Your Pixels - PSW #800
Equifax's Breach, CISA's 1,000 Vulns, Rust's TLS Library, Complexity vs. Design - ASW #256
Y3000, Sandman, ShadowSyndicate, MoveIt, Apple, Predator, More News, and Jason Wood - SWN #328
Avoiding Negative Value, Feedback-Driven Culture, & Don't Buy Too Many Security Tools - BSW #321
Supply Chain Security Security with Containers and CI/CD Systems - Kirsten Newcomer - ASW #256
Human Risk Management at Western Governors University - Jake Wilson - BSW #321
Massive valuations and acquisitions - Cato, Cisco, Splunk & SentinelOne! - ESW #332
Passkeys, bots, hotels, conning the con, TrendMicro, Pizza & Aaran Leyland - SWN #327
Making tabletop exercises better! - Ryan Fried - ESW #332
2024 Security Planning with Forrester - Merritt Maxim - ESW #332
Ncurses & Bad Things, LVFS is NOT a Backdoor, Physical Proximity, & Oh, Fortinet! - PSW #799
AI Attacks and LLM Security Matters - Nathan Hamiel - PSW #799
Azure's Eight XSS Vulns, CNCF's Two Security Audits, CISA's OSS Roadmap, Repojacking - ASW #255
Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255
SprySocks, Lazarus, Fortinet, Juniper, CISA, AI Art, More News, & Jason Wood - SWN #326
Board Members Struggling while Cybersecurity Goals Conflict with Business - BSW #320
2023 AT&T Cybersecurity Insights Report: Edge Ecosystem - Theresa Lanowitz, Steve Winterfeld - BSW #320
Breaches, detecting deepfakes, cloning yourself, and cars are a privacy nightmare! - ESW #331
Cyberdog, Pegasus, Webex, Peach Sandstorm, SAP, Caesar, Penn, Aaran Leyland, and More - SWN #325
Detection Difficulty - Why are we still missing attackers? - Chris Sanders - ESW #331
MDR and Self Sabotage - Jason Lassourreille - ESW #331
Cisco 0-Day, Chrome Vulnerability, MGM Shut Down, & More! - PSW #798
Ransomware Infection Vectors - Ryan Chapman - PSW #798
Microsoft Dumps a Key, Grafana Logs a Key, URL Parsers Disagree, Old Bug in Ubuntu - ASW #254
Mopria, Cisco, Seimens , Word, DarkGate, AP Stylebook, More News, and Jason Wood - SWN #324
Building a Scanner and a Community with Zed Attack Proxy - Simon Bennetts - ASW #254
The Secrets of Top Performing CISOs as the Board Expands Cybersecurity Risk Oversight - BSW #319
Identity is the Perimeter - Jeff Reich - BSW #319
The one in which Doug interviews Chat GPT - SWN Vault
Why Data Privacy is Being Overhauled in 2023 - Dan Frechtling - ESW Vault
Interview with Dr. Gene Spafford - Eugene Spafford - PSW Vault
Boardroom Off The Hook, But CISOs Need to Adapt to Take the Heat - BSW #314
Quantum Computing - SWN Vault
Broadening What We Call AppSec - Christien Rioux - ASW Vault
The Nine Cybersecurity Habits - George Finney - BSW Vault
Secure the Cloud and See ROI, Attack Your Way to Accurate Answers - ESW #330
AI cars, Sandstorm, BGP, Earth Estries, DOE, Aria, Aaran Leyland and More - SWN #323
Funding, SentinelOne/Wiz rumors, Layoffs, NordVPN's skunkworks, ChatGPT Enterprise - ESW #330
Simplify Your Audit Process without Compromising Identity Data Security - Erik Huckle - ESW #330
WinRAR Deets, A WIFI Worm, Inside McFlurries, & Jeff's Book Review - PSW #797
Incident Response: Clouds, SMBs, and more! - Amanda Berlin - PSW #797
Mystery, Qakbot, Crates.io, VDP, NetScaler, Entra ID, SynthID, FreeBSD, Jason Wood - SWN #322
How Can Security Be Smart About Using AI? - Jeff Pollard - ASW #253
CISO's Actionable Strategy for Success, Security Basics are Hard, & Building Culture - BSW #318
Go Crypto in Practice, Excel Executes Python, Protecting Users, DARPA Distills - ASW #253
The Art & Science of Metawar - Winn Schwartau - BSW #318
Ransomware Economy Players, Pentest War Stories, & Ransomware Groups Working Together - ESW #329
Openfire, Firepower, Barracuda, CosmicBeetle, Encryption, Aaran Leyland, and More - SWN #321
Record startup funding, identity and context, and the Hot Ones format comes to Cyber! - ESW #329
Tackling the Perennial Problem of Device Management - Jason Meller - ESW #329
Lora Projects, WinRAR, Kali Mobile, Benchmarks Vs. IRL, & VPN HYPE! - PSW #796
Managing Bug Bounty Programs At Scale - Dr. Jared DeMott - PSW #796
Discord.io Stops, Azure AD Pops, Zoom AI Drops, Model Confusion Attacks, Early XSS - ASW #252
Cold Fusion, EncroChat, Apple Device Spoofing, Tesla Breach, Jason Wood & More - SWN #320
Ransomware Attacks Trends/Impacts & Using Generative AI to Up Your Cyberdefenses - BSW #317
Security in a Cloud Native World & Mobile App Attacks - Asaf Ashkenazi, Jason Rolleston - ASW #252
Security Money: The Index is Still Trying to Recover - BSW #317
Managing Threats, Reduce your Attack Surface, MDR Evolved - Antonio Sanchez, Randy Watkins, Richard Yew - ESW #328
Dilithium, Africa, Suse, Citrix, QR, AI, &More News - SWN #319
Edge Ecosystem in Healthcare, Active Directory Modernization, Security Data Pipelines - Matthias Vallentin, Mickey Bresman, Theresa Lanowitz - ESW #328
CheckPoint buys Perimeter81, SecureWorks Cuts 300 Jobs, and News from BlackHat - ESW #328
NIST CSF, JTAG vs (OG) Xbox, Tricked Ya, Intel's Security, & Josh Debates Jeff - PSW #795
Defending Public Infrastructure While At War - Antranig Vartanian - PSW #795
DARPA's AI Challenge, CISA Wants Secure Open Source, 5 Years of Vuln Research - ASW #251
Pointers and Perils for Presentations - Josh Goldberg - ASW #251
DEFCON, ScrutisWeb, DoubleDrive, GitHub, npms, AI Cheating, More news, and Jason Wood - SWN #318
Securing your Browser & The Journey to Password[less] - Karim Toubba, Mike Fey - BSW #316
CISO in Crisis, but Will the SEC Regulations Make a Difference and New NIST CSF Draft - BSW #316
Talking to a co-founder of Gomboc.ai, a Blackhat Startup Spotlight Finalist - Ian Amit - ESW #327
Creepy AI, Codesys, Kyber768, .Net, Gootloader, DARPA, EvilProxy, Aaran Leyland - SWN #317
Tons o' funding, Black Hat Edition! Acquisitions! Remove your Google results! - ESW #327
Evil Flippers, The Human-Brain-Machine, AMD CPUs, Hacking Teslas & Rubber Duckies - PSW #794
Talking to the founder of Binarly, a Black Hat Startup Spotlight Finalist - Alex Matrosov - ESW #327
Incident Response Readiness - Gerard Johansen - PSW #794
Zap's New Home, Clang & Security Tools, LLM Attacks, Rust Supply Chain - ASW #250
BilDad, points.com, Papercut, Prospect , SMS, Microsoft, DAAS, Jason Wood, and More - SWN #316
You've Got Appsec, But Do You Have ArchSec? - Merritt Baer - ASW #250
CISOs Need Backing, How to Engage the C-suite and Board, and It's OK to Fail - BSW #315
Deciphering The National Cyber Workforce and Education Strategy - Dr. José-Marie Griffiths - BSW #315
Cyberinsurance, how cybersecurity startups fail, barbie, and cocaine sharks - ESW #326
Midnight Blizzard, Cult of the Dead Cow, Five Eyes, Aaran Leyland, and More News - SWN #315
Building an online community to protect kids online - from scratch! - Fareedah Shaheed - ESW #326
Email impersonation threats reaching corporate inboxes hit an all-time high - John Wilson - ESW #326
Super Admins, Ancient Language Codes, Great Leakage, & Mirai Vs. Tomcat - PSW #793
Incident Response Stories - Bill Swearingen - PSW #793
Zenbleed, Drop in Zero-Days, Security Testing Handbook, Public Speaking - ASW #249
Throbbing Elon, China, Dragos, Ransomware, Tomcat, Ivanti, Jason Wood and More - SWN #314
Identity and Verifiable Credentials in Cars - Eve Maler - ASW #249
How to Effectively Embrace and Protect Generative AI Tools, Models, and Data - Randy Lariar - BSW #314
Healthy Funding, $3.6B Imperva Acquisition, New SEC Rule, Death of Infosec Twitter - ESW #325
GameOver(lay), ZenBleed, Maximus, Redline, the SEC, More News & Aaran Leyland - SWN #313
Security Insights from Edge Ecosystem Exploration - Theresa Lanowitz - ESW #325
Flipper Zeroes, The "Kia Boys", RFID Tags for Amazon, & PCI Wizardry - PSW #792
Has the traditional CISO model outlived its usefulness? - Nathan Case - ESW #325
Post-Breach: The Hardening Continues - Sean Metcalf - PSW #792
SSH-Agent RCE, CTFs & bug bounties, Satellite Security, Cyber Trust Mark, Bad.Build - ASW #248
Citrix, Ivanti, DOJ changes, Elon X, TETRA Radio, Google WEI, Jason Wood, and More - SWN #312
Google's AI in Newsrooms, Sergey Brin's AI Return, & State AI Hiring Rules - BSW #313
Navigating the Complexities of Development to Create Secure APIs with Kristen Bell - Kristen Bell - ASW #248
Improving Diversity and Accessibility in Cybersecurity - Laurie Salvail - BSW #313
Microsoft Storm, WormGPT, Century of the Linux Desktop, & IronNet's Public Run - ESW #324
AirGaps, Slackware, Mitnick, Awareness, Microsoft, Bad API, Aaran Leyland and More - SWN #311
Zero-ish Trust - you'll never get all the way there and that's okay - Ryan Fried - ESW #324
How to fix the enterprise security user experience - Juliet Okafor - ESW #324
Security Certification - Rohit Misuriya, Sumit Siddharth - PSW #791
Lost Keys, LOL Drivers, Nintendo Helps FBI, Mali Mail, & Our Rap Names - PSW #791
Scotty in Hell, CISA, S3, White House,Microsoft, Mali, Jason Wood and More - SWN #310
Securing Non-Election Election Systems, Modernizing AppSec Education - Brian Glas - ASW #247
Say Easy, Do Hard, The Future of the CISO, Part 2 - BSW #312
Kubernetes and silentbob strike back, EV charger hacking, fake POCs - ASW #247
Say Easy, Do Hard, The Future of the CISO, Part 1 - BSW #312
17 Fundings, AI Sec, Cell Privacy, School Hacks, & Nifty Swifties - ESW #323
Microsoft, Zimbra, Rockwell, Joe Biden, Tax Software, Black Mirror, and Aaran Leyland - SWN #309
It's Time for the Traditional SIEM to Die - Eric Capuano - ESW #323
It's Alive!, Slow Migrations, Hiding on the Net, BlackLotus Source, & Gaslighting - PSW #790
"Just Write a SIEM rule" isn't a detection strategy - Tim MalcomVetter - ESW #323
Getting Control Of Your Security Data Pipeline - JP Bourget - PSW #790
Developer-Focused Security - Melinda Marks - ASW #246
Software Trust & Adversaries - Shannon Lietz - ASW #246
Hairy Tongue, MoveIt redux, HCA, Apple, Threads, Jason Wood, and More on SWN - SWN #308
CISO as a Business Executive, Mastering Effective Leadership & Communication Skills - BSW #311
The Golden Age of Email Security - Jess Burn - BSW #311
AI Bots - SWN Vault
Zero to Full Domain Admin: The Real-World Story of a Ransomware Attack - Joseph Carson - ESW Vault
The Psychology of Training - Matias Madou - ASW Vault
Thoughts From A Security Legend - Dan Geer - PSW Vault
Killer Robots - SDL - SWN Vault
The Fifth Domain - Richard Clarke - BSW Vault
Vendor Failures Coming, MDM Confusion, Cyberinsurance Mess, Tines, & an AI Camera - ESW #322
Russian Satellites, Cl0p, CISA, YouTube, ArcServ, EarlyRat, Aaran Leyland, & More - SWN #307
The State of IoT Security in 2023 - Paddy Harrington - ESW #322
Digging Into DSPM & the Future of Data Security in the Cloud - Dan Benjamin - ESW #322
Melting Neighbors, SBOMs, DIY 2FA - PSW #789
Pen Testing & Adversary Emulation - Carlos Perez - PSW #789
XSS in Azure, Choosing Web Research Topics, Security Dev-in-Residence, More Myths - ASW #245
Win 3.1, Fortinet, Women in Cyber, Teams, IOS, Mockingjay, Jason Wood and More - SWN #306
Invicti AppSec Indicator: Latest Web Vulnerability Trends & Best Practices - Patrick Vandenberg - ASW #245
CISO Burnout Prevention, Maximizing Leadership Potential, & Effective Management - BSW #310
The Pros & Cons of Vendor Consolidation - Shawn Surber - BSW #310
Cyber Directors (& Tsars!), Replace Your Hardware, Drink For PCI, & Handheld Gaming - PSW #788
How Good CISOs Build Bad Security Programs - Juliet Okafor - ESW Vault
Penetration Testing - Emilie St-Pierre - PSW #788
Policy Momentum in Coordinated Vulnerability Disclosure - Amit Elazari - ASW Vault
The 4 C's of Leadership with Michael Santarcangelo - BSW Vault
A bit of a downer week - not much funding, layoffs, company shutdowns, AI snitches! - ESW #321
Killer Robots, ESXI, Lockbit, MoveIt, CISA, SEC, Texas, Aaran Leyland, & More - SWN #305
Optimizing Security Investment: Sophos' Vision for MDR Excellence - Andrew Mundell - ESW #321
Wading Into the Wide World of WAF - Daniel Corbett - ESW #321
Verizon DBIR, CVSS 4.0, Security at Scale, Big IAM Challenge - ASW #244
Interview with Bill Cheswick - PSW VAULT
Eliminate Security Vulnerabilities with App Modernization and Identity Orchestration - Eric Olden - ASW #244
Mad dogs and paper clips, Fortinet, MoveIt, BatCloak, More News, and Jason Wood - SWN #304
Board-ready CISO?, Conflicting IdeasLead toStronger Strategy, Overcome Comm Barriers - BSW #309
Where is the Human in Your Risk Management Program? - Ashley Rose - BSW #309
Cisco buys Armorblox for... GenAI? Silly Awards, RIP Metaverse, and new AI FOSS - ESW #320
Phrenology, Barracuda, MoveIt, Lazarus, Minecraft, ChatGPT, Adrian Sanabria, and More - SWN #303
How to Enable Generative AI in Enterprise While Mitigating the Most Common Risks - Alex Babin - ESW #320
This is How Generative AI will Reshape the Enterprise - Daniel Miessler - ESW #320
L0pht Heavy Industries Panel - PSW Vault
LLM Top 10, Simple Vulns, PyPI Requires 2FA, ThinkstScapes Quarterly, Fun w/ Learning - ASW #243
AI, Kimsuky, SMBs, MoveIt, Gigabyte, Splunk, Chrome, more news, and Jason Wood - SWN #302
What's the Deal with API Security? - Sandy Carielli - ASW #243
Cybersecurity and the Board, Achieve More with Less, & Authentic Leadership is Hard - BSW #308
New AI Algorithm Regulations Coming: Will Yours Pass Government Scrutiny? - Mike O'Malley - BSW #308
What We've Learned From Interviewing Cybercriminals - Adam Janofsky - ESW Vault
Plain Text Keystrokes, WPBT, One Packet Exploits, & Sock Puppets! - PSW #787
Spotlight on Penetration Testers - Vlad Gostomelsky - PSW #787
Doing Application Security Right – Farshad Abasi - ASW Vault
Career Ladders In Information Security - Marc French - BSW Vault
Digital Trust as a Strategic Imperative & Insights from RSA Conference 2023 - Deepika Chauhan, Steve Ragan - ESW #319
Brain Implants, Volt Typhoon, CosmicEnergy, OAuth, ILoveYou , Aaran Leyland, and More - SWN #301
Prepping for Security Incidents, Automated Validation & No-Code Automation Revolution - Amitai Ratzon, Jon Check, Thomas Kinsella - ESW #319
Uber breaches, security awareness saturation, cybercrime P&L, sad acquisitions and AI - ESW #319
Post-Exploit, Vocal Passports, Will it Run DOOM!?!, & Coldplay Lyrics in Firmware - PSW #786
Generative AI Security Implications, Protecting Web Applications - Liam Mayron - PSW #786
New TLDs Zip By, eBPF Fuzzer, Microsoft Rocks Rust, Unwanted Tracking Spec - ASW #242
Space, Naughty Cell Phones, HP, ASUS, Meta, Google, Gil Kirkpatrick and more - SWN #300
Ten Things I Hate About Lists - ASW #242
Do You Need a CISO, & Employee Contract May Keep CISO Out of Jail - BSW #307
It's All About the Data: Understanding Your Blast Radius to Reduce Risk - Matt Radolec - BSW #307
Strategy for Active Directory Resilience, XDR Prioritization, and Security Operations - Dave Merkel, Jason Rolleston, Mickey Bresman - ESW #318
Wemo Vulnerability, EXSI Threats, Critical Cisco Flaws, IAM, Malware, and More - SWN #299
Reduce Attack Surface; Increase Car Safety and Customer Confidence with Identity - Ashley Leonard, Eve Maler, Michaël Lakhal - ESW #318
Mountains of backups, Softbank takes an L, and the need for breach transparency - ESW #318
Texas A&M Prof Fails, Windows Vs. iPhones, Cobalt Strike on Mac, & SHA-1 in Shambles - PSW #785
Artificial Ignorance & Pen Testing - Kevin Johnson - PSW #785
Staying Ahead of Hackers: Protecting Mobile Apps & Detecting Malicious Packages - Asaf Ashkenazi, Jeff Martin - ASW #241
ChatGPT, PentestGPT, BurpGPT, Cyber Resilience Act's Poison Pill & Malicious Actors - SWN #298
What to Do When the Honeymoon Period Ends - Chris Eng - ASW #241
Prioritizing Business Needs over Tools for Cost-Effective Protection - Lenny Zeltser, Mayeuresh Ektare - BSW #306
Ambassadors - The Power in the People - Molly McLain Sterling - BSW #306
Resilient Security: Tackling AI-Powered Phishing and Consumer Trends - Brian Kenyon, Deepen Desai, Rhett Dillingham - ESW #317
Terminators, Joe Sullivan, Dragos, ESXi, Microsoft, Greatness, Jessica Davis and More - SWN #297
CISO Avoids Jail, Shares Rise, Steganography, & DEF CON On Large Language Models - ESW #317
2023 Cybersecurity Trends and Post-RSA Observations - Antonio Sanchez - ESW #317
SBOMbshells, Honeytokens, Fixin It in the Future, & Immortal Modems - PSW #784
Mastering Penetration Testing: Critical Tasks & Essential Tools for Success - Paula Januszkiewicz - PSW #784
Strengthening Your Security Position: Detecting Software Supply Chain Breaches - ASW #240
Chat GPT, QR codes, Boot Guard, Akira, SuperCare, Jason Wood, and More News - SWN #296
Close the Security Theater: Enter Resilience - Kelly Shortridge - ASW #240
Insider Risk and Choosing the Right MSSP: A CISO's Guide - BSW #305
The Impact of Systemic Risks on the Business - Alla Valente, Cody Scott - BSW #305
Getting and Staying Cyber Ready with Smarter, Simpler Security and MDR - ESW #316
Kimsuky, WinRAR, Microsoft, AI, Siemens, Apple, Aaran Leyland and more - SWN #295
The Future of Cyber: Lateral Security, Edge Ecosystems, External Attack Surface Mgmt - Christopher Kruegel, Theresa Lanowitz, Vinay Anand - ESW #316
Sun Tzu Vs Infosec, 2 Weeks of News, AI Trends, & De-Horned Unicorns - ESW #316
No Pr0nHub 4 U, HTTP Lock Status, Selling Hacking Tools, & Chrome Drops HTTP Lock - PSW #783
Pen Testing Techniques and Jurassic Malware - Rob Fuller - PSW #783
Mitigating AppSec Risk with Systematic Testing and Effective Attack Mitigation - Karl Triebes, Patrick Vandenberg - ASW #239
Pornhub, LobShot, TMobile, lawsuits, CISA, CERN, AI, Jason Wood, and More - SWN #294
Application Security Maturity and Frameworks - Francesco Cipollone - ASW #239
Balancing Security & Operations for CISO Success - John Grancarich, Kunal Anand - BSW #304
Security Money - The Index Has Stabilized - BSW #304
Github, FIN7, Banks, Minecraft, Qualcomm, TenCent, BlueSky, Derek Johnson, and More - SWN #293
Bringing Useful Quantum Computing to the World - Kayla Lee - ESW #315
Hack All The Things With Flipper Zero - Kaitlyn Handelman - PSW #782
SSD AI/ML, Salsa for your Software, Hacking Smart TVs with IR, & Getting Papercuts - PSW #782
The Intersection of Hacking, Technology, and Civil Society with Jeff Moss - Jeff Moss - ASW #238
Mark Twain, TP Link, Intel, Papercut, Rustbucket, SolarWinds, Jason Wood, and More - SWN #292
A Forecast for Threat Groups, K8s Security Audit, GhostToken on Google, BrokenSesame - ASW #238
Say Easy, Do Hard - Closing the Skills Gap, Part 2 - BSW #303
Say Easy, Do Hard - Closing the Skills Gap, Part 1 - BSW #303
Finding Strength in Weakness - the Benefits of Being Vulnerable - Matt Johansen - ESW #315
Zombie Birds, Amazon AI LLM, Zscaler Beef, & Comcast Security!?! - ESW #314
Clop, EvalPhP, VMWare, Google, Fancy Bear, Routers, 3CX, Aaran Leyland, and More - SWN #291
How to Make the World Quantum Safe - Vadim Lyubashevsky - ESW #315
Lessons Learned From 2022's Biggest Data Breaches And Privacy Violations - Sandy Carielli - ESW #314
State of the Market with a VC - Ernie Bio - ESW #314
Under the Weather (Taxonomy?), Beating Roulette, Monitoring Macs, & XBMC Glory Days - PSW #781
Supply Chain Security - Ivan Arce - PSW #781
Security is a Revenue Booster, Tackling Skills Shortage, & Effective Communication - BSW #302
Deps.dev API, Right to Repair Tractors, Secure by Design, WebSockets, Adversarial AI - ASW #237
Sisyphus and Elon, Action1, CyberInsurance, CISA, LockBit, AI, more News & Jason Wood - SWN #290
Collecting Bounties and Building Communities - Ben Sadeghipour - ASW #237
Security & Productivity: How to Enable the Business While Remaining Protected - Aviv Grafi - BSW #302
Trust, Autonomy, and Building Amazing Distributed Teams - Nick Means - ESW #311
Flood of new startups coming out of stealth, new newsletters, hiding breaches - ESW #313
MSMQ, CLFS, Fortinet, Spectre redux, Google Pay, BingBots, Aaran Leyland, and More - SWN #289
The Practice of Pen Testing: 2023 Survey Results Revealed - Pablo Zurro - ESW #313
The Rise of RegOps: The Need for Compliance Automation - Travis Howerton - ESW #313
Stolen Cred Bizarre, US CyberSec, Stealing Cars With Headlights, & AI Censorship - PSW #780
Social Engineering & Conquering Impostor Syndrome - Billy Boatright - PSW #780
Application Security in Cloud - Vandana Verma Sehgal - ASW #236
JSON and a Regex, IoT Passwords, CAN Injection, Twitter CVE, Complexity, Tabletops - ASW #236
FTX, CISA, Apple, RPKI, Circle, NEXX, MSI, Jason Wood, and more - SWN #288
How to Succeed, Lead by Example, & Take Risks & Conquer Fears - BSW #301
Ransomware: The Attack That Keeps on Working - Fleming Shi - BSW #301
Deception, SaaS Security, and the 10 Plagues of Cloud Security - ESW #312
Naughty Tesla, Flipper Zero, Rilide, Styx, Genesis, Sophos, Cisco, Meta, and More - SWN #287
Impact of New US National Cybersecurity Strategy on Organizations Building With OSS - Donald Fischer - ESW #312
Financial Institutions Under Siege in Cyberspace - Tom Kellermann - ESW #312
Rorschach, QNAP, We Got Hacked, SystemD, UTF-8, & Grub2 Music - PSW #779
Cybersecurity Workforce Development - Sin Ming Loo - PSW #779
Ask the BSW Hosts Anything! - BSW #300
BingBang, Super FabriXss, 3CX on macOS, Secure Code Game, Real World Crypto 2023 - ASW #235
The Journey to Episode 300 - BSW #300
ProtoCell Phones, KEV, Efile, 3CX, Western Digital , NATO, More News & Jason Wood - SWN #286
Learning eBPF - Liz Rice - ASW #235
AI Can't Stop, Won't Stop; Early Stage Funding is Strong; YouTubers Hacked - ESW #311
TREXes, WooCommerce, 3CX, Zimbra, OneNote, ChatGPT, ProPump, & Aaran Leyland - SWN #285
Unpacking the White House National Cybersecurity Strategy - Josh Corman - ESW #311
The RESTRICT Act, Intel's Attack Surface, & Stop Developing AI (For 6 Months) - PSW #778
Firmware Hacking! Reversing and Exploitation - Philippe Laulheret - PSW #778
CISO, The Board, and Cybersecurity - Enough Said! - BSW #299
OpenAI Info Leak, BitCoin ATM Hack, GitHub RSA SSH Key, Measuring AI Security - ASW #234
You DO Security, You Do Not HAVE Security - Melissa Bischoping - BSW #299
Twitter, Tax Scams, Microsoft, Executive Orders, Pwn2Own, more News & Jason Wood - SWN #284
Real-life Examples. Benefits, Risk & Security Implications of AI - Frank Catucci - ASW #234
A Deep Dive Into Software Supply Chain Security - Neatsun Ziv - ASW #231
AI Hires Humans to Solve Captcha, Amazing Drones, & Buzzword Bingo 2023 Edition - ESW #310
TikTok, GitHub, CISA, More CISA, a Little More CISA, Netgear, & DoKwon - SWN #283
Bringing Transparency and Security to IoT with ioXt - Grace Burkard - ESW #310
Eliminate Attack Surface from Inside Out - Shamim Naqvi - ESW #310
7" Laptop, Trojans in Chips, Samsung's Faux Moon, & The 4 C's - PSW #777
Vulnerability Research (& Other "Things") - Nico Waisman - PSW #777
CISO: Job in Search of a Description, Rise of the BISO, When More is Less - BSW #298
PassTheHash from Outlook, RCE in Modem Chipset, OpenSSH Sandboxes, Curl's Anniversary - ASW #233
The Reasons Why CISOs Should Report to CEOs - Jeff Pollard - BSW #298
ZippyShare, NuGet, PinDuoDuo, ERNIE, Lantern, HDDs, & Jason Wood - SWN #282
Automating Security With Static Analysis - Josh Goldberg - ASW #233
Robert Downey Jr, K-Shaped, GPT-4, Rapid7, & SVB - ESW #309
Financial Scams, Microsoft, BianLian, Leihigh Medical, CISA, & Vile Hackers - SWN #281
Applied Research & the Power of Sustained Thinking - Casey Smith - ESW #309
How to Secure Your CI/CD Pipeline by Prioritizing Cyber-Risk Management - Tal Morgenstern - ESW #309
How to Steal a Tesla, AI On Your Pi, Linux Desktop: Future, & SOCKS5 Your Burp - PSW #776
Everything's Valid in Code & War: Attacks on the Software Supply Chain - Santiago Torres Arias - PSW #776
Common Leadership Disconnects and Leading Security through Hard Times - BSW #297
Loom Disclosure, GitHub 2FA, Buffer Overflow in TPM, Dropbox Career Framework - ASW #232
AI In Email Security – A Tale of Two Sides - Dr. Kiri Addison - BSW #297
The OWASP ASVS and Sustainable Software Security Practices - Josh Grossman - ASW #232
Casper, Flipper, NordVPN, Ring, SVBk, GoBruteforcer, Aaran Leyland, and more - SWN #280
A Light Week, InfoSec Tabletop Gaming, White House CyberSec, & AI Galore! - ESW #308
Snailbrook, Xenomorph, SonicWALL, Github, Veeam, TSA, Ring, Aaran Leylan, and more - SWN #279
Product-Led Growth and Building Products in Cybersecurity - Ross Haleliuk - ESW #308
DIY Software Bill of Materials How-To - Roland Diaz - ESW #308
Hidden Buttons, Dumb Password Rules, BLE Relay Attack, & Stealthy UEFI - PSW #775
Ask Our PSW Hosts Anything! - PSW #775
Leadership: Importance, Factors that Drive Success, and Subtraction - BSW #296
WebSocket Hijack, Post-Quantum Side-Channel, OWASP's Future, OAuth Misconfigs, ZAP - ASW #231
Why Driving Better Healthcare Patient Outcomes Starts With Cybersecurity - Terry Ray - BSW #296
AI &More AI, Word, OneNote, FiXS, Wago, Water, & Aaran Leyland - SWN #278
Deepwatch Series C, SPAC Fads, LastPass, & Tyler Trades Adrian's Info for Chocolate - ESW #307
Organoids, Decider, BlackLotus, Mustang Panda, Ex22, Dish, & Aaran Leyland - SWN #277
Detecting Breaches In Apps & Why Every Security Team Needs Data Science - Jim Routh - ESW #307
MSP = More Security Please? The state of Managed Service Providers - Raffael Marty - ESW #307
ChatGPT Articles, What the Zimbra, Burp Plugins, & Vocal Passports - PSW #774
Phishing Attack & Defense - Asaf Cidon - PSW #774
Twitter 2FA, Server-Side Prototype Pollution, AI Security & Privacy, Smarter Testing - ASW #230
Leadership Pressures, Security Leaders Leaving Security Roles, How to Empower Teams - BSW #295
ChatGPT: Cybersecurity's Savior or Devil? - BSW #295
ClippyNator, NewsCorp, Lastpass, US Marshals, & Housez WP Exploit - SWN #276
Supply Chain Breaches and Hacking the Cloud: Lessons Learned from IR - Lina Lau - ASW #230
Liquid Robots, Korean Cars, Fortinet, Atlassian, BingBots, & Derek Johnson - SWN #275
Discussing Key Elements of Offensive Security: Pen Testing and Red Teaming - Pablo Zurro - ESW #306
Let's Talk BS! Human Factors in Cybersecurity - Dr. Inka Karppinen - ESW #306
TikTok Thefts, Typo Squatting is Lame, Stealing from the TPM, & Codebreaking Letters - PSW #773
Hacker Space Rogue to Release Book on Hacking Group L0pht Heavy Industries - Space Rogue - ESW #306
Zero Trust ≠ Zero Risk: Leveraging Risk Techniques for Zero Trust Acceleration - Ron Woerner - PSW #773
CISOs and Hacking, Getting Employee Buy-in, and Listening - BSW #294
Reddit Breach, Toyota Bugs, OpenSSL Vulns, Top 10 Web Hacking Techniques of 2022 - ASW #229
Defining Human Risk Management - Drew Rose - BSW #294
Clipper Malware, Chinese Hackers, Record DDoS Attack, Apple Patch & Josh Marpet - SWN #274
What's the Best Way to Threat Model? - Nick Selby - ASW #229
Dysentery, Privacy , Gootloader, Bing AI, Vela, Reddit, & Bradley Barth - SWN #273
Insurtechs, Sumo Logic & R7 Go Private, Cyren Closes, Darktrace Shorted, &NSA Hiring! - ESW #305
Advancing Zero Trust Priorities - Ashley Leonard - ESW #305
Achieve Unprecedented Visibility into Your Software Supply Chain - Tom Goings - ESW #305
The RIGHT Software, Docker vs. Root, CORS, Vuln Risk Scoring, & Cisco Attacks - PSW #772
Linux and FOSS Supply Chain Issues - Hal Pomeranz - PSW #772
CISO Reporting Structure, 5 CISO Traps, and Communicating Cybersecurity Best Practice - BSW #293
Aviation ASCII Art, OpenSSH Double-Free, F5 Format String, OSC&R for Supply Chains - ASW #228
Chinese Androids, ERNIE, Bard, Fortra, Sunlogin, Dingo, Google, Jason Wood, and More - SWN #272
Security Money - Waiting for the Recovery - BSW #293
Myths and Lies in Infosec - Adrian Sanabria - ASW #228
New CEOs, SMB & Cyber Insurance Trends, Herman Miller Chairs, & SQL Slammer - ESW #304
Chat-GPT Seinfeld, QNAP, Google FI, Headcrab, Banner, GoodRx, Oracle, & GoAnywhere - SWN #271
Understanding & Protecting Against Insider Risk - Joseph Blankenship - ESW #304
Q&A: Cyber Insurance - Alla Valente, Heidi Shey - ESW #304
Super(conductive) Graphene, Yandex Leak, No Fly Lists, & Thinkpad Servers - PSW #771
The Power of Purple Teaming: Using Runbooks to Standardize and Collaborate - Dan DeCloss - PSW #771
Source Leaks, BIND DoS, Refactoring Go to Typescript, Git Audit & Rust, SQL Slammer - ASW #227
CISOs Make Great Board Members, Unlock Your Leadership Potential, and 10 Keys to CISO - BSW #292
Behind the Screens: The Board's Evolving Perceptions of Cyber Risk - Neil Clauson - BSW #292
SwiftSlicer, vRealize, Google Play, KeePass, Huawei, & Github - SWN #270
There Is No Average Behavior - Dr. David Movshovitz - ASW #227
Enterprise News Part 2, Everything Else - ESW #303
Empathy, Bitwarden, Lexmark, Exchange, Dragonbridge, & Derek Johnson Talks About Hive - SWN #269
Enterprise News Part 1, the Market Stuff - ESW #303
Discuss: What Makes a Good Breach Response? - ESW #303
GetVariable Strikes Again, Linux Santa, AMD Vulns, & Remote Computer Detonation - PSW #770
How Do We Raise the Floor for Software Quality? - Brian Behlendorf - PSW #770
New Board Leaders, Great Leaders, and Communicating Business Value - BSW #291
Breach Disclosures, SSRF in Azure, Integer Flaws, Top 10 Web Hacking Techniques - ASW #226
2nd Edition: How to Measure Anything in Cybersecurity Risk - Doug Hubbard - BSW #291
Crafting Security Training for Secure Code and Security Culture - Marudhamaran Gunasekaran - ASW #226
Chick-Fil-A, OneNote, XLLs, VastFlux, Tmobile, ChatGPT, Ukraine, Lots of Microsoft - SWN #268
Europe & Privacy, Why It Matters to Security Pros - Isabelle Roccia - ESW #302
IronNet, Windows 7 EOL, Cloud Sec Trends, ChatGPT, & Personal CyberSec - ESW #302
IoT, OT & Network Device Attacks, Trends, Stories & Threat Prevention - Brian Contos - ESW #302
Frozen, Fortinet, Scattered Spider, Routers, APF, Telegram, & CWP - SWN #267
Real Time Linux, RSA Encryption, Sec vs. Compliance, Cold River, & ChatGPT - PSW #769
Other Considerations for Applying Security into Critical Infrastructure Systems - Kate Stewart - PSW #769
CISOs, BISOs, and the Power of Positive Leadership - BSW #290
CircleCI Breach, Vulns in Auto Sites, Google Speaker Bugs, Office Space, S3 Defaults - ASW #225
Secure by Design: Implementing Lessons Learned from the SUNBURST Attack - Tim Brown - BSW #290
CodeQL, Kinsing, Bit Buckets, Win 7 is dead, Spynote, Vall-E, & Aaran Leyland - SWN #266
Securing your APIs using OAuth - Dan Moore - ASW #225
Unicorn Layoffs, Zombiecorns, IronNet, Remediant, & AI Generated Insecurity - ESW #301
Virtual Smells, Werfault, 2012, ChatGPT, Captcha, Rust Hyper, & Qualcomm - SWN #265
InfoSec Community Culture & the Migration to Mastodon - Jerry Bell - ESW #301
How a Scientific Approach Can Save Security Testing - David Hunt - ESW #301
Roblox Prison, 3DS RCE, Puckungfu, Google Home Wiretaps, & Lastpass Hack - PSW #768
Software Supply Chain Security & MITRE's System of Trust - Robert Martin - PSW #768
Security Product Metrics, ML 101, PEACH for Cloud, Log4Shell Lookback, Appsec Tools - ASW #224
Say Easy, Do Hard, Minimum Viable Security - Part 2 - BSW #289
Say Easy, Do Hard, Minimum Viable Security - Part 1 - Jon Fredrickson - BSW #289
Office Space, Lockbit, 380 volts in Manilla, PyTorch, & Non-Binary RAM - SWN #264
DevSecOps Essentials - Keith Hoodlet - ASW #224
Texas Bans TikTok, Ninjas Come Out of Stealth, Proofpoint, & InfraGard Hacked - ESW #300
End-of-Year 2022 Wrapup - ESW #300
Simplifying Cloud Security - Terry Barber, Parag Bajaria - ESW #300
Holiday Security News & The Holiday Hack Challenge 2022! - PSW #767
Hacker Trivia - PSW #767
How To Get Started in Information Security - PSW #767
Is Penetration Testing Dead? - PSW #767
CISOs Unite, Cybersecurity Vendor Layoffs, & Audience First - BSW #288
Another Ping of Death, Clever JSON Manipulation, iCloud Encryption, ChatGPT Threats - ASW #223
Redefining Threat Modeling - Security Team Goes on Vacation - Jeevan Singh - ASW #223
The State of Email Security - Mike Flouton - BSW #288
4 Day Work Weeks, Threathunter.ai, Microsoft 365 Ban, & Refusing to Be Fun at Work - ESW #299
A Whole Lotta BS (Behavioral Science) About Cybersecurity - Lisa Plaggemier - ESW #299
Building & Protecting a Digital Society - Joseph Carson - ESW #299
Ping of Death, 500 Year Old Ciphers, Pwn The Dev, & Chatbot's Order 66 - PSW #766
Severe BMC Vulnerabilities - Nate Warfield - PSW #766
To The Cloud! (Or Not Yet?) - Sinan Eren - PSW #766
Android Platform Certs Leaked, Hell's Keychain, Web Hacking Cars, Bug Bounty Tips - ASW #222
5 Top Qualities, Ego is the Enemy, and Explain Things Better - BSW #287
Thinking Differently About Cyber Talent/Critical Infrastructure for National Security - Kelly Rozumalski - BSW #287
Inoculating Malicious Content: Making File Types Safe to Handle - Aviv Grafi - ASW #222
AI Bedtime Stories, IBM Cloud, Docker Hub, & EU CyberSec Legislation - ESW #298
Building the Right Business Culture to Manage Human Error - Ryan Pullen - ESW #298
Being an Investor & Entrepreneur in Data Security - Ron Reiter - ESW #298
Open Source Security - Josh Bressers, Kurt Seifried - PSW #765
RCE in Muddy Waters, Hacking Smart Watches, FCC Bans Stuff, & When BMC's Attack - PSW #765
AWS AppSync Vuln, Zero-Initialization, HTTP/3 Connections, Thinkst Quarterly - ASW #221
Sacrificial CISO, Ask the Right Questions, and Handle Criticism Gracefully - BSW #286
Leadership Lessons from the First 100 Episodes of CISO Stories - Todd Fitzgerald - BSW #286
Searching on Encrypted Data: MongoDB's Queryable Encryption - Kenn White - ASW #221
InfoSec Layoffs, Mastodon Passwords, Templarbit, & 18 Funding Rounds - ESW #297
Why Data Privacy is Being Overhauled in 2023 - Dan Frechtling - ESW #297
How IaC is Changing Cloud Security for the Better - Tony Karam - ESW #297
Stealing Mastodon Passwords, Update Your Firmware on Linux, & Oops I Leaked Again - PSW #764
UEFI & SMM Vulnerabilities - Jesse Michael - PSW #764
CosMiss, Pixel Lock Screen Bypass, IIoT Path Traversal, NSA on C & C++, Code Reviews - ASW #220
Meet Fortra, Your Cybersecurity Ally - John Grancarich, Mike Devine - BSW #285
The Top 10 CI/CD Security Risks and CI/CD Goat - Daniel Krivelevich - ASW #220
Cybersecurity Leaders Quitting as New Cybersecurity Regulations Kick-in? - BSW #285
The Joe Sullivan Case: Anomaly or Precedent? Part 1 - ESW #296
The Joe Sullivan Case: Anomaly or Precedent? Part 2 - ESW #296
Modern Access Security: Ditch Passwords, Implement 0-Trust & Secure APIs - Travis Spencer - ESW #296
Urlscan, BYODC, Indirect Branch Tracking, Don't Hack Me Bro, & Fizzling Out Security - PSW #763
A Case for Threat Informed Penetration Testing - Dan DeCloss - PSW #763
Achieving Alchemy - What Does an Actual XDR Approach Look Like? - Rafal Los - BSW #284
Punycode in OpenSSL, Authn in Cosmos DB Notebooks, Documenting Security, IoT Labels - ASW #219
What Cyber Security Technologies to Prioritize in 2023 - Meritt Maxim - BSW #284
Bad Bots are Targeting Your APIs: What You Need to Know - Karl Triebes - ASW #219
FTC Against Drizly's CEO, 12 Funding Announcements, Cisco Meraki, & MFA Trends - ESW #295
The Overlooked Identity Security Risks of RPA - Alan Radford - ESW #295
Meet Fortra, Your Cybersecurity Ally - John Grancarich - ESW #295
OpenSSL Vulns, RepoJacking, Authentication Bypass, & Supercharging Your Hacking - PSW #762
Blenster - Hacking Hardware - Ben Hibben - PSW #762
Critical OpenSSL Vuln, SQLite Vuln, Apple Security Blog, Randomness & Shuffling - ASW #218
Cybersecurity Leadership, CareerMistakes, and 13 Horror Stories for Cyber Halloween - BSW #283
Data, People & Methodology: 3 Pillars of a Cyber Risk Quantification Program - James Turgal - BSW #283
Understanding Web3 Application Security - Sandy Carielli, Martha Bennett - ASW #218
Zombies, Gen Z VS Boomers, ICMs, & Australian Breach Fines - ESW #294
Why Migrating Identity to the Cloud Makes Even More Sense Now - Jason Oeltjen - ESW #294
When Worlds Collide: Dealing with Converged Identities and Devices - Gary Orenstein - ESW #294
Exploiting Hacker Tools, Microsoft "Fixes" Driver Problem, Moles, & Deconflictions - PSW #761
Linux Rust & Retro - Charles Shirer - PSW #761
CEOs, not CIOs, Lead Digital Initiatives, CFOs Worry About Cyber, CISOs Get a Raise - BSW #282
The Booming Business of Cybersecurity - Robert Herjavec - BSW #282
Text4Shell, GUAC for SLSA, OpenSSF Scorecards, Toner Deaf, OWASP Elections - ASW #217
Kubernetes, Container and Cloud Best Practices for Securing Cloud Apps and Hardening - Kong Yew Chan - ASW #217
Unleashing the Bees, Magic VS Technology, Cyber M&A, & TEHTRIS - ESW #293
An MRI for the Cloud: Network Data for Cloud Visibility, Detection & IR - Edward Wu - ESW #293
Situational Awareness in an Age of Dispersed Assets & Atomized Networks - Martin Roesch - ESW #293
EDR, Driver Signing, SBOMS - Do They Work? - PSW #760
SANS Annual SOC Survey Insights - Christopher Crowley - PSW #760
Shifting to a Victory Mindset - Michael Meis - PSW #760
Not Your CISO, Metrics That Matter, and Talk Less (And Listen More!) - BSW #281
Security Money - The Index Takes a Beating - BSW #281
FortiOS Exploit, Linux Kernel Wi-Fi Vulns, Infosec Communities, Secure Coding - ASW #216
How NVIDIA Uses AI to Address Cybersecurity Challenges - Jason Recla - ASW #216
Cyber Nutrition, IT & Sec Funding, Private Equity Firms, & The Splunk/Cribl Battle - ESW #292
The State of Software Supply Chain Security and Trends in Managing Threats - Eric Tice - ESW #292
The Current State of Cloud Security: What You Need to Know - Dan Neault - ESW #292
Detecting Deepfake Audio, Supply PHP Attack, UMAS Secrets, & Pixel 6 Bootloader - PSW #759
A Day in the Life of a Threat Researcher - Ismael Valenzuela - PSW #759
October 5, 2022: The Day the Role of the CISO Changed Forever - BSW #280
CISOs 2023 Planning Guide: Forecast The Recession's Impact On Your Program - Jeff Pollard - BSW #280
Rust in the Linux Kernel, Uber Security Verdict, Prototype Pollution, PHP Composer - ASW #215
Creating and Curating Educational Resources for Secure Coding - Akira Brand - ASW #215
Cloudflare Incentives, Web3 Funding, Emulating Adversaries, & State of the Sec Market - ESW #291
Blurred Lines Between Consumer & Enterprise; Shades of Gray with MFA - Tim Morris - ESW #291
Quantitative Security Planning from the Front-Line - Ryan Fried - ESW #291
Pig Butchering, Dell Driver FTW, Deep Access, & PHP Supply Chain Attacks - PSW #758
Device Paradox: Why Security & Criticality Don't Overlap in Embedded Systems - Ang Cui - PSW #758
Fake CISO Profiles, Executive Communication, and Developing Cybersecurity Leadership - BSW #279
Exchange RCE, Patching at Scale, DORA Metrics, USENIX Best Papers, Passkeys - ASW #214
CYBER.ORG's Project Access: Training a Diverse Future Workforce - Dr. Chuck Gardner - BSW #279
Critical Requirements for Cloud Native Application Security - Dean Agron - ASW #214
SentinelOne, Malwarebytes Raises $100M, Federal Security Funding, & Passwords.txt - ESW #290
A Human Defense Platform: Fortifying Your Last Mile of Cybersecurity Defenses - James Norrie - ESW #290
State of the Market With a VC - Will Lin - ESW #290
Voltron, Karakurt Extortion, 1 Click Workaround, Snowden Citizenship, & Casey Ellis - PSW #757
The Role of Human Behavior in Security & the Future - Ev Kontsevoy - PSW #757
Firing Your Entire Cybersecurity Team? Really? Board Doesn't Care About Buzzwords! - BSW #278
The Untold Stories of Ransomware - Fleming Shi - BSW #278
Authz Bypass in Oracle Cloud, Chrome Prototype Pollution, Why Security Products Fail - ASW #213
Show, Don't Tell, Your Developers How To Write Secure Code - Janet Worthington - ASW #213
Oracle Whoopsie, Internet 2.0 Funded, Fortanix Series C, & Dig Security - ESW #289
How The Uber Breach Went Down - ESW #289
Understanding DSPM: Data Security Revisited! - Jonathan Roizin - ESW #289
Firmware VS. Hardware, Tamper Protection, Hacking Gamers, & Unfortunate Spillage - PSW #756
MFA Fatigue & Authentication - Sinan Eren - PSW #756
Cybersecurity's Too Important, Great Leaders Listen, and Stricter Cybersecurity Rules - BSW #277
Uber Breach, Rust Security Team, MiraclePtr, Supply Chain Criticism, Careers - ASW #212
Maximizing Risk-Reduction in your Security Program - Paul Baird - BSW #277
API Security from a Developer's Perspective - Sam Placette - ASW #212
Funding Rounds Rebound, Bitwarden Password Management, Cymulate, & Ethereum's Merge - ESW #288
Microsoft Identity Security Issues - Sean Metcalf - ESW #288
Enterprise Browsers: Unicorns or Trophy Winners? - Paddy Harrington - ESW #288
Browser In Your Browser, Sock Puppets, Performance Killing Patches, & GIFShell - PSW #755
Using No-Code Automation to Tackle Analyst Burnout - Thomas Kinsella - PSW #755
Coaching, What CEOs Expect, How NOT to Fire Your Security Team - BSW #276
Unintended Consequences: Evolution of Applications, APIs, and Where They Run - Karl Triebes - BSW #276
Go Vuln Project, OSS-Fuzz Successes, No More Basic Auth, NSA Supply Chain Hardening - ASW #211
Shifting Left Probably Left You Vulnerable. Here's How You Can Make it Right. - Sonali Shah - ASW #211
Open Source MFA, Layoffs, Krit, AWS Incident Response, & Product Led Growth Talk - ESW #287
Why Our Right to Repair Is Critical To Securing The Internet Of Things - Paul Roberts - ESW #287
Optimizing the Human Element of Cybersecurity - Jeff Orloff - ESW #287
Crappy Exploits, $8 Mil 0-Day, Mac Updates, & Anti-Cheat Is NOT Anti-Hack - PSW #754
Turning Cybersecurity Education Into Industry Impact - John Hammond - PSW #754
Twitter Whistleblower Complaint, LastPass Breach, Threat Modeling Culture - ASW #210
Cloud Security Frameworks: Clarity vs. Confusion - Doug Dooley - ASW #210
Improve Your Leadership, Rekindling Community, and Cybersecurity Spending Strategies - BSW #275
How to Use Cybersecurity Scorecards and KPIs to Achieve your Security Goals - Brad Thies - BSW #275
Twitterpocalypse 2022, Wiz, Awesome Free Tools, & News Catch Up - ESW #286
Data Security Posture Management - Roey Yaacovi - ESW #286
How to Measure Human Cyber-Risk, Finally! - Ragnar Sigurdsson - ESW #286
Mudge, Tox P2P Messenger, 8 Year Old Linux Flaws, Dirty Pipe, & Unix Legends - PSW #753
Data Integrity Lights the Way: Security With the Decentralized Web - Davi Ottenheimer - PSW #753
Cybersecurity is a Team Sport - Chase Snyder - BSW #274
CISO Salaries, What is a BISO, and Keeping Teams Motivated - BSW #274
Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw - ASW #209
AppSec Tips & Tricks for Cloud Native and Kubernetes Environments - Kiran Kamity - ASW #209
Identity Innovation: Passwordless & B2C Solutions Gain Momentum - ESW #285
What Cybersecurity Pros Need to Know About New State Data Privacy Laws - Scott Giordano - ESW #285
StarLink Hacks, Ramsomware Extortion, Signal/Twilio Compromise, Hacking Cars and Trac - PSW #752
It "Keeps on Slipping": Navigating the SEC's New Timeline for Incident Reporting - Jennifer Sosa - ESW #285
InfoSec Lessons from Military Strategy, Tactics, and Operational Art - Greg Conti - PSW #752
Craigslist to Cyber Philanthropy and Journey From Startup to Cyber Giant - Craig Newmark, Dave Dewalt - BSW #273
Microsoft Bounties & Edge Security, Strategic Bounty Programs, HTTP Desync Attacks - ASW #208
Security Succession Planning For Business Resilience - Jess Burn - BSW #273
Good, Not Perfect, AppSec - Tanya Janca - ASW #208
Normalyze, Axio, Flashpoint, Medical Records With Amazon, & Dial-Up Service Returns! - ESW #284
Modern Threat Hunting with your SIEM on a $0 Budget - Ryan Fried - ESW #284
Zero to Full Domain Admin: The Real-World Story of a Ransomware Attack - Joseph Carson - ESW #284
Not-So-Secure Boot - Jesse Michael, Mickey Shkatov - PSW #751
Talking to Boards and C-Suites, Leadership Debt, and Adaptive Leadership - BSW #272
Unearthed Easter Eggs, Black Hat/DEF CON Talks, Decrypting Oz, & 27 Factor Auth - PSW #751
Auth Problems from Parsing, Slack's Password Hashes, Twitter's Info Breach - ASW #207
Zero Trust Is Not a SKU - Saša Zdjelar - BSW #272
Agility Broke AppSec. Now It's Going to Fix It - Chen Gour Arie - ASW #207
Enterprise Browsers, Netskope, Ping Identity, Ghost Security, & Winamp Returns! - ESW #283
What is SASE/SSE & Why It's Even More Important in 2022 - Evgeniy Kharam - ESW #283
Re-Routing Traffic, Pseudo Keyloggers, TLS Inside, LockBit, Cobalt Strike & Defender - PSW #750
Global Security Report Highlights the Hazards of Remote Work - Anthony James - ESW #283
Smart Lock and Simple Vulns, Macros and Secure Defaults, Breaches and Costs - ASW #206
Reachability & Attackability - Manish Gupta - ASW #206
Embrace Common Business Language, Strategic Impact of DBIR, and Playing Favorites - BSW #271
Contrasting the CISO Role at Startups vs. Enterprises - Neal Bridges - BSW #271
Career in Infosec, SANS Work, & End User Awareness Training - Guy Bruneau - PSW #750
Akamai, PerimeterX HUMAN Merger, Azure Vulns, Blockchain Sec Startups, & Brash CEOs - ESW #282
Incident Response: Practice Like you Play - Paul Kelly, Tim Morris - ESW #282
Apple Airtag Detection & Simulation - PSW #749
FreeBSD, Steam Decks, Ancient Computers, UEFI Rootkits, & Office Macro Saga Continues - PSW #749
Cybersecurity Is a Team Sport - Dixon Styres, Jamie Moles - ESW #282
Atlassian Vuln, Attacking OAuth, OpenSSF Security Audits, Tabletop Exercises - ASW #205
How to Build a Successful Continuous Application Security Program - Ferruh Mavituna - ASW #205
5 Questions CFOs Should Ask, Escape Your Echo Chamber, and Up Your Cybersecurity Game - BSW #270
Why Your Current Security Risk Assessment is Not Effective and How to Fix It - Doug Landoll - BSW #270
Whistleblowing, Pwnednomore, Robot Protection, Securing Embedded Devices, & Hatching - ESW #281
Supply Chain Level 0: Grinding Tractors to a Halt - Sick Codes - ESW #281
Linux Distros, The Linux Firewall, CIA Agents, Vault 7 Leaks, & The "Coolest" Laptop - PSW #748
Going Passwordless with Risk Signals - Aubrey Turner - ESW #281
ICS Security - Lesley Carhart - PSW #748
8 Leadership Principles, 8 Changes to Cybersecurity, & 6 Tips for Hiring - BSW #269
The State of Industrial Security in 2022 - Mike Goldgof - BSW #269
Retbleed, CSRB's First Report, a Case-Sensitive Action, Mac Malware Book - ASW #204
0-Day Vulnerabilities & What's Next - Larry Maccherone - ASW #204
Survival of the Quickest, Ransomware Victim Paid, Zendesk, & Cyber Insurance Unicorn - ESW #280
ExpressLRS Protocol, Pi Pico W Wireless, Apple v. Spyware, & Lenovo UEFI Flaws - PSW #747
Securing IoT Devices - Kevin L. Jackson - ESW #280
Six Degrees of BloodHound - Andy Robbins - PSW #747
A Transform Perspective & Latest Trends in Identity & Access - Fleming Shi, Meritt Maxim - ESW #280
Cyber Capable Board, CISO Maturity, & Culture of 'Yes' - BSW #268
Security Money - The Index is Down, But Not Out - BSW #268
iOS Lockdown Mode, 2FA in PyPI, CloudVulnDB, & Practical Attacks on ML - ASW #203
The Security Challenges That Devs Encounter When Building Secure Apps - Farshad Abasi - ASW #203
Answering the 'How' Questions of Software Security - Nikhil Gupta - ASW #199
Prank Calls, Lazarus APT, WordPress Critical Vulns, CISA Adds 41 Flaws, & Zoom Bugs - PSW #742
Pwn2own, Verizon's DBIR, Zoom's XMPP Flaws, $10M Bounty, & More Bad Packages - ASW #199
Building Career Links to Secure the Real Supply Chain - John Pescatore - PSW #742
Attack Surface Management & Experience in the Age of Security - ESW #279
"The Road to Data Theft is Paved with Identities" - Len Noe - ESW #279
What's New With PCI v4.0 - Jeff Man - ESW #279
Cult of the Dead Cow & the Best Cybersecurity Journalism - Joseph Menn - PSW #746
Destructive Firmware, Keys to the Kingdom, the Device Level, & 5 CyberSec Myths - PSW #746
Security Consolidation & Beyond the CyberSec Motions - Malcolm Harkins, Paul McKay - BSW #267
The VC Perspective: Embracing Uncertainty & Staying the Course - Alberto Yépez - BSW #267
More Fuzzing, a Decade of OT Security, & Top Threats to Cloud Computing - ASW #202
How GraphQL & Template Injection Threats Influence App Architectures - Mike Benjamin - ASW #202
Stopping Phishing Attacks & A Fresh Approach to Reducing Cyber Risk - Chris Cleveland, Mehul Revankar - ESW #278
IBM Acquires Randori, Quantum Devices, Microsoft Defender, & RapidFort - ESW #278
Plastic Bags, NSA Playsets, Megs Insecure, PHP Strikes Back, & Gamification - PSW #745
Breaking Through Vendor Barriers: Product Data as a Service - Tim Morris - ESW #278
Lacework Layoffs, Anti-Hacking Law, The Security Study Plan, & StackZone - ESW #275
Learning Should Be Fun - Sam Bowne - PSW #745
The 3 Ts (Truth, Transparence, Trust), 4 Leadership Strategies, & 5 Best Predictors - BSW #264
Hertzbleed, SynLapse, Java Deserialization, More MFA, Firmware Flaws, & Zombie 0-Day - ASW #201
IE11 Goes to Zero -- A History of Browser Security and Bug Bounties - ASW #201
The Board's Role In Cybersecurity - Brandon Dunlap - BSW #266
Inside the CISO's Office - John Bruggeman - BSW #266
Transforming Cybersecurity Marketing & How the Internet Became Corporate Network - Amit Bareket, Gianna Whitver - ESW #277
The Evolving Phishing Threat & Protect Valuable Data as Workforce Volatility Rages - ESW #277
Big DDOS, Tracking Smartphones, BIOS Doom, NSO Buyer, & Android Children - PSW #744
Azure Vulns, Vendor Layoff's, Rob Lee, & Bye Bye Internet Explorer - ESW #277
We Help The Helpers; You Can Too! - Ray Davidson - PSW #744
OWASP Top 10 for K8s, Firefox Process Isolation, Secure Software Factory, CFAA Policy - ASW #198
The Psychology of Training - Matias Madou - ASW #198
Defining Cyber Risk & Is the Market Ready for Integrated Cyber Risk Management? - BSW #265
What's Happening with SCIM - Paul Lanzi - ESW #275
RSAC Micro Interviews - Cisco & Invicti Security - Jeetu Patel, Sonali Shah - ASW #200
Boards & Cybersecurity, The New CISO Role, & Reskilling - BSW #265
HTTP RFCs Have Evolved, Breaking Into Cloud, Scaling AppSec at Netflix, & Confluence - ASW #200
Accelerating Security Response - Bill Bernard - ESW #275
The Data Dilemma: Securing All Data at Scale - Dan Neault - BSW #264
ReliaQuest, Mimecast Delisted, 57th Unicorn, Expired Certs, & CyberSec Skill Crisis - ESW #276
Understanding WebApp Client-Side Security With Source Defense - Matt McGuirk - PSW #743
Charitable Ransomware, Year of Linux Malware, Follina MSDT, Twitter Fines, & Bounties - PSW #743
Salesforce's Journey Towards Complete Customer MFA - Ian Glazer - ESW #276
CEOs - Do You Know Where That Cyber Risk Report Came From? - Jerry Layden, Kevin Powers - BSW #263
CISO MindMap 2022, Top CISO Strategies, & The Missing Link in Cybersecurity - BSW #263
Understanding Web Application Client-Side Risk - Matt McGuirk - ESW #276
Evil Encryption, CyberSec Funding, Market Downturns, & Crypto Muggings - ESW #274
Windows GPU Display Vulns, NFT Discord Hack, Costa Rica Vs. Hackers, & Initial Access - PSW #741
Where to Start Your Passwordless Journey? - Jackie Comp, Rolf Lindermann - ESW #274
Attack Intelligence, Collective Defense, & Trends to Watch - Michael Ehrlich - ESW #274
Firmware Security - Saumil Shah - PSW #741
Year in Cyber Review 2021 - Robert Lee - PSW #741
Typosquatting, Curl's Security Update, & OpenSSF's 10 Point Mobilization Plan - ASW #197
Developing Future Cybersecurity Contributors - Brian Glas - ASW #197
Becoming a Year Younger, Material Security, Tailscale, Radiflow, & Artic Wolf - ESW #273
Overcoming Challenges in Multinational Phishing Simulations - Omer Taran - ESW #273
Public Entities & Ransomware, Colonial Pipeline Fine, Nvidia's LHR Limiter, & BIG-IP - PSW #740
Protecting Your Environment with Intel vPro® Platform - Yasser Rasheed - ESW #273
Destructive Malware & Other Threats to Watch - Fleming Shi - PSW #740
5 Demands, 6 Best Practices, & 7 Deadly Sins - BSW #262
Cyber: The Fifth Domain of War - Mike Ernst - BSW #262
Smart Contract Security, Heroku Breach, & Real World Crypto Highlights - ASW #196
Securing SAP: Addressing the Critical & Complex Challenge - Christoph Nagy - ASW #196
Getting Value From SOAR Beyond Phishing Workflows - Ryan Fried - ESW #272
WeHackPurple, DevSecOps Evolution, Product-Led Growth, & 10 Security Startups - ESW #272
Lots of Star Wars, David Walden, Vulnerable Contractors, & Pirate Streaming - PSW #739
Security Orchestration & Automation Simplified - Prashasth Baliga - ESW #272
Risk Transfer With Engineering Based Cyber Insurance - Fatih Karayumak - PSW #739
Lessons From Breach Lawsuits, 5 Leadership Principles, & Express More Gratitude - BSW #261
Extended Security Posture Management - Dave Klein - BSW #261
ExtraReplica, Document.domain Disfavored, & Highlights From Thinkst Quarterly - ASW #195
Bad Bots: Automated Threat Targeting Your Websites, Mobile Apps, & APIs - Lynn Marks - ASW #195
Austin Peay State, Basis Theory, Authtech, Hivemapper Dashcam, & Devo Autonomous SOC - ESW #271
Silk Road Seizure, Psychic Signatures, Twitter Algorithms, & Linux Desktops - PSW #738
Digital Identity: The Cornerstone of Our Digital World - Andrew Hindle - ESW #271
Cryptography Collecting & Japanese Typewriters - Marcus Sachs - PSW #738
The Turbulent Cloud Security Market - Rich Mogull - ESW #271
Security Blind Spots: Are You Protected? - Michael Aminov - PSW #738
What Does Software Supply Chain Security Threat Mean to Developers? - Dr. Chenxi Wang - ASW #194
Cybersecurity Metrics, Litigation Risks, and 10 Critical People Skills for CISOs - BSW #260
Forrester's Top Security Program Recommendations for 2022 - Jess Burn - BSW #260
Java's ECDSA for Nought, Writing a Kernel RCE, Okta's Conclusion, Log4Shell Hot Patch - ASW #194
Startup Failures, Thoma Bravo, Fortress InfoSec, SEC & CISOS, & Squirrely Medicine - ESW #270
Grasping Logitech Lift, Lenovo Malware, CISA Warns of Print Spooler, & 0-Day Holes - PSW #737
State of the Market With a VC - Will Lin - ESW #270
The Law, War Crimes, & the Foreign Legion - Capt. John Alfred, Thomas Lonardo - PSW #737
A Deep Dive into HP SureClick Enterprise - Dan Allen - ESW #270
The Development of Cyber Crime Fighting Units - Capt. John Alfred - PSW #737
10 Signs, 4 Horsemen, and 3 Ways to Control Your Career - BSW #259
Navigating the Complexities of Policy and Compliance in Hybrid Clouds - Tim Woods - BSW #259
OAuth Tokens Taken, Vulns in Medical IoT, Scoring a Proactive Security Culture - ASW #193
Appsec (and adjacent) Metrics - ASW #193
DuckDuckGo for Mac, Juniper Networks, Future of InfoSec, & Subpar Products - ESW #269
Bullseye OS, Unicode Mystery, 'Bearded Barbie' CatPhishing, & NginxDay - PSW #736
Forensic Challenges for Security Professionals - Justin Tolman - ESW #269
Amanda Berlin - PSW #736
The Role of Automation in Pen Testing - Bob Erdman - ESW #269
Third Party Risk Research - Mike Wilkes - PSW #736
Cybersecurity is IT's Job, Why CISOs Fail, & Create a Culture of Security - BSW #258
Actionable High Resolution Threat Intelligence - Derek Manky - BSW #258
SSRF at a FinTech, Zoom's Bounties, SLSA Build Provenance, & Raspberry Pi Credentials - ASW #192
Service Mesh & Zero Trust Kubernetes Security - William Morgan - ASW #192
Editing Tweets, Lithuanian Unicorn (NordVPN), Trust Issues, & Ubiquity Legal Battle - ESW #268
Teen Hackers, WTF Apple, Finding iPhones, & Getting Wise to Wyze - PSW #735
Why Learning Offensive Security Makes You A Better Defender - Catherine Ullman - ESW #268
Hacking Kubernetes - Jay Beale - PSW #735
Common Sense Steps for Implementing Shields Up - Josh Snow - ESW #268
Identity Security Challenges - Active Directory, Azure AD, & Okta Oh My! - Sean Metcalf - PSW #735
Leaders Must Build Trust, 600,000 Open US Jobs & Cybersecurity Retention Issues - BSW #257
How Endpoint Isolation Can Solve the Hybrid/Remote Work Challenges - Jonathan Gohstand - BSW #257
Escaping from BlastDoor's Sandbox, Spring RCE, Old Zlib Flaw, Startup Security - ASW #191
Democratizing Software Security - Eric Allard - ASW #191
Zimperium, Crypto Heists, NPM Attack, $11B For CyberSec, & a Threat to SPACs - ESW #267
Clearing the Air on Zero Trust - Steven Turner - ESW #267
Teenage Masterminds, Hacking Civics, Journalists Sued, UPS Attacks, & Spyware - PSW #734
Breaking into Cyber - Perspective from a High School - Tim Cathcart - ESW #267
State of the SOC - Mark Boltz-Robinson - PSW #734
Training the Next Gen of Cybersecurity Experts to Protect K-12 Schools - Hanine Salem - PSW #734
Cyber Risk Quantification, Enterprise Security Metrics, & Fixing Hiring - BSW #256
Forecasting Risk - What Every CISO and CIO Needs to Know - Charlene Deaver-Vazquez - BSW #256
How to Build a Developer-First Application Security Program - Harshil Parikh - ASW #190
Okta & LAPSUS$, Fuzzing Rust, SQL Injection & Stale Code, Log4j Lessons - ASW #190
TrevorC2 - David Kennedy - PSW #733
Baby Food, Lapsus$, Anonymous Vs. Printers, UEFI Rabbit Holes, & Browser-In-Browser - PSW #733
How to Secure Your Secrets With Keeper Security - Zane Bond - ESW #266
SEC Proposals, Following Unicorns, Island's Browser, HUB Security, & Fake Companies - ESW #266
Managing Shadow Code & the Blind Side in 3rd Party Risk - Stephen Ward - PSW #733
Cyber Risk- A Darwinian Opportunity for Cyber Insurance - Erin Kenneally - ESW #266
Latest Social Engineering Tactics & the Growing Complexity of Attacks - Olesia Klevchuk - BSW #255
Biggest Cyber Risks, 5 Pillars of Growth, and How to be a Good Boss - BSW #255
Helping Secure OSS Software - Alvaro Munoz - ASW #189
A Great Escape, Peace Not War, & How to Burp Good - ASW #189
PeaceNoToWar, NortonLifeLock Pending UK Inquiry, RSA Con, & Space Force Insignia - ESW #265
Ransomware Inc, Cracking Keys With Fermat, Neon Output, & Samsung Source Code - PSW #732
Building a Proactive Security Strategy - Pablo Zurro - ESW #265
Making Cyber Accessible to Everyone - Lawrence Nunn, Ricky Tan - PSW #732
How Leveraging Crowdsource Is the Best Way to Bolster Your Security - Johanna Ydergard - ESW #265
From Hacker Jeopardy to CISO Tradecraft - G Mark Hardy - PSW #732
In Name Only, "Reasonable" Cybersecurity, & Value in Veterans - BSW #254
Security Hygiene, Doing All the Little Things Right (All the Time) - Jody Brazil - BSW #254
Dirty Pipe, AutoWarp Vuln in Azure, TLStorm Hits UPS Devices, Car Hacking - ASW #188
Doing Application Security Right - Farshad Abasi - ASW #188
Google Acquiring Mandiant, Abnormal Unicorns, SEC Tackles Breaches, & Meme Madness - ESW #264
Filtering Out All the [Market] Noise - Andrew Morris - ESW #264
Dirty Pipes Vuln, OSHEAN, Samsung Source Code, Root Through Azure, & Article 45.2 - PSW #731
The State of Security of Current UNIX(-Like) Systems - Antranig Vartanian - PSW #731
The Benefits of Automation, Starting With PCI - Jeff Styles - ESW #264
Technology Changes, but Security (Often) Stays the Same - Daniel Trauner - PSW #731
7 Questions, 7 Mistakes, and a CISO Checklist - BSW #253
Solving the Security Paradox - Michael McPherson - BSW #253
Vulns in Markdown Parsers, Census II & Open Source Security, iCloud Private Relay - ASW #187
Deep Visibility & Understanding the Underlying Data Layer - Lebin Cheng - ASW #187
Defense for Healthcare, Scope Security, Balbix, & DevOps Wizardry - ESW #263
The Unique Challenges of Companies Born in the Cloud - Rich Mogull - PSW #730
Mock Interviews - Hack the Hiring Process - Alissa Torres - PSW #730
Exposing Malware in Linux-Based Multi-Cloud Environments - Chad Skipper, Karen Worstell - ESW #263
Ukraine, Russia, Cyber-Warfare, Sanctions, Conti Split, & Blocking Software Updates - PSW #730
Putting the Zero Back Into Zero-Trust - Sharon Goldberg - ESW #263
Answer This Question, Partner Across Teams, & Future of Cyber Insurance - BSW #252
Latest Ransomware Trends in 2022 - Fleming Shi - BSW #252
Bug Bounty Costs, GitHub's Advisory Database, ICS Vulns of 2021, CNCF Secure Software - ASW #186
Integrating Appsec Tools for DevOps Teams - Steve Wilson - ASW #186
Incident Command System for ICS Improves Response to CyberSec Incidents - Brian Peterson - ESW #262
Detection Engineering in the Age of Cloud - Jimmy Vo - ESW #262
CISA Stories - Josh Corman - PSW #729
SBOM Opinions, Phosphorus, CISA Tools, Beyond Identity, & CyberSec Word Games - ESW #262
Blame Stuxnet - Chris Sistrunk - PSW #729
Elite Hackers, HerpaDerps, Unskilled Hackers, & CyberWarfare - PSW #729
What Is Security, How It Changed During the Pandemic, & How to Team Up - BSW #251
The New BISO Role - A Career Path to CISO? - BSW #251
The DIY AppSec Lab - ASW #185
Cisco/Splunk Rumors, Canonic Security, Unhelpful Legislation, & Securonix Round - ESW #261
Pixelating Info, Pilfer Or Report, Digital Credit Unions, & Airtag Abuse - PSW #728
Cassandra RCE, Pixelation Is Poor Redaction, Rust's Useful Errors, & Hardening Edge - ASW #185
Running Windows Inside Containers On Linux - PSW #728
0patch - Security Patching That Doesn't Make Your Life Miserable - Mitja Kolsek - ESW #261
Cybersecurity Coordinator Under President Obama - Michael Daniel - PSW #728
Changing the TPCRM Game W/ Cyber Risk Intelligence Tools - Vikram Asnani - ESW #261
5 Leadership Lessons, 6 Steps to Success, & 6 Tips to Say No - BSW #250
Time To Move Away From "G - little R - Big C" (GRC) - John Wheeler, Padraic O'Reilly - BSW #250
Docker Boundaries, Google Bounties, 2021's Top Web Hacks, Apple AirTags, AI vs. RFCs - ASW #184
The Modern Developer Must be Security Minded, Too - Doug Kersten - ASW #184
Glyptodons, Mandiant Rumors, Virtual CISOs, Log4j Testimony, & A Cyber Safety Board - ESW #260
Uncovering a Major Linux PolicyKit Security Vulnerability: Pwnkit - Wheel - PSW #727
The State of Identity in the Enterprise - Branden Williams - ESW #260
AR vs. VR, Hacking Mazdas, Risqué Latte Art, Crypto Wormholes, & Carding Forum Seized - PSW #727
To Err Is Human, but the Blockchain Is Forever - ESW #260
Cybersecurity Is Not Just a Technical Problem - Brian Honan - PSW #727
Cybersecurity Policy Creation, Champions Program, & the War for Talent - BSW #249
Effective Communications During & After a Cyber Attack - Ann Marie van den Hurk - BSW #249
HTTP/3 Streams, Argo CD Paths, Log4j Devs, Cyber Safety Review Board, OSSF Projects - ASW #183
Policy Momentum in Coordinated Vulnerability Disclosure - Amit Elazari - ASW #183
Securing Olympians, Hiding in UEFI, 'Fingerprinting GPUs', & P4x vs. North Korea - PSW #726
A Look at Microsoft's Cloud-Native SIEM - Darwin Salazar - ESW #259
Linux Post Exploitation - PSW #726
How Zapier's Attila Török Manages Security for a 100% Remote Organization - Attila Török - ESW #259
Covert EDC & Physical Pen Tests - Brent White - PSW #726
The 1000th Unicorn, Island Browser, Optiv For Sale, & Polar Bear Takeover - ESW #259
Cybersecurity & Audit, CIO Involvement Grows, & Poor Security Culture - BSW #248
Digital Risk Protection - Dan Mathews - BSW #248
PwnKit, Qubit Hack, Multichain Hack, Safari Bounty, & Python NaN - ASW #182
Shift Left, NOT S#!T LEFT - Larry Maccherone - ASW #182
Continuous Red Teaming Trends - Bikash Barai - ESW #258
12 Year Linux Bug, Recovering Bitcoin, Lulzsec's Impact, & Pimp My Cubicle - PSW #725
New Startups From Stealth, It's Not Matt Damon's Fault, Merck Wins, & Pearson Fined - ESW #258
Securing Ubiquiti WiFi Systems - PSW #725
Log4Shell: Impact & Lessons Learned - Jamie Moles - ESW #258
Cracks in the Castle - Jimmy Sanders - PSW #725
Mastering Art and Science, Stakeholder Trust, and Trustworthy Computing - BSW #247
Securing the Digital Value Chain - Mark Fernandes - BSW #247
IndexedDB Leak, Linux Kernel Bug, Zoom Security, SSRF & Allow Lists, Security Courses - ASW #181
API Security (Shadow APIs) - Himanshu Dwivedi - ASW #181
McAfee MVISION XDR, Microsoft Acquires Activision Blizzard, & Tom Brady NFTs - ESW #257
REvil Gang Arrested, 5G & Airplanes, Zoom Zero-Click, & Stolen Brownies - PSW #724
Architecture & Security from the Trenches - Will Clark - ESW #257
Using WPScan To Find WordPress Vulnerabilities - PSW #724
Vulnerability Management is Dead! - Rickard Carlsson - ESW #257
Cyber Resilience - Cybersecurity Mental Health - Neal O'Farrell - PSW #724
Scams and Security in Web3*, URL Parsing Problems, AWS Glue, CI/CD Compromises - ASW #180
Investing in Open Source Security - ASW #180
Arming CISOs, The 'Great Resignation', & Deciding Your Next Career Move - BSW #246
Israeli CyberSec Drama, Microsoft's Security Chip, Best Job of 2022, & "YAU"s - ESW #256
Security Money - The Index Has Cooled Off - BSW #246
CanSecWest, PacSec, & PWN2OWN - Dragos Ruiu - PSW #723
A Look Back at the Most Active Year in Federal Cybersecurity Ever - Derek Johnson - ESW #256
Mailing USBs, DoS in DoorLock, Moxie Resigns, QR Code Mystery, & Jarring Revelations - PSW #723
New Year, Same Security Problems - Kris Lahiri - ESW #256
Log4j Exploit Step-By-Step - PSW #723
No Log4j, 2021 Recaps, or 2022 Resolutions! - BSW #245
Zero Trust Access To, From and Within the Cloud - Colby Dyess - BSW #245
Broadening What We Call AppSec - Christien Rioux - ASW #179
Log4j for FTC, More JNDI, Cache Poisoning, Improving Default Configs, ThinkstScapes - ASW #179
ESW End-of-Year Wrap Up - ESW #255
Zip Tie Pick, Wifi/Bluetooth Bugs, Domain Controllers, & Beetle Behavior - PSW #722
Dragons & Unicorns, Phishing Training, GreyNoise, & Becoming Domain Admin - ESW #255
The State Of Internet Exposed Services - John Matherly - PSW #722
Bringing Autonomy to AppSec - Dr. David Brumley - ESW #255
Lock Picking & Physical Security - Deviant Ollam - PSW #722
The Security Hippie, Part 2 - Barak Engel - SCW #99
The Security Hippie, Part 1 - Barak Engel - SCW #99
Office of the CISO, The Fearless CISO, and America's Cyber Reckoning - BSW #244
Security Maturity: From Hostage Negotiator to Business Leader - Sandy Dunn - BSW #244
Latest Log4j, Outages & Availability, FPGA Security Concepts, & Bug Bounty Awards - ASW #178
Evolving Security Testing - Dan Guido - ASW #178
Cyber-Loaded Bills, Dazz CSPM, Janky Tech, VC Startup Valuations, & Keanu Reeves Talk - ESW #254
Printing Shellz, Block Chain For C2, Wordpress Theft, & Log4j Who? - PSW #721
The Evolution & Future of XDR & the SOC - Scott Crawford - ESW #254
What to Expect in 2022 - Sinan Eren - PSW #721
Morale Is a Safety Control - Shoshana Gourdin - ESW #254
All Your Holiday Hack Challenge Belong To Us - Ed Skoudis - PSW #721
Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 2 - Ben Carr - SCW #98
Everything You Wanted to Know About CISOs But Were Afraid to Ask, Part 1 - Ben Carr - SCW #98
(13 Traits + 7 Strategies)/2 = 10 Effective Ways to Improve Communication - BSW #243
Why Hospitals Face Unique Security Challenges - Mike Murray - BSW #243
Log4Shell, Mozilla's BigFix & New Sandbox, Rust in Linux Kernel, Path Traversal in Go - ASW #177
DevSecOps, Compliance GRC, and the Future of Application Security - Francesco Cipollone - ASW #177
Unicorns Galore, Selling Text Messages, Spicy Takes, & Treacherous Devs - ESW #253
Securing the Invisible: Holes in Your Visibility Fabric & Where Hackers Hide - Vincent Berk - ESW #253
Digging Into XDR - Allie Mellen - ESW #253
Killing the SOC, Burger King Runes, ReliaQuest Valuation, & StrongDM - ESW #252
The 2021 Security Landscape & What Lies Ahead - Shailesh Athalye - PSW #720
Authentication Vulnerabilities - PSW #720
First Look: Is Passwordless Really Killing the Password? - ESW #252
Bypassing Biometrics, Hiding in Plain Sight, Hacker Cinema, & High Aspirations - PSW #720
Are We Ever Going to Get Information Sharing Right? - Edna Conway - ESW #252
Hacker Situational Awareness, Part 2 - John Threat - SCW #97
Hacker Situational Awareness, Part 1 - John Threat - SCW #97
Leadership Triad, Awesome CISO Tips, & CISO Demands - BSW #242
CISO Transition: A CISO's Perspective - BSW #242
Bug Bounties in Windows/WebKit, Edge Hardening, OAuth Hardening, & GoDaddy Breach - ASW #176
Solving Systemic Risk in Software Development - Chris Wysopal - ASW #176
Security & Compliance Thru the Lens of a Technology Journalist, Part 2 - Evan Schuman - SCW #96
Security & Compliance Thru the Lens of a Technology Journalist, Part 1 - Evan Schuman - SCW #96
4 Things Boards Should Know, 4 in 10 Orgs Don't Have a CISO, & Creating Culture - BSW #241
Preventing Attacks Through Risk Management & Governance - Kevin Powers, Padraic O'Reilly - BSW #241
CVEs 4 CSPs, Malicious PyPi, Bounty Programs, Shared Responsibility, & Breach Costs - ASW #175
wasmCloud - Distributed Computing With WebAssembly - Liam Randall - ASW #175
Congress Goes Cyber-Crazy, Emotet Returns, SnapAttack, & Netography - ESW #251
Suing Satoshi, Trojans in IDA, FBI Spam, Beg Bounties, & UPNP Strikes Again - PSW #719
Skill Building: CTFs & Computer Fundamentals - Derek Rook - PSW #719
The Real Costs of Ransomware in 2021, 2022, & Beyond - Mike Campfield - ESW #251
Understanding Cyber Insurance Trends & Changes - ESW #251
Building Vulnerable Docker Containers (On Purpose) - PSW #719
CISA Guidance for MSPs and SMBs, Part 2 - Chris Loehr - SCW #95
CISA Guidance for MSPs and SMBs, Part 1 - Chris Loehr - SCW #95
4 Attributes of a Great Leader & 5 Myths About Management & Cybersecurity - BSW #240
Protecting Identity Services - Tony Cole - BSW #240
PAN-OS Vuln, ChaosDB, Fuzzing BusyBox, Refactoring in Rust, HTML Smuggling - ASW #174
Mobile Application Security - Ryan Lloyd - ASW #174
Record Unicorns, SCYTHE Series A, SPAC Fails, McAfee Worth $14B, & Hashicorp IPO - ESW #250
Building a Risk Based Security Program That Actually Works - Nick Leghorn - ESW #250
MAVSH - Sachin Mahajan - PSW #718
MegatronAL on Kicking in the Door to Cybersecurity - Angela Marafino - ESW #250
Stalkerware Capabilities in the Real World - Lodrina Cherne, Martijn Grooten - PSW #718
TIPC Kernel Vulns, SBDCs, Truckloads of GPUs, & Hardcoded SSH Keys - PSW #718
Governance, Risk, & Compliance...so What? - Part 2 - Allan Alford - SCW #94
Governance, Risk, & Compliance...so What? - Part 1 - Allan Alford - SCW #94
A CISO's Life, FOMO Is Real, & Cybersecurity's Hiring Problem - BSW #239
Reinvigorating Cybersecurity Teams - Sara Griffith, Suresh Balasubramanian - BSW #239
Linux Kernel TIPC RCE, NPM Malware, OTP 2FA Bots, & Security Labels - ASW #173
A Standardized Approach to SBOM - Dan McKinney - ASW #173
Facebook Gets Meta, Crazy Valuations, IBM XDR, & Analysts V.S Darktrace - ESW #249
Shrootless Bug, Statistic Stats, Trojan Source, Fake Students, & Clippy Returns - PSW #717
Building Up the Blue Team - Frank McGovern - ESW #249
Peel Back the Layers of Your Enterprise with Security Onion 2 - Doug Burks - PSW #717
Detecting the Next Breach: How to Win the War With NSX NDR - Chad Skipper - ESW #249
Part 2: Scanning For Default Creds With Python - PSW #717
Security Industry Burnout, Part 2 - Rick McElroy - SCW #93
Easy Ways for Businesses to Become More Resilient - Kyle McNulty - BSW #238
Security Industry Burnout, Part 1 - Rick McElroy - SCW #93
10 Questions, 5 Personality Traits, & 3 Security Priorities - BSW #238
Discourse RCE, Trojan Source, WhatsApp Security, & Privacy Engineering - ASW #172
Untangling API Security in 2022 - Peter Klimek - ASW #172
Market Analysis With a VC - Introducing Will Lin - ESW #248
Iranian Gas, Smelly Towns, View Source Legality, EBCDIC & GDPR, & Unlocking Oculus Go - PSW #716
Piiano, Scanning Your Eyes, Rainbow Unicorns, Netflix Execs, & Yeast Milk - ESW #248
What Exactly Is an Incident Commander, Anyway - Matt Linton - PSW #716
Decrypt As If Your Security Depends On It - Jamie Moles - ESW #248
Focusing on Preventing Ransomware - Roger Grimes - PSW #716
Mapping Across an Ocean of Security Frameworks, Part 2 - Thomas Sager, Tony Sager - SCW #92
Mapping Across an Ocean of Security Frameworks, Part 1 - Thomas Sager, Tony Sager - SCW #92
Board Tips & Tricks, Security Culture, & Zero Trust Myths - BSW #237
Fight Fire With Fire: Proactive CyberSec Strategies for Security Leaders - Renee Tarun - BSW #237
UAParser.js Malware in NPM, Squirrel Sandbox Escape, Securing CI/CD, & AppSec Videos - ASW #171
Security Champions in an Online First World - Ashish Rajan - ASW #171
Wild Hippos, Chrome FTP, L0phtCrack Is Open-Source, Win 11 Pentium, & Legacy Systems - PSW #715
Scanning For Default Credentials With Python - PSW #715
Evolution & Maturity of the Cybersecurity Industry - Maxime Lamothe-Brassard - PSW #715
What We've Learned From Interviewing Cybercriminals - Adam Janofsky - ESW #247
Query.AI, Tenchi Security, HelpSystems, CrowdStrike, & Snowcat Scanner for Istio - ESW #247
First Jobs in Cybersecurity: The Analyst Role - Joshua Copeland - ESW #247
Excited About PCI DSS 4.0? What to Expect & How to Prepare, Part 2 - Chris Pin - SCW #91
Excited about PCI DSS 4.0? What to Expect & How to Prepare, Part 1 - Chris Pin - SCW #91
Building Your Zero Trust Architecture: Stronger, Simpler Access Controls - Jason Garbis - BSW #236
Security Money - The Index Hits a Turkey (3 Records in a Row) - BSW #236
View Source, Bindiff for Vuln Analysis, Bypass with GitHub Actions, & NIST DevSecOps - ASW #170
Dev(Sec)Ops Scanning Challenges & Tips - Nuno Loureiro, Tiago Mendo - ASW #170
IoT Rickroll, Suing Over Disclosures, K-12 Cybersecurity Act, & SS7 Signaling - PSW #714
GraphQL - Sven Morgenroth - PSW #714
Open Source Endpoint Security with Osquery & Fleet - Zach Wasserman - PSW #714
Wiz Valuation, Facebook OSS Tools, Gretel.ai, & Yubico Biometric Keys - ESW #246
Why Less Is More for Static Application Scanning - Surag Patel - ESW #246
A Plea for Better Press Releases - ESW #246
Social Engineering Deep Dive, Part 2 - Perry Carpenter - SCW #90
Social Engineering Deep Dive, Part 1 - Perry Carpenter - SCW #90
Top Cybersecurity Statistics/Trends/Facts, Zero Trust, & Hiring Strategies - BSW #235
The Human Element of Security Awareness - Brian Reed - BSW #235
Twitch Breach, HTTPd Path Traversal, Disabling Macros, & Great Cybersecurity Programs - ASW #169
Modernizing the Management of Your Software Supply Chain - Tom Gibson - ASW #169
LANtennas, ESXi & Python, Twitch Leaks, Facebook BGP, & iPhone Is Always On - PSW #713
Up & Running With Security Onion - PSW #713
Survey Says: Improve Your Security Posture by Purple Teaming - Dan DeCloss - PSW #713
Privacy Engineering Firms, Facebook Outages, Orca Series C, & Gravwell - ESW #245
Shifty Adversaries, Shifting Tactics - Ryan Kalember - ESW #245
Better Sales, Worse Relationships? - Richard Reinders - ESW #245
ISO27001, Part 2 - Wim Remes - SCW #89
ISO27001, Part 1 - Wim Remes - SCW #89
CISA's Initiatives, Partnerships, and Cybersecurity Awareness Month - Alaina Clark - BSW #234
Medical Device Security - Dan Purvis - BSW #234
Prototype Pollution, Funding Open Source Security, Expiring Root CA, Mariana Trench - ASW #168
The Power of Developer-First Security - Hillary Benson - ASW #168
Pickpocketing Apple Pay, Mandatory Breach Reporting, Huawei Fears, & Cyber Criminals - PSW #712
Defense Strategies to Combat Sophisticated Ransomware - Mehul Revankar - PSW #712
Startup Post Mortems, Live Security Statuses, LG Acquires Cybellum, & Coalition - ESW #244
The Importance of Identity Detection and Response (IDR) - Joseph Salazar - ESW #244
How Good CISOs Build Bad Security Programs - Juliet Okafor - ESW #244
Compliance and "The Crowd", Part 2 - Casey Ellis - SCW #88
Compliance and "The Crowd", Part 1 - Casey Ellis - SCW #88
CISO vs. CIO, CISO & the C-Suite, & How the CISO Works With the CPO - BSW #233
Building Security from Scratch: One Year as CISO at a Start-up - Guillaume Ross - BSW #233
Exchange's Great Leak, RCE in VMware, IoT Bug in MQTT, & Chrome's Memory Safety Nets - ASW #167
AppSec Orchestration/Correlation & DevSecOps Efficiency - Anita D'Amico, Patrick Carey - ASW #167
Renting Your Phone, Public-Key Explained, Toilet Identification, & AutoDiscover Bug - PSW #711
Nzyme - Paul Asadoorian & Larry Pesce - PSW #711
Velociraptor - Digging Deeper - Mike Cohen, Wes Lambert - PSW #711
The Color White, Forgerock IPO, Ditching Your Microsoft Password, & Neosec - ESW #243
Threat Intelligence & Threat Hunting - Chris Cochran - ESW #243
Scaling Application Security - Joe Gillespie, Nuno Loureiro - ESW #243
Activism v. Hacktivism, Part 2 - Johanna Baum - SCW #87
Activism v. Hacktivism, Part 1 - Johanna Baum - SCW #87
Boards Rethink Incident Response, CISOs & CIOs Share, & Stay True to Ethics - BSW #232
Accelerate 0-Trust Adoption W/ End2End Visibility & Increased Collaboration - Tom Roeh - BSW #232
OMIGOD, FORCEDENTRY, Code Ownership, Security as a Product, & IoT Device Criteria - ASW #166
Transforming Modern Software Development with Developer-First AppSec - Jeff Williams - ASW #166
Dubious Drones, NSO Group, Apple's Bug Bounties, Ghostscript 0-Day, & IBM Server Bugs - PSW #710
Brakeman - Justin Collins - PSW #710
The State of Network Security in 2021 - Sinan Eren - PSW #710
Palo Alto Goes IoT, Numbers Lose Their Meaning, BitSight, & Colossal Mammoths - ESW #242
The Device Security Divide - John Loucaides - ESW #242
Web Asset Discovery in Application Security - Tolga Kayas - ESW #242
Insider Threats Overview - Going Beyond The Norm, Part 2 - Jim Henderson - SCW #86
Insider Threats Overview - Going Beyond The Norm, Part 1 - Jim Henderson - SCW #86
SEC Is Serious, CISA's Bad Practices, & What Tech Workers Really Want - BSW #231
Cyber Education Is the Key to Solving the Skills Gap - Kevin Nolten - BSW #231
OWASP Top 10, CISA Bad Practices, Azurescape, Confluence RCE, & API Security Tokens - ASW #165
Findings From the 2021 AppSec Shift Left Progress Report - Manish Gupta - ASW #165
Iframe Security - Benjamin Daniel Mussler - PSW #709
Hacking Honda, Insider Threat Galore, ChaosDB, USB File Weight, & Linux 5.14 - PSW #709
Nmap Vulnerability Scanning/Flan Scan - PSW #709
"Lift & Drag", BeyondTrust, Absolute DataExplorer, & RDP Exploits - ESW #241
Putting the "R" in the NDR - John Smith - ESW #241
Transparency in Large Supply Chains - Philippe Lafoucrière - ESW #241
The Truth Behind the Payments, Part 2 - Christopher Bulin - SCW #85
The Truth Behind the Payments, Part 1 - Christopher Bulin - SCW #85
State of Cyber Threats: Tenfold Increase in Ransomware - Derek Manky - BSW #230
Staff Attrition Is Rising, Retaining Women in Tech, & Growing Privacy Concerns - BSW #230
ChaosDB, OpenSSL String Bugs, Revealing Locations, & More Top 15 Vulns - ASW #164
A DevOps Perspective on Risk Tolerance & Risk Transfer - Caroline Wong - ASW #164
Yard Sales, Bitcoin Thief Charged, Mouse Privilege Escalation, & LED Eavesdropping - PSW #708
Trends in Mac Malware & Apple Security - Patrick Wardle - PSW #708
Working With OpenVAS - PSW #708
Cloudflare Saves the Day, Sumo Logic SOAR, Tenable Risk Management, & Drones - ESW #240
Penning a Cyber Thriller - Deb Radcliff - ESW #240
Deciduous / Decision trees + Security Chaos Engineering - Kelly Shortridge - ESW #240
From Compliance to Resiliency: The Evolution of InfoSec, Part 2 - Tim Callahan - SCW #84
From Compliance to Resiliency: The Evolution of InfoSec, Part 1 - Tim Callahan - SCW #84
10 Years Later... 15 Priorities, 8 Weeks, & 7 Steps - BSW #229
What Type of CISO Are You & Does It Align to Your Company's Needs? - Ben Carr - BSW #229
BlackBerry's BadAlloc, Glibc's NULL, Backtick Command Injection, & ProxyLogon Details - ASW #163
Challenges in Open Source Application Security - Shubhra Kar - ASW #163
Shifting Left Probably Left You Vulnerable, Here's How To Make it Right - Sonali Shah - PSW #707
Sequoia: A Local Privilege Escalation Vulnerability in Linux's Filesystem Layer - Wheel - PSW #707
Tractorload of John Deere Vulns, T-Mobile Breach, Kalay IoT Hack, & HolesWarm - PSW #707
New iboss Features, CVSS Scores, Praetorian GoKart, & Anti Anti-Money Laundering - ESW #239
Cybersecurity Tips & Challenges in the Hybrid Work Era - Darren Guccione - ESW #239
Humanizing Security Operations - Allie Mellen - ESW #239
Gatekeeping in Cybersecurity, Part 2 - Naomi Buckwalter - SCW #83
Gatekeeping in Cybersecurity, Part 1 - Naomi Buckwalter - SCW #83
7 Tips, 5 Simple Tips, & 3 Strategies for CISOs - BSW #228
Ransomware Trends 2021 - Fleming Shi - BSW #228
Cracked Concatenation, Injection Against DNS, Allstar GitHub, & DEF CON Highlights - ASW #162
DevSecOps - Making It Real - Mike Rothman - ASW #162
Cyber-Symposiums, Apple Backdoor, Crypto Theft, & "Quadruple Extortion" - PSW #706
Offensive Operations With Mythic - Kyle Avery - PSW #706
OSINT & Social Engineering - Joe Gray - PSW #706
Automate Hacker Knowledge & Community in Learning InfoSec - Carolin Solskär, TJ Null - ESW #238
Zombie APIs, Morphisec IR Service, "New Product Jeopardy", & Risk Scoring - ESW #238
The Different Approaches To Vulnerability Management - ESW #238
Protecting Comm. & Collaboration in Contested Environments, Pt 2 - Matthew Erickson - SCW #82
Protecting Comm. & Collaboration in Contested Environments, Pt 1 - Matthew Erickson - SCW #82
New Fines Making Business Case for Security, & Improving Security as a Team - BSW #227
The 3 Mistakes All First Time CISOs Make That No One Tells You - Jim Routh - BSW #227
Router Auth Bypass, Weak IoT RNG, HTTP/2 Request Smuggling, & Kindle Fuzzing - ASW #161
Securing Modern Web Apps: Development Techniques are Changing - Tom Hudson - ASW #161
'Master Faces', Ship Hijacked, Windows Container Escape, & DNS Loopholes - PSW #705
The Stakes Are Raised When Protecting the Foundation of Computing - Scott Scheferman - PSW #705
Corelight Smart PCAPs, Shifting Left, Tenable AD Security, & Tube Vulns - ESW #237
RF Village at DefCon - Rick Farina, Rick Mellendick - PSW #705
The State of CyberSecurity Ops in a Ransomware Filled Hybrid Work World - David Finger - ESW #237
Cyber Hat Trick: How Ransomware Gangs Exfiltrate, Encrypt & Exploit - Matt Cauthorn - ESW #237
The State of Cybersecurity & Destigmatizing Reporting Security Vulnerabilities - BSW #226
OT Security for Critical Infrastructure and Why It Is Not "Intuitive" - Edward Liebig - BSW #226
PunkSpider, Bug Bounties, RCE in PyPI, Kernel Pwning With eBPF, & Top Vulns From CISA - ASW #160
Platform Firmware Security - Maggie Jauregui - ASW #160
PetitPotam Attack, History of RickRolling, & Foxit PDF Vulns - PSW #704
Cyber-Physical Attacks - Michael Welch - PSW #704
The B Is for Business - Alyssa Miller - PSW #704
Aqua Security, Clearview AI, Threat Stack EKS Support, & Security Summit 2021 - ESW #236
Tanium for Incidents: How the Best Defense Gets Better: Part 2 - Stephanie Aceves - ESW #236
Need for CyberSecurity Training Programs/Role Cyber Professionals Play - Da-Wyone Haynes - ESW #236
Catching Up W/Priya on Recent Litigation and Proposed Legislation: Part 2 - SCW #81
Catching Up w/Priya on Recent Litigation & Proposed Legislation: Part 1 - SCW #81
Security Is a Barrier & Incentive, Theatrical Meetings, & Cybersecurity Salaries - BSW #225
Security Money - The Index Hits Another All Time High - BSW #225
CWE Top 25, Bugs in Inconstancies, Sequoia Vuln, Twitter Transparency, & Cloud Risks - ASW #159
Navigating the Seas of Security in Serverless Functions - Peter Klimek - ASW #159
Windows Vulns Galore, Homoglyph Domains, Pegasus, & "Trust No One"! - PSW #703
CyberMarket & Democratisation/Globalisation of CyberSecurity Consulting - Gordon Draper - PSW #703
Online Safety & Security: Dating Apps & Online Marketplaces - Jeff Tinsley - PSW #703
Why Transparency Matters & Web Application Prioritization - Mark Ralls, Wayne Haber - ESW #235
Rapid7 Acquires Intsights, Intezer Refines Malware Analysis, & Funding News - ESW #235
Reinventing Asset Inventory for Security - Ed Rossi - ESW #235
Your Security Is ALWAYS in Scope, Part 2 - Joseph Kirkpatrick - SCW #80
Your Security Is ALWAYS in Scope, Part 1 - Joseph Kirkpatrick - SCW #80
Know Cybersecurity & Drive Innovation Through Operational Excellence - BSW #224
Aligning Cyber Risk to Business Risk Through Automation - Padraic O'Reilly - BSW #224
Code Comments, Decision Trees, Windows Hello, Telegram Analysis, & Cloud Risks - ASW #158
The Role of Open Source in DevSecOps - David DeSanto - ASW #158
Ransomware Task Force, Year of the Linux Desktop?, & Ring Doorbell Encryption - PSW #702
The Journey from Network Security Engineer to Podcast Host - Jack Rhysider - PSW #702
The BIOS Disconnect - Scott Scheferman - PSW #702
All Our Devices and Privacy on the Web - Deepika Gajaria, Scott Scheferman - ESW #234
Microsoft Acquires RiskIQ, Rapid7 InsightCloudSec, & Bitdefender eXtended EDR - ESW #234
Gas South and ExtraHop- A Journey of Security Partnership - Rajiv Thomas - ESW #234
HIP, HIP, HIPAA, Part 2 - Jordan Wiseman - SCW #79
HIP, HIP, HIPAA, Part 1 - Jordan Wiseman - SCW #79
Can XDR Solve Ransomware? - Maurice Stebila - BSW #223
CISO Wishes and Initiatives, Risk of Disconnect, and Cyber Insurance Rises - BSW #223
Web App and API Security Needs to Be Modernized: Here's How - Sean Leach - ASW #157
Password Mismanager, Trusted Types vs. DOM XSS, PrintNightmare, & Fault Injections - ASW #157
LinkedIn Breach, Bitcoin From Banks, PrintNightmare, & NFC Flaws in ATMs - PSW #701
The Rise of Sim Swapping - Haseeb Awan - PSW #701
New Security Threats Stemming from PII Online - Rob Shavell - PSW #701
MalWare Labs and Why You Should Challenge Shift-Left Testing - Mario Vuksan, Rickard Carlsson - ESW #233
Noname Security, JFrog Acquires Vdoo, Micro Segmentation, & AWS Buys Wickr - ESW #233
Why DAST - from Project Management Perspective - Suha Akyuz - ESW #233
CARES Act Fraud, Paying People & Fraudsters, Part 2 - Steve Lenderman - SCW #78
CARES Act Fraud, Paying People & Fraudsters, Part 1 - Steve Lenderman - SCW #78
Boardroom Perspectives, Greater Business Understanding, & Preventing Burnout - BSW #222
The Year of Hybrid - Jim Richberg - BSW #222
Semgrep, Microsoft Signs With Rootkits, ATT&CK/D3FEND, & Injured Android - ASW #156
Scaling Your Application Security Program - Clint Gibler - ASW #156
Thermostat Hijacking, MA Androids, Windows 11, Hacking Pelotons, & John McAfee - PSW #700
CFAA: Recent US Supreme Court Case Van Buren v. US - Thomas Lonardo - PSW #700
Career Pathing and Advice From Offensive Security - Jim O'Gorman - PSW #700
SentinelOne IPO, Cloudflare Integrations, D3FEND, & Rumble Network Discovery - ESW #232
How Teams Can Reduce the Visibility Gap - Brendon Macaraeg - ESW #232
How Criminals Use Cloud Apps to Inject Chaos Into Work Environments - Doni Brass - ESW #232
Value & Importance of Cybersecurity Certification for Professionals, Part 2 - Casey Marks - SCW #77
Value & Importance of Cybersecurity Certification for Professionals, Part 1 - Casey Marks - SCW #77
CIO Succession, Hidden Costs, 10 Leadership Habits, & 5 Key Ingredients - BSW #221
Making the Case for Supply Chain Behavior Transparency - Ben Higgins, Ted Driggs - BSW #221
Supply Chain Integrity, Format Strings, Systemd Bug, Instagram Bounty, & Refactoring - ASW #155
Challenges of DAST Scanners / Adoption by Developers - Nuno Loureiro, Tiago Mendo - ASW #155
Web Cache Poisoning - Timur Guvenkaya - PSW #699
"Eavesdropping Cameras", Ransomware Poll Results, Windows 11, & CVS Records Leak - PSW #699
Avoiding the Silo: Bridging the Divide Between Security + Dev Teams - Brian Joe - PSW #699
Tanium for Incidents. How the Best Defense Gets Better: Part 1 - ESW #231
RSA Outseer, Elisity Zero Trust, Contrast Scan, & SOAR Soup - ESW #231
Open Source Enterprise Communication Security - Ian Tien - ESW #231
Security Training, Evangelism, & Community Building, Part 2 - Danny Akacki - SCW #76
Security Training, Evangelism, & Community Building, Part 1 - Danny Akacki - SCW #76
Cliché Self-Help, RockYou2021, "Productive Procrastinators", & Attracting Talent - BSW #220
Securing User Connections to Applications - Jonny Noble - BSW #220
ALPACA, EA Breach, sprintf Lives, Go Fuzzing, K8s Goat, & OT Basics - ASW #154
OWASP SAMM - Software Assurance Maturity Model - Sebastian Deleersnyder - ASW #154
ANOM Bust, Ransomware Solutions, NAC, & A PCI Deathmatch! - PSW #698
Protecting the Attack Surface - Rob Gurzeev - PSW #698
OpenWRT for Enterprise and Labs - Gene Erik - PSW #698
BTS of the Cyber Fight and Building a Resilient Web App Security Program - ESW #230
FireEye 'Fire Sale', Panaseer Security Guidance, & Infoblox 3.0 - ESW #230
Redefining SaaS Security so SOC/IR Teams Aren't in the Dark - Stephen Newman - ESW #230
CMMC Program and the DIB Preparation, Part 2 - Doug Landoll - SCW #75
CMMC Program and the DIB Preparation, Part 1 - Doug Landoll - SCW #75
3 Ways + 4 Measures + 5 Approaches + 5 Myths = 17 Questions - BSW #219
Optimize Buying Criteria to Ensure Success of Your New Security Tools - Travis Isaacson - BSW #219
HTTP Goes QUIC, Security & Humans, Amazon Sidewalk Privacy, & Product Abuse - ASW #153
API Security: Understanding Threats to Better Protect Your Organization - Daniel Hampton - ASW #153
CFAA Ruling, Amazon Sidewalk, Agile Security Testing, & WordPress Plugins - PSW #697
Digital Transformation's Impact On IT Asset Visibility - Sumedh Thakar - PSW #697
Attack Surface Discovery and Enumeration - Dan Tentler - PSW #697
M1 Chip Flaw, Boeing 747 Hacking, Don't Blame the Intern, & John Deere - PSW #696
Cybersecurity Canon - Rick Howard - PSW #696
Polarity's Power-up Sessions, Add an Ability in 15 Minutes - Paul Battista - PSW #696
Metrics, Training, Culture & Cloud Security Resilience - Drew Rose, Ganesh Pai - ESW #229
AWS Lambda New Features, ServiceNow Integration, & Zscaler Acquires Smokescreen - ESW #229
Down With SIEM, Long Live SOAR! - Nathan Hunstad - ESW #229
SBOM, Part 2 - Allan Friedman - SCW #74
SBOM, Part 1 - Allan Friedman - SCW #74
CISOs Struggle to Cope, Cybersecurity Metrics, & Security by Design - BSW #218
Simplify & Accelerate Patch Management - Chris Hallenbeck - BSW #218
IIS Bug, Browsers & Androids & Supply Chains Oh My! - ASW #152
Bringing AppSec to a Modern CI Pipeline - Manish Gupta - ASW #152
21 Nails: Behind the Scenes Discussion of Qualys Exim Vulnerability Discovery - Wheel - PSW #695
Five by Five: Why the Cyber Defense Matrix Gets Great Reception - PSW #695
Building a Response Strategy to Advanced Threats - Mark Bowling - ESW #228
Unplugging the Internet, Diversity, Cyber NTSB, & Best Practices - PSW #695
All the News From RSA Conference 2021 - ESW #228
Identity Management as a Foundation for Future-Proofing your Security - John Masserini - ESW #228
Building a Unified Security Fabric - Johnathan Nguyen-Duy - BSW #217
Unified BCDR: Why Backup Alone is No Longer Enough - Joseph Noonan - BSW #217
Third Party Software Risk on the Web - Aanand Krishnan - ASW #151
CNCF Supply Chain, Frag Attacks, Securing Webhooks, & Complexity vs. Security - ASW #151
Executive Order, New & Old Wifi Vulns, Pipeline Hack, & Distro-Less Linux - PSW #694
Attack Surface Mapping w/ AMASS - PSW #694
How Hacking Naked Changed My Life - Alex Chaveriat - PSW #694
Accurics Terrascan, Sophos XDR Solution, & API Security Need to Know - ESW #227
Chart Topping Threats – How Attacks will Rage in 2021 - Artsiom Holub, Austin McBride - ESW #227
Florida Water Treatment Facility Hack, and the Convergence of OT & IT - Damon Small - ESW #227
Hot Legal Topics in Privacy and Cybersecurity, Part 2 - Erik Weinick - SCW #73
Hot Legal Topics in Privacy and Cybersecurity, Part 1 - Erik Weinick - SCW #73
6 Ways to Engage, 5 Key Qualities of CISOs, & 4 Actions Leader Take - BSW #216
The Lost Year: The Impact of the Pandemic on Web App Security - Ryan Bergquist - BSW #216
AirTags & Threat Models, Qualcomm Modem Vuln, Exim RCE(s), & Binary Hardening - ASW #150
Delivering On the Promise of Application Security - Ankur Shah - ASW #150
Job Expectations, Pi Password Thief, Python Masscan, & Pingback - PSW #693
Biden Administration EO on Cyber - Jim Langevin - PSW #693
Building a Risk-Based Vulnerability Management Program - Bob Erdman - PSW #693
JupiterOne, Signal Ad Banned, Series F Funding, & Imperva Acquires CloudVector - ESW #226
The Rise of the SBOM - Steve Springett - ESW #226
Applications Are Your Lifeblood - Carlos Morales - ESW #226
Data Security Compliance & Virginia's New Privacy Law, Part 2 - Chris Pin - SCW #72
Security Money - The Index is Still Going Strong - BSW #215
Data Security Compliance & Virginia's New Privacy Law, Part 1 - Chris Pin - SCW #72
The Benefits of CISO Peer-to-Peer Networks - Graham Keavney - BSW #215
BadAlloc Vulns, Gatekeeper Bypass, & More Spectre in Micro-Op Caches - ASW #149
Why Developers Need to Think Differently About Software Security - Rey Bango - ASW #149
AirDrop Vulns, Linux Hypocrite Commits, Wi-Fi Code Execution, & We'll Miss You Dan - PSW #692
Smart Building Control System Cybersecurity - The Real World - Fred Gordy - PSW #692
Protecting the Hybrid Workforce - Fleming Shi - PSW #692
Authentication vs. Authorization: Why Privileged Access Matters - Joseph Carson - ESW #225
HackerOne Enhances Platform, PANW Expands Unit 42, & More Funding - ESW #225
Collaboration Rules! Challenging Transparency in Modern App Sec - Rickard Carlsson - ESW #225
ATT&CK and CTID, Part 2 - Richard Struse - SCW #71
ATT&CK & CTID, Part 1 - Richard Struse - SCW #71
Outgunned CISOs, Cyberthreat Reports, & Effective Cyber Security Strategy - BSW #214
Cyber Accountability - Mathieu Gorge - BSW #214
Signal Aesthetics, AirDrop Privacy, Safety vs. Security, & Data Ordering Attacks - ASW #148
Deceptive Diffs From Subversive Submitters - ASW #148
Feds Have a Busy Two Weeks, British Tween Takes On TikTok, & More Facebook Woes... - PSW #691
Encrypted Collaboration & Communication - Joel Wallenstrom - PSW #691
Why Now is the Time for K-12 Cybersecurity Education - Kevin Nolten - PSW #691
Darktrace & Knowbe4 IPOs, Dell Spins Off VMWare, & Zscaler Keeps Growing - ESW #224
Stopping Phishing Breaches at the Point of Click - Chris Cleveland - ESW #224
How Cloud Defenders Thwart Attacks Against Resilient Services - Jeff Deininger - ESW #224
Compliance Innovations in the Cloud, Part 2 - Chris Hughes - SCW #70
Compliance Innovations in the Cloud, Part 1 - Chris Hughes - SCW #70
Rust in Android, Vuln Disclosure, Postmortems, & BootHole Follow-Up - ASW #147
Cyber-Risk Threat, 4 Steps to Better Security Hygiene, & 10 Rules for Work-Life - BSW #213
Supply Chain Management - Doug Barbin - ASW #147
The Hybrid Workforce: Addressing the Challenges of Work from Anywhere - Fleming Shi - BSW #213
Security Awareness Culture Change, Part 2 - Kelley Bray, Stephanie Pratt - SCW #69
Security Awareness Culture Change, Part 1 - Kelley Bray, Stephanie Pratt - SCW #69
Facebook Dump, Hacking Your Dishwasher, Zoom 0-Click Exploit, & Ubiquity Response - PSW #690
Lessons Learned When Migrating from On Prem to Cloud - Dutch Schwartz - PSW #690
nzyme - Free & Open WiFi Defense System - Lennart Koopmann - PSW #690
Cybersecurity Unicorns, LogRhythm Version 7.7, Rapid7 Kubernetes Beta, & Cisco SASE - ESW #223
Hackers Are Targeting Your Firmware. Are You Ready? - John Loucaides - ESW #223
Inbox: Zero Trust - Ryan Noon - ESW #223
Information Sharing - A 360 Degree View, Part 2 - Errol Weiss - SCW #68
Information Sharing - A 360 Degree View, Part 1 - Errol Weiss - SCW #68
Risk Management Approach, Automation, & the Problem With Cyber Insurance - BSW #212
Accelerating Security with Security Automation - John McClure - BSW #212
Malicious PHP Commits, OAuth Attacks & XML Injection, & Zines For DevSecOps - ASW #146
Shifting Right: What Security Engineers Can Learn From DevSecOps - Leif Dreizler - ASW #146
Ubiquiti Breach, Tesla, PHP, & More Sagas - PSW #689
Cybersecurity Journalist - Robert Lemos - PSW #689
The Intersection of Cybersecurity & Cryptocurrency - Nick Percoco - PSW #689
Tyler's "Deathpool", Astadia, Gigamon, & GRIMM - ESW #222
Why User Adoption in Enterprise Security is Low - Juliet Okafor - ESW #222
Rise of Insider Threat Post-C19 - Zack Moody - ESW #222
Vulnerability Management is Still a Mess - Part 2 - Rafal Los - SCW #67
Vulnerability Management is Still a Mess - Part 1 - Rafal Los - SCW #67
Business Leader, CISO Skills, & Building Your Cybersecurity A-Team - BSW #211
How NDR Technology Helps Manage Cybersecurity Challenges - Nemi George - BSW #211
TikTok Analysis, Patching Patches, CI/CD Integrity, Faster Fuzzing, & Slack Safety - ASW #145
OWASP Top 10 of 2021 - Andrew van der Stock - ASW #145
Open Redirects - An Underestimated Vulnerability - PSW #688
DOOM Exploit, iPhone Deep Fakes, & 11 0-Days Infect Devices - PSW #688
Taming Vulnerability Overload - Mehul Revankar - PSW #688
Axis Security, Qualys, VMware, NFTs, & Linksys/Fortinet - ESW #221
"Jump-Start Your SOC Analyst Career" - Jarrett Rodrick - ESW #221
Platform Security - PaaS & Hosting - Trey Ford - ESW #221
PlexTrac Talks PCI, Part 2 - Dan DeCloss, Shawn Scott - SCW #66
PlexTrac Talks PCI, Part 1 - Dan DeCloss, Shawn Scott - SCW #66
Dictionary Attacks, SASE Misinformation, & 3 Key Tasks - BSW #210
Medical Device Secure Development Lifecycle - Christopher Gates - BSW #210
Supply Chains in Azure SDK/Xcode, GitHub Sessions, & GCP VRP - ASW #144
Approaching AppSec Like a Hacker - Johanna Ydergard, Roberto Giachetta - ASW #144
Plextrac Mini-Series Episode 1: Purple Teaming - Bryson Bort - PSW #687
Security Grades, Mirai, Quantum Cryptography, & Hacking "Beer" - PSW #687
Getting The Real Work Done With Plextrac - Dan DeCloss - PSW #687
Attack Surface - What are we Missing? - Ilia Kolochenko - ESW #220
ARM Support, Cyber "SPAC", Cyber Fusion, Docker, & Beer Outage - ESW #220
Investing In Cybersecurity - Ron Gula - ESW #220
Security & Compliance Legal Highlights - Part Deux - SCW #65
Security & Compliance Legal Highlights - SCW #65
Importance of Culture, Engaging The Board, & 8 New Roles! - BSW #209
The Nine Cybersecurity Habits - George Finney - BSW #209
Unauth'd RCE, "Regexploits", Post-Spectre Web, & SigStore Signing - ASW #143
Cloud Native Security Platforms - John Morello - ASW #143
Ransomware Research, Threats, and Futures - Assaf Dahan - PSW #686
Russian regex, John McAfee, Verkada Hack, & Microsoft Exchange - PSW #686
How Illicit Markets Really Operate - David Hétu - PSW #686
CrowdStrike Falcon, Gigamon Hawk, Awake's NDR, & Acquisitions - ESW #219
Attack Surface Management, Monitoring, & Mapping - Jeff Foley - ESW #219
Using Computer Vision to Combat Phishing - Chris Cleveland - ESW #219
ICS/OT Regulation, Part 2 - Jim Gilsinn - SCW #64
ICS/OT Regulation - Jim Gilsinn - SCW #64
Risky Business (With Less Resources), Or: Know the CISO Job Search - BSW #208
Security Leadership in Times of Transition - Gerald Beuchelt - BSW #208
Security Engineering, Evil Packages, Exchange SSRF, & Observability - ASW #142
Privacy, Data Security & Compliance - Cynthia Burke - ASW #142
Patching Exchange Servers, Book Reviews, Rockwell, & Forgotten AM Broadcasts - PSW #685
How To Build A Kick-Ass PC - PSW #685
Offensive Cybersecurity Education and Getting Started in Pentesting - Phillip Wylie - PSW #685
Thycotic & Centrify, Geography, YubiKey, & K7 Antivirus - ESW #218
The New Cybercrime Landscape - Kimberly Sutherland - ESW #218
Traditional IDS is Dead - Matt Cauthorn, Sri Sundaralingam - ESW #218
Tips and Advice: Practical Steps When Considering Cyber Insurance - Albert "Nickel" Lietzau, V, Mike Volk - SCW #63
Cyber Insurance: Debunking Myths - Albert "Nickel" Lietzau, V, Mike Volk - SCW #63
Cyberinsurance, Breaches, Business Continuity, & Beyond! - BSW #207
Security Incidents: Simple Responses That Make All The Difference - David Chamberlin - BSW #207
JSON, OpenSSL, Educational Resources, & Flaws in CodeQL - ASW #141
Hackable; How to do Application Security Right - Ted Harrington - ASW #141
TV Hacking, Nvidia, Nation States, NASA, & WMware - PSW #684
Wait, You Did What? How To Be A Cybersecurity Hero... - Bryan Seely - PSW #684
"Confessions of a CIA Spy - The Art of Human Hacking" Book Release - Peter Warmka - PSW #684
Evaluating the MITRE ATT&CK Evaluations in their Third Year - ESW #217
2020 Security Operations Survey - Christopher Crowley - ESW #217
Red Canary, Imperva Sonar, Data Breaches & Share Prices, & TrendMicro XDR - ESW #217
The Journey Of An Inner City Street Hacker, Part 2 - Chris Cochran, John Threat, Ronald Eddings - SCW #62
The Journey Of An Inner City Street Hacker, Part 1 - John Threat - SCW #62
Risk, Security Initiatives, Business Outcomes, & Aligning Budgets - BSW #206
The Cloud's Influence on the Evolving Culture of Security - Dutch Schwartz - BSW #206
Dependency Confusion, Suspender Falls, Web Shells, & AppSec Scale - ASW #140
Targeting, Exploiting, & Defending Linux - Brandon Edwards - ASW #140
Unearthing a 10-Year Old SUDO Vulnerability - . Wheel - PSW #683
CD Projekt Ransomwared, Ciphers, Water Supply Hacked, & Clubhouse Security Risks - PSW #683
What Does Zero Trust Mean To You? - Peter Smith - PSW #683
Work-Bench Ventures - Kelley Mak - ESW #216
Network Discovery & IT Asset Inventory - HD Moore - ESW #216
'Selfie Biometrics', NetWitness, Okta, & Jetstack Secure - ESW #216
Security & Compliance Legal Highlights - SCW #61
Update on CFAA - SCW #61
9 Steps, the Big 8, & 7 Super Bowl Rings! - BSW #205
Evolution of the CISO Role - Ben Carr - BSW #205
BBPLR, API Security Trends, Memory Unsafety, & Patching 0-Days - ASW #139
Being a Serial Entrepreneur, Business Leader, & Hacker - Alissa Knight - ASW #139
Vending Machine Hack, Chucky's Amber Alert, HarmonyOS, & Realtek Vulns - PSW #682
Quantum Computing & Finding the Truth - Bill DeLisi - PSW #682
Starting A Non-Profit To Help Small Companies With CMMC - Josh Marpet - PSW #682
The Cyber Defense Matrix, the DIE Triad, and Cybersecurity Startups - Sounil Yu - ESW #215
Attack Surface Management - Jonathan Cran - ESW #215
Imperva Updates WAAP, SonicWall Confirms 0-Day, & Arista Zero Trust - ESW #215
The Security Poverty Line, Part 2 - Wendy Nather - SCW #60
The Security Poverty Line, Part 1 - Wendy Nather - SCW #60
WallStreetBets - Hacking the Hedge Funds - BSW #204
Security Money - The Index is on the Rise - BSW #204
Sudo Vuln, Libgcrypt, BlastDoor on iMessage, & AWS Lambda security - ASW #138
Groundhog Day - It's Time to Reset the Script on Vulnerabilities - John Delaroderie - ASW #138
EMOTET Disrupted, "Ghost" Hackers, & Why Privacy is 'Like Bubblewrap' - PSW #681
How Tall Do You Have to Be to Ride the Ride? - Dan DeCloss - PSW #681
XDR and Vitamins - Michael Roytman - PSW #681
Supply Chain Security in the Face of Solarwinds - Allan Alford - ESW #214
DNS Hijacking - Fredrik Nordberg Almroth - ESW #214
Platform9, Swimlane, SonicWall 0-Days, & Fortinet - ESW #214
How to Build an Insider Threat Program in 10 Steps - Part 2 - Anthony Palmeri - SCW #59
How to Build an Insider Threat Program in 10 Steps - Part 1 - Anthony Palmeri - SCW #59
Cybersecurity Failure, Reboot Security Strategy, & Solving the Skills Gap - BSW #203
Everyone missed SUNBURST... or did they? - Matt Cauthorn - BSW #203
KindleDrip, State of Messaging State Machines, DoH, & Data Security Strategies - ASW #137
Reading Industry Analyst Tea Leaves To Predict The Future - Taylor McCaslin - ASW #137
WRT54G Hacking History, 70 Unpatched Cisco Vulns, & Bypassing MFA - PSW #680
Hacking Ubiquiti Devices - Jon Gorenflo - PSW #680
Beyond Phishing Blockers - Ryan Noon - PSW #680
The DBoM Consortium - Chris Blask - ESW #213
It's 2021, Do You Know Where Your Assets Are? - ESW #213
Amazon's Parler Removal, Beyond Security & Vicarius Partner, & More SolarWinds! - ESW #213
Sunburst: The Cleanup - SCW #58
Sunburst: Down the Rabbit Hole - SCW #58
BISOs Bridge the Gap, Lots of Questions, & Use Negative Feedback to Improve - BSW #202
Why deepwatch Chose Splunk to Secure Customer Networks - Patrick Orzechowski - BSW #202
Google 2FA Cloning, Speed vs. Security, & "Hack The Army" Bug Bounty 3.0 - ASW #136
Fuzz Testing - Andrei Serban - ASW #136
Custom Python Encryption, Shady 0-Days, & The Great iPwn - PSW #679
What Has Changed (or Not) Since Our Last Visit? - Ming Chow - PSW #679
Automated Vulnerability Remediation - The Good, the Bad and the Ugly - PSW #679
SolarWinds, FireEye, Microsoft, Oh My! - Sean Metcalf, Tyler Robinson - ESW #212
The State of Data Security - Chris Brown - ESW #212
Veracode in AWS Marketplace, ZScaler SUNBURST Assessment, & SolarWinds Fallout - ESW #212
Looking Forward - SCW #57
Looking Back - SCW #57
6 Security Concerns, 3 Steps, & 10 Skills - BSW #201
CISO Stories - Cybersecurity Leadership 2021 - Todd Fitzgerald - BSW #201
Kubernetes Clusters, Microsoft Solarigate, & Apple's Security DIY - ASW #135
Security By Design - ASW #135
SolarWinds Attack, AIR-FI Technique, & Zodiac Cypher Decoded - PSW #678
Securing The Enterprise Software Supply Chain - Harry Sverdlove - PSW #678
Generating Threat Insights Using Data Science - Roi Cohen, Shani Dodge - PSW #678
Mimecast Awareness Training Philosophy - Emily Huynh, Mandy McKenzie - ESW #211
Visibility Is Critical in Uncertain Times - Martyn Crew - ESW #211
42Crunch IDE OpenAPI Editing, DigiCert IoT Device Manager, & More SolarWinds - ESW #211
Pen Testing, Part 2 w/ Dmitry Zagadsky - SCW #56
Pen Testing, Part 1 w/ Dmitry Zagadsky - SCW #56
Leadership & Communications: Lessons Learned in 2020 - BSW #200
Transforming Cyber Risk/Compliance Through Automation - Padraic O'Reilly - BSW #200
Atheris Python Fuzzer, Bronze Bit Attack, & FireEye Highlights - ASW #134
Freedom From Computing Environments - Ev Kontsevoy - ASW #134
Hacking Matters Panel - PSW #677
Innovative Blue Team Techniques Panel - PSW #677
The State Of Penetration Testing Panel - PSW #677
Every Analyst Struggles to Balance Thoroughness & Speed - Joe Rivela - ESW #210
How Can We Vaccinate Our Networks? - Mike Lloyd - ESW #210
Kali Linux & Pentesting, FireEye Compromised, & Qualys UAE Cloud - ESW #210
Getting To Know Flee - SCW #55
The Cyber Risk/Compliance Transformation Solution - Padraic O'Reilly - SCW #55
Darth Vader Week - Leadership from the Dark Side - BSW #199
Securing the Hybrid Workforce in 2021 and Beyond - Sri Sundaralingam - BSW #199
Google Play Bug, GitHub, iPhone Radio Reboots, & Docker Hub Vulns - ASW #133
Security Web Applications Against Modern Threats - John Delaroderie, Mike Manrod - ASW #133
Security News w/ Ed Skoudis - PSW #676
Zero Trust Data Security - Jeff Capone - PSW #676
From Chaos to Topia - Vicarius - PSW #676
Cybersecurity & Diversity - Jackie Abrams, Gabe Gumbs, Mandy Logan, Susan Bosco - ESW #209
The Road To Secure Your Organization - Ferruh Mavituna - ESW #209
Amazon EKS, DFLabs Cloud Package, & CyberMDX Healthcare Security Suite - ESW #209
AJ Yawn, NABCRMP - Part 2 - SCW #54
AJ Yawn, NABCRMP - Part 1 - SCW #54
Your Title Doesn't Make You a Leader, The New 9 to 5, & Say "Thanks" - BSW #198
Where's your data? Who Cares! - Jeff Capone - BSW #198
Top CyberSec Skills for 2021, Xbox Gamertag Bug, & MobileIron RCE Flaw - ASW #132
Security Decisions During Application Development - Tim Mackey - ASW #132
Beyond Subjectivity: Sharpening CVSS with Asset Context - Clayton Fields, Michael Assraf - ESW #208
Which Multifactor Authentication is the Right One? - Matt Barnett - ESW #208
Drupal Vulnerability, Sectigo DevOps Integrations, & Vulnerable Fortinet VPNs - ESW #208
Compliance Topic: Cyber Credit Score Industry - SCW #53
Zero Trust Intersects XDR in Today's Digital Era - Zulfikar Ramzan, Ph.D. - SCW #53
Creative Mindsets, Reaching Goals, & Encouraging Accountability - BSW #197
Cybersecurity & Integrated Risk Management - Top 10 for Trend 2021 - M. James Gomez - BSW #197
Drupal Flaws, DevSecOps Implementation, & Cloud Native Security White Paper - ASW #131
Threat Modeling Deep Dive - ASW #131
IoT Cybersecurity Improvement Act, TCL Smart TV Flaw, & Popping Reverse Shells - PSW #675
Understanding How Data Science Applies to Infosec - Michael Roytman - PSW #675
Threat Actors & Recent Trends - Jamie Fernandes, Karsten Chearis - PSW #675
The Future of Osquery - Ganesh Pai, Julian Wayte - ESW #207
How Network Detection Helps Fill The Gaps - Steve Porcello - ESW #207
AlgoSec CloudFlow, AWS Network Firewall, & Sysdig Zero Trust - ESW #207
What's in It for Us? - Adrian Sanabria - SCW #52
Who Are You? - Adrian Sanabria - SCW #52
The CISO's Dilemma, 7 Cybersecurity Predictions, & 5 Cloud Considerations - BSW #196
The C-Suite's Risk Mitigation Strategy - Kevin O'Brien - BSW #196
'Platypus' Attack, IDOR DOD Bug, & 2 More Chrome 0-Days - ASW #130
Automated Hacker Knowledge - Rickard Carlsson - ASW #130
Cobalt Strike Leak, DNS Cache Poisoning, & Decrypting Open SSH - PSW #674
Challenges With Securing Container Environments - Badri Raghunathan, Sumedh Thakar - PSW #674
Disrupt Attacks at the Endpoint with Attivo Networks - Joseph Salazar - PSW #674
SWVHSC Micro Interviews: Secure Circle & Vicarius - Jeff Capone, Roi Cohen - ESW #206
BotRx Widgets, New Kasada API, & White Ops Bot Protection - ESW #206
Getting Google Scale Threat Detection With Chronicle Detect - Trevor Welsh - ESW #206
Data, Data, Data - Part 2 - Liam Downward - SCW #51
Data, Data, Data - Part 1 - Liam Downward - SCW #51
5 Mistakes, 5 Best Practices, & CEOs Focus for 2021 - BSW #195
Cybersecurity Forecast: Cloudy With a Chance of Turbulence - Mike Lloyd - BSW #195
Security Is a Feature - Keith Hoodlet - ASW #129
China's Top Hacking Contest, GitHub Actions, & Vulnonym - ASW #129
Multiple iOS 0-Days, Intel Malware Defense, & Windows 0-Day Under Attack - PSW #673
Proactive Security Using Runbooks - Dan DeCloss - PSW #673
Abusing JWT (JSON Web Tokens) - Sven Morgenroth - PSW #673
Why Network Detection/Response Belongs In Your 2021 Strategy - Mike Campfield - ESW #205
Massive Cyberattack Spreading Across 68% of Organizations - Kevin O'Brien - ESW #205
The Benefits of Online, On-Demand Training For Teams - Mike Gruen - ESW #205
Cloud Computing Compliance: Intelligent vs Basic Automations, Part 2 - Frank Macreery - SCW #50
Cloud Computing Compliance: Intelligent vs Basic Automations, Part 1 - Frank Macreery - SCW #50
The Dark Side, CISO Transition, & Communicate in Bursts - BSW #194
How to Develop Your Cybersecurity Skills - Marie Ketner - BSW #194
Lax IoT, Adobe Flash Croaks, Link Preview Vulns, & Security Theatre! - ASW #128
Azure App Service & Cloud-Native Signal Sciences Deployments - Alfred Chung - ASW #128
JavaScript Web Tokens, NVIDIA GeForce Experience Vulns, & Hacking Coffee Pots - PSW #672
How Computer Vision Balances Thoroughness & Speed - PSW #672
Determining Vulnerability Exploitation With Real Software Activity - PSW #672
Attacking & Defending Cloud Infrastructure - Alexi Papaleonardos - ESW #204
Conditional Data Access for Endpoints - Jeff Capone - ESW #204
Blackpoint RISK, GrammaTech CodeSentry, & Fortinet Secure SD-WAN - ESW #204
Logging, Monitoring, and SIEM, Oh My! - Alain Espinosa - SCW #49
Third Party Risk Assessment: What's in Your Supply Chain? - Frank Price - SCW #49
Board Risks, Selling Lemons, & 4 Critical Strategies - BSW #193
Scale Your SOC: Protecting Against Browser-Based Threats - Matt Ashburn - BSW #193
Cyber Risk in Industrial IoT, Firefox 'Site Isolation', & Chrome 0-Day Bug - ASW #127
Cyber Resiliency Through Self-Healing Cloud Infrastructure - Cesar Rodriguez - ASW #127
Discord Vulnerabilities, Chrome 0-Day, & Severe WordPress Flaw - PSW #671
Hackers Hitting Below The Belt - Scott Scheferman - PSW #671
Sysmon Endpoint Monitoring, Now w/ Clipboard Voyeurism - Corey Thuen - PSW #671
deepwatch Lens Score & Series B - Corey Bodzin - ESW #203
Prioritization to Prediction Vulnerability Research Series - Ed Bellis - ESW #203
Prisma Cloud 2.0, Blackpoint RISK, & Tenable Lumin - ESW #203
How Backdoors Lead To Breaches & GRC Compliance Issues - David Mundhenk, Ivan Tsarynny - SCW #48
Integrated Risk Management & Operational Resiliency - Steve Schlarman - SCW #48
CISO Stressbusters, Infosec Hiring, & Narrowing Communication Gaps - BSW #192
Security Money - BSW #192
Windows "Ping of Death", SonicWall VPN RCE , & MediaTek BootROM Glitch - ASW #126
The Future of Application Security Testing (AST) - Taylor McCaslin - ASW #126
'BleedingTooth' Vulnerability, Zoom Rolls Out E2EE, & 50,000 Cameras Compromised - PSW #670
Democratizing & Saasifying Security Operations - Patrick Garrity - PSW #670
Prioritize This, Prioritize That, Prioritize With Context! - Roi Cohen, Shani Dodge - PSW #670
SWVHSC Micro Interviews: CYRISMA & Mimecast - Liam Downward, Matthew Gardiner - ESW #202
Social Engineering Attacks Through Vishing & Phishing - Whitney Maxwell - ESW #202
Datadog Deployment Tracking, 'Bad Neighbor' Vulnerability, & Aqua's Trivy - ESW #202
CMMC - SCW #47
Turning Cybersecurity Challenges Into a Competitive Advantage - Mike Brooks - SCW #47
The 4 C's of Leadership with Michael Santarcangelo - BSW #191
Navigating Complexity: Orienting Your Security Solutions - Mike Lloyd - BSW #191
Fortinet SIEM RCE, Facebook Bug Bounty, & Anti-Virus Vulnerabilities - ASW #125
Application Security Best Practices - James Manico - ASW #125
10 Years Since Stuxnet, Rare Bootkit Discovered, & Thin Client Vulnerabilities - PSW #669
Assembling Your First Infosec Home Lab - Tony "tjnull" Punturiero - PSW #669
Fast And Secure Web - Alexander Krizhanovsky - PSW #669
2020 Threat Hunting Report: Insights From the CrowdStrike OverWatch Team - Jen Ayers - ESW #201
Trading Least Privilege for Security Theater - Cris Neckar - ESW #201
PingOne Services, Digital Shadows Key Alerts, & Azure Implements Datadog - ESW #201
Ransomware Attacks - SCW #46
SCW's First Anniversary/Recap - SCW #46
The Power of True Peer-to-Peer Collaboration - Parham Eftekhari - BSW #190
Transformational CISO, Metrics, & 5 Simple Ways to Make Better Decisions - BSW #190
DOMOS 5.8 OS Command Injection, API Shield, & TRB245 Vulnerabilities - ASW #124
Things Every Developer Should Know About Security - Chris Romeo - ASW #124
Ryuk Ransomware Attack, Windows XP Server Leak, & Potential Return to 'Hackers' - PSW #668
Intrusion Detection Honeypots: Detection Through Deception - Chris Sanders - PSW #668
NGINX As An RTMP Proxy - PSW #668
Vulnerability Management & the Art of Prioritization of Risk - SCW #45
Data Centric Security - Liam Downward - SCW #45
6 Types of CISO, Habits of Highly Effective CISOs, 10 Key Security Projects - BSW #189
State of the Managed Detection & Response Market - Ryan Benson - BSW #189
Bypassing TikTok's MFA, Instragram RCE, & Chrome Security Updates - ASW #123
The Difference Between Finding Vulns & Securing Apps - ASW #123
ZeroTrust Data Security - Jeff Capone, Peter Levett - ESW #200
Demystifying AI/ML for Cybersecurity - Edward Wu, Ted Driggs - ESW #200
Code42 Incydr, Microsoft 365 Defender, & Qualys Multi-Vector EDR - ESW #200
Legal Review of CFAA Supreme Court Case - Priya Chaudhry - SCW #44
Reducing the Headache of Audit Prep With Automation - Chas Ballew - SCW #44
The Anatomy of an Acquisition - BSW #188
The Power of Context & Collaboration in a Data Driven World - Corey Thuen - BSW #188
Project OneFuzz, Bluetooth Spoofing Bug, & Safeguarding Secrets - ASW #122
Visualizing & Detecting Threats For Your Custom Application - Justin Massey - ASW #122
Zerologon Attack, CrimeOps, & BLESA Bluetooth Flaw - PSW #667
Elastic Security Opens Public Detections Rules Repo - James Spiteri - PSW #667
Key Findings From The Newly Released BSIMM11 Report - Mike Ware - PSW #667
Securing Enterprise Digital Transformations - Jimmy Mesta - ESW #199
Current Security Needs Of Modern Enterprise Companies - Ferruh Mavituna - ESW #199
Zscaler Zero Trust Exchange, Gravwell Data Fusion, & CrowdStrike Falcon - ESW #199
How We Lost the Cybersecurity War (and What Happens Next) - Part 2 - David King - SCW #43
How We Lost the Cybersecurity War (and What Happens Next) - Part 1 - David King - SCW #43
Cyber Risks, C-Suite Supporting CISOs, & Cybersecurity Spending - BSW #187
Cracks in the Foundation: Understanding the New Endpoint Challenge - John Loucaides - BSW #187
RCE via BACKBLAZE, Microsoft Patch Tuesday, & CRYLOGGER - ASW #121
The People & Process of DevOps - Frank Catucci - ASW #121
Chrome Sandbox Exploit, Cisco Jabber CVE, & Lea Snyder w/ BSides Boston - PSW #666
Building Security Into the DevOps Lifecycle - Sumedh Thakar - PSW #666
The Patchless Horseman - Roi Cohen & David Asraf - PSW #666
Cloud Based Cyber Resiliency - Bradon Rogers - ESW #198
Exploring Identity Security & Its Role in the Modern Enterprise - Corey Williams - ESW #198
Cynet 360 4.0, YubiKey 5C NFC, & Netskope Cloud Threat Exchange - ESW #198
Ekran System & Universal Insider Threat Protection - Part 2 - Oleg Shomonko - SCW #42
Ekran System & Universal Insider Threat Protection - Part 1 - Oleg Shomonko - SCW #42
Slack RCE, Tesla Dodges Ransomware, & Cisco Router 0-Day - PSW #665
Cybersecurity & Patient Safety - Justin Armstrong - PSW #665
Lovable Security: Be a Data Custodian, Not a Data Owner - Fredrick "Flee" Lee - PSW #665
SWVHSC Micro Interviews: CrowdStrike & Synopsys - Ian McShane, Michael Borohovski - ESW #197
SWVHSC Micro Interviews: deepwatch & ExtraHop - Corey Bodzin, Michael Sanders - ESW #197
Anchore Enterprise 2.4, Auth0 Bot Detection, & Bitdefender MDR - ESW #197
Uber Indictments, Part 2 - Priya Chaudhry - SCW #41
Uber Indictments, Part 1 - Priya Chaudhry - SCW #41
7 Keys, 7 Elements, & 7 Quotes - BSW #186
CISO Interview: Role of the CISO, Why Do You Need a vCISO? - Carlos Becerra - BSW #186
GitHub to Ruby 2.7, CISO Success, & Lessons From Uber - ASW #120
Detecting Threats & Avoiding Misconfigs In The Cloud-Age - Marc Tremsal - ASW #120
Predicting Vulnerabilities In Compiled Code - Roi Cohen & Shani Dodge - PSW #664
SWVHSC Micro Interviews: Polarity & Netsparker - Ferruh Mavituna, Paul Battista - PSW #664
Hacking Tesla's Model 3, 28,000 Printers Hijacked, & iOS 14 Privacy Changes - PSW #664
Under Pressure - Building Security Into Application Development - Patrick Carey - ESW #196
"Under the Hoodie:" Rapid7's 2020 Pen Testing Report - Kwan Lin - ESW #196
Elastic Security 7.9, Sumo Logic, & Attivo Networks - ESW #196
Pragmatic Approaches to Cybersecurity Maturity, Part 2 - SCW #40
Pragmatic Approaches to Cybersecurity Maturity, Part 1 - SCW #40
Disrupting Traditional Security Research & Advisory - Edward Amoroso - BSW #185
Employees Resist New Tech, Safer Cloud, & Lowest Data Breaches in 5 Years - BSW #185
ATM Attacks, gcploit, & ClusterFuzz - ASW #119
DevOps-First Application Security For Mid-Markets - Sundar Krish - ASW #119
SWVHSC Micro Interviews: Gravwell & Rapid7 - Corey Thuen, Deral Heiland - PSW #663
Voice Phishers, 'SpiKey' Lock Picking, & Coffee Cup Hackers - PSW #663
Protecting Critical Infrastructure In Hybrid Clouds - Dan Perkins, Harry Sverdlove - PSW #663
SWVHSC: Micro-Interview - Plextrac & Spirion - Dan DeCloss, Gabe Gumbs - ESW #195
SWVHSC: Micro-Interview - Tanium & Vectra - Anton Chuvakin, Chris Morales, Matt Hastings - ESW #195
ThreatConnect, Auth0 Bot Detection, & Thycotic Identity Bridge - ESW #195
The Principle of Least Privilege & Regulatory Compliance - Matt Tarr - SCW #39
Matt Tarr, CyberArk - SCW #39
New Problem Solving Strategies, New Priorities, & Jobs With a Future - BSW #184
Ripple20: Finding Vulnerable Devices & Detecting Attacks - Jeff Costlow - BSW #184
AWS S3 Crypto SDK, ReVoLTE Attack, & Microsoft Bug Bounties - ASW #118
Immutable Security For Immutable Infrastructure - Cesar Rodriguez - ASW #118
Vulnerability Rich - Contextually Blind! - Michael Assraf - PSW #662
Adobe RCEs, Amazon Alexa Vulns, & TeamViewer Flaw - PSW #662
Why Elastic Is Making Endpoint Security 'Free And Open' - Mike Nichols - PSW #662
SWVHSC: Micro-Interview - Bitsight & Threatlocker - Danny Jenkins, Stephen Boyer - ESW #194
SWVHSC: Micro-Interview - ReversingLabs & Veracode - Chris Wysopal, Mario Vuksan - ESW #194
GreatHorn, JumpCloud App, & Elite Intelligence - ESW #194
Compliance Without Compromise - Part 2 - Jeanette Manfra - SCW #38
Compliance Without Compromise - Part 1 - Jeanette Manfra - SCW #38
Automating Your Vulnerability Management Program - Mehul Revankar, Sumedh Thakar - PSW #661
SWVHSC: Netgear Flaws, Satellite Spying, & Stealing UltraLoq Keys - PSW #661
SWVHSC: Observing Disinformation Campaigns - Chad Anderson - PSW #661
SWVHSC: Mapping MITRE ATT&CK to PCI DSS - Jeff Man - ESW #193
DigiCert Automation Gateway, Veracode Security Labs, & CyberArk Shadow Admin - ESW #193
SWVHSC: Put Zero Trust in Your Devices - John Loucaides - ESW #193
SWVHSC: "The Failure of Risk Management" - Doug Hubbard - BSW #183
SWVHSC: How Security Spending Overlooks the Biggest Risk of All - Matt Ashburn - BSW #183
SWVHSC: Amazon GuardDuty, Sandboxing & Workload Isolation, & No More SHA-1 - ASW #117
SWVHSC: How Does Sec Live In A DevOps World? - Mike Rothman - ASW #117
GNU GRUB2 Vulnerability, 'BootHole' Secure Boot Threat, & Garmin Ransomware Hack - PSW #660
MIDAS - Siddharth Bhatia - PSW #660
Gravwell Big Bang Release - Corey Thuen - PSW #660
Compliance & Fraud Prevention in FinTech - Neira Jones - ESW #192
A New Paradigm: Immutable Security - Om Moolchandani - ESW #192
CloudPassage, VMware Cloud, & Portshift K8SHIELD - ESW #192
Legal Implications of Security & Compliance - Part 2 - SCW #37
Marketing & Selling to the CISO - BSW #182
Legal Implications of Security & Compliance - Part 1 - SCW #37
Cybersecurity Challenges in a Teleworking World - Drew Cohen - BSW #182
TaskRouter JS SDK, EL1/EL3 Vulnerability, & 234 Alexa Skills Store Violations - ASW #116
Fixing Vulnerabilities Effectively & Efficiently - John Matherly - ASW #116
Cisco Security Flaw, Million Dollar Bounties, & Jackpotting ATMs - PSW #659
The Power of the Cloud Platform: One Single Agent, One Global View - Sumedh Thakar - PSW #659
Affects of COVID-19 on Web Applications - Zane Lackey - PSW #659
An Overview of Black Hat USA 2020 - Steve Wylie - ESW #191
Secretless & the End of Application Secrets as We Know Them - Brian Kelly - ESW #191
The Evolution of Enterprise Web Apps & Its Impact on Web Security - Mark Ralls - ESW #191
PCI Dream Team - Part 2 - Arthur Cooper, Ben Rothke, David Mundhenk, Jeff Hall - SCW #36
PCI Dream Team - Part 1 - Arthur Cooper, Ben Rothke, David Mundhenk, Jeff Hall - SCW #36
New CISOs, Overworked CISOs, and 10 Worst Cybersecurity Strategies - BSW #181
Zero Trust Execution as Part of Your Cloud Workload Protection Strategy - Justin Bradley - BSW #181
SIGRed RCE, Google Cloud 'Confidential VMs', & Twitter Hack Crypto Scam - ASW #115
Cloud Security Posture Management & Governance - Bhasker Nallapothula, Kris Rajana - ASW #115
Twitter Mega Hack, 3rd Party IoT Vulns, & Windows DNS SIGRed RCE - PSW #658
Welcome Our Newest Host! - John Snyder - PSW #658
Artificial Intelligence and Machine Learning in Cybersecurity - Ankur Chowdhary - PSW #658
Auditor Meets Security Pt. 2 - SCW #35 - Brian Tremblay - SCW #35
Auditor Meets Security Pt. 1 - Brian Tremblay - SCW #35
What's Next, Board Discussions, and New Cybersecurity Priorities for 2020 - BSW #180
Security Money - BSW #180
Top Bug Bounty Rankings, Zoom 0-Day, & Firefox Send Malware - ASW #114
DevSecOps - Judy Ngure - ASW #114
RCE Chaos, Zoom 0-Day, & Banning TikTok - PSW #657
Fighting IoT Insecurities - Terry Dunlap - PSW #657
IPv6 Tunneling - Joff Thyer - PSW #657
Trends In Enterprise Identity - Robb Reck - ESW #190
Living Through a Ransomware Attack - Scott DeLong - ESW #190
Signal Sciences, Recorded Future, & CipherCloud - ESW #190
A Hacker's View of Security vs. Compliance - @mzbat - SCW #34
A Professional's View of Security vs. Compliance - Kimber Dowsett - SCW #34
Post-Pandemic CISO, 5 Threats to Resilience, and Time to Rethink Cyber Security - BSW #179
An Honest Conversation About "Response" - Juan Canales, Matt Cauthorn - BSW #179
Guacamole RCE, PAN-OS Flaw, & A Culture of Resilience - ASW #113
Protecting Mobile Applications - Catherine Chambers, Will Hickie - ASW #113
Netgear RCE, Guacamole Flaws, & 'Lucifer' DDoS Botnet - PSW #656
OSINT Scraping with Python - Ryan Hays - PSW #656
Work From Home Cyber Security - Jerry Chen - PSW #656
Cybersecurity Hiring - Franz Payer - ESW #189
HITRUST Compliance vs. Security & Diversity in InfoSec - Greg Thomas - ESW #189
SaltStack Enterprise 6.3, Semperis, & SafeGuard 7.6 - ESW #189
Cloud Security & Compliance News - SCW #33
PCI Workloads in the Cloud - Matt Springfield - SCW #33
Cybersecurity is a Business Problem,6 Reasons Strategy Fails, 5 Cities for Tech - BSW #178
Cybersecurity Challenges in Growth Organizations - Graeme Park - BSW #178
DLL Hijacking, Trust Through Privacy, & Adobe EOL Data - ASW #112
Using IaC to Establish & Analyze Secure Environments - Cesar Rodriguez - ASW #112
Emerging Security Threats to Your Digital Supply Chain - Jason Fruge - ESW #188
Debunking DAST Myths & Short-Term Strategies to Fixing Vulnerablities - Ferruh Mavituna - ESW #188
STELKS 6, CyberArk Alero, & CheckPoint CloudGuard - ESW #188
How to Become an InfoSec Professional With Limited Resources - SCW #32
What Is an InfoSec Professional? - SCW #32
Virtual CISO, How to Negotiate Virtually, & Endpoint Security - BSW #177
How CISOs Can Best Prioritize Security With a Decreased Budget - Lewie Dunsworth - BSW #177
CallStranger, SMBleedingGhost, & Misconfigured Kubeflow - ASW #111
Data Mapping & Data Value Journey - Michelle Dennedy - ASW #111
New Web Technology & Impact on Automated Security Testing - Benjamin Daniel Mussler - PSW #655
OSS Vulnerabilities, UPnP Flaws, & 0-Days for Bad People - PSW #655
Enhancing Vulnerability Management By Including Penetration Testing Results - Dan DeCloss - PSW #655
Building Secure & Reliable Systems - Heather Adkins - ESW #187
Vulnerability Management - Scott Kuffer - ESW #187
F-Secure, Checkmarx SCA, & Sonatype Nexus - ESW #187
Compliance News - SCW #31
Navigating the Risks Associated With the Return to "Normal" - Chris Patteson, Robert Carey - SCW #31
Challenges of a New CISO, Security Culture, & Business Communication - BSW #176
Career Ladders in Information Security - Marc French - BSW #176
Zoom Vulns, Apple 0-Days, & Abandoned Domains - ASW #110
The Future State of AppSec - Phillip Maddux - ASW #110
Root Cert Chaos, Octopus Scanner, & RobbinHood & the Merry Men - PSW #654
PCAPS Or It Didn't Happen- Corey Thuen - PSW #654
Lightweight Vulnerability Management Using NMAP - PSW #654
Security Chaos Engineering - Aaron Rinehart, Casey Rosenthal - ESW #186
Unraveling Your Software Bill of Materials - Alyssa Miller - ESW #186
Dragos, AttackIQ, Cortex XSOAR, & SureCloud - ESW #186
Regulations, PCI, and IoT Safety - Part 2 - Josh Corman - SCW #30
Regulations, PCI, and IoT Safety - Part 1 - Josh Corman - SCW #30
How to Truly Disrupt Cybercrime - Jen Ellis - BSW #175
CISO vs. CEO, Security Is Not a Technical Problem, How to Be a Great Listener - BSW #175
Apps Are the New Endpoint - Catherine Chambers - ASW #109
How to Prevent Account Takeover Attacks - John Chirhart - ASW #109
Ed Skoudis & Security News - PSW #653
"Burn-In: A Novel of the Real Robotic Revolution" - Peter Singer - PSW #653
2020 MITRE ATT&CK Malware Trends - Greg Foss - PSW #653
Cybersecurity Is a Mindset That Cannot Be Taught - Zack Moody - ESW #185
The Real Value of Identity in a Multi-Vendor IT Environment - Adam Bosnian - ESW #185
BeyondTrust, MITRE ATT&CK for ICS, & ThreatConnect - ESW #185
Stuxnet, RCE's Everywhere, & Breach Chaos - PSW #652
HTTP Security Headers In Action - Sven Morgenroth - PSW #652
Building An InfoSec Career - Jason Nickola - PSW #652
Dealing With Phishing Attacks Outside of Email - DJ Sampath - ESW #184
Managing Enterprise Security Assessments - Dan DeCloss - ESW #184
Acquisition-Mania, SaltStack Breaches, & RSAC 2021 - ESW #184
The Center for Long-Term Cybersecurity - Part 2 - Ann Cleaveland - SCW #29
The Center for Long-Term Cybersecurity - Part 1 - Ann Cleaveland - SCW #29
Burnt Out CISOS, Build Strategy, and 50+ Security Products - BSW #174
Is the Virtual SOC Our "New Normal"? - Mike Adler - BSW #174
Highlights From the New Open Source Security and Risk Analysis Report - Tim Mackey - ASW #108
Using Rate Limiting to Protect Web Apps and APIs - Jack Zarris - ASW #108
Ramsay Malware, Top 10 CVE's, & Reverse RDP Attacks - PSW #651
Securing Remote Access: Quarantines & Security - Harry Sverdlove - PSW #651
MITRE ATT&CK & Security Visibility: Looking Beyond Endpoint Data - Mike Nichols - PSW #651
Using the Network to Reduce Remediation Costs - Sid Nanda - ESW #183
Qualys VMDR: A Customer Perspective - Georges Bellefontaine - ESW #183
Cortex XSOAR, Fortinet, & YubiEnterprise - ESW #183
What Does "Security" Really Mean? - Part 2 - Jake Williams - SCW #28
What Does "Security" Really Mean? - Part 1 - Jake Williams - SCW #28
5 Tactical Steps, 5 CISO Priorities, and Communicating "Why" - BSW #173
Lessons for Cybersecurity From a Pandemic - Mike Lloyd - BSW #173
Samsung RCE 0-Click, Whispers, & Compromising Pluton - ASW #107
How Can Security Work TOGETHER, Not Against, Developers - Joe Garcia - ASW #107
Vulnerability Madness, IoT Botnets, & Breach Chaos - PSW #650
Project Fantastic - Bringing The CLI to GUI Users - PSW #650
Public Utility Security and National Guard Support - Chris Elgee, Jim McPherson - PSW #650
Effective Goal Setting and Tracking - ESW #182
Why the Cloud Stall Is Now the Cloud Surge - ESW #182
WordPress Attacks, IoT Device Shifts, & Splunk Cloud - ESW #182
PCI: A New Hope - SCW #27
The Rise of PCI - SCW #27
CISO Burnout, 7 Rules to Stay Productive, and Hire Great Talent Now! - BSW #172
Lessons Learned from a Data Breach - Graeme Payne - BSW #172
Psychic Paper, Salt RCE, & Love Bugs - ASW #106
Modern Application Security & Container Security - Gareth Rushgrove - ASW #106
Defensive Strategies and Qualys VMDR - PSW #649
Python Pickling, Sophos 0-Day, & AWS RDS MySQL - PSW #649
Fighting the Cyber War With Battlefield Tactics - Jeremy Miller, Philip Niedermair - PSW #649
Building an Enterprise Security Team - Wim Remes - ESW #181
Security Challenges When Working Remotely - Gerald Beuchelt - ESW #181
Trustwave, F-Secure, & Obsidian Security - ESW #181
Cyber and Disabilities Pt.2 - Joe Brinkley - SCW #26
Cyber and Disabilities Pt.1 - Joe Brinkley - SCW #26
Avoid These Missteps and Strategize a Return to the Office - BSW #171
Relations Between Buyers and Sellers of Security Products - David Spark - BSW #171
Nintendo Breach, NSA Advisory, & Security of IoMT - ASW #105
Threat Modeling in AppSec - Avi Douglen - ASW #105
iOS Mail Hijack, Hacking Satellites, & 0-Days for Days - PSW #648
Layer8 Conference & WorkshopCon - Ori Zigindere, Patrick Laverty - PSW #648
The Insider Threat - Steven Bay - PSW #648
Threats of Social Engineering Go Beyond Phishing - Peter Warmka - ESW #180
Work from Home - Business Impacts & Security Risks - Mark Orsi - ESW #180
ThunderScan, F-Secure Countercept, & ZeroFOX AI - ESW #180
Compliance News - SCW #25
State of the Union - Paul Asadoorian - SCW #25
Clear Vision, 3 Recession Scenarios, and Transparency - BSW #170
InfoSec World Conference 2020 - Summer Fowler - BSW #170
Malicious Ruby Gems & JSON Web Token Bypass - ASW #104
Building an AppSec Ecosystem - Rebecca Deck - ASW #104
Hospital Hackers, $500K Zoom 0day, & SFO Windows Hackers - PSW #647
Pen Testing to Validate Vulnerability Scanners - Magno Gomes - PSW #647
Threat Intel Program Strategies - Wade Woolwine - PSW #647
The Missing Link for Protecting Against Ransomware - Tim Williams - ESW #179
Phishing's Effect on Corporate Culture - Terry McCorkle - ESW #179
Patch Tuesday, Sysdig, & AttackIQ - ESW #179
Cyber Insurance News - SCW #24
Cyber Insurance - Jeffrey Smith - SCW #24
Start, Stop, Defer; Adapting to a Crisis; and Building a Culture - BSW #169
Security Money - BSW #169
Zooming Alex Stamos & Building Security TestOps - ASW #103
Making Kubernetes a Hostile Place for Attackers - Brad Geesaman - ASW #103
Zoom, Kubernetes, and Hacking - PSW #646
Tales From The Crypt...Analyst - Part 2 - Jeff Man - PSW #646
To Hunt or Not To Hunt; This is Never a !=? - Tyler Robinson - PSW #646
Moving Towards Modern Vulnerability Management - Ed Bellis - ESW #178
Time to Measure Security Improvement in AppSec - Ferruh Mavituna - ESW #178
CrowdStrike, Automox, & Ixia - ESW #178
CMMC - Part 2 - Chris Golden - SCW #23
CMMC - Part 1 - Chris Golden - SCW #23
3 Tips, 4 Behaviors, and 15 Steps for Remote Work - BSW #168
Cyber Resilience - Richard Clarke - BSW #168
Zoom Flaws, 'Zombie' win32k Bug, & Inputscope - ASW #102
You're (probably) Doing AppSec Wrong - Grant Ongers - ASW #102
Security News - To Zoom or Not to Zoom - PSW #645
IoT Devices: Security and Privacy Labels Research - Lorrie Cranor - PSW #645
Collaboration Between NetOps and SecOps in Today's World - Matt Allen - PSW #645
Windows Exploits, Re-Training Your Security Solutions - Tod Beardsley - ESW #177
Keeping Systems Secure...From Home - Sumedh Thakar - ESW #177
Threat Stack, Qualys, StackRox, Sysdig - ESW #177
Nemours Use Of RSA Archer To Manage Compliance Risk - Kevin Haynes - SCW #22
Compliance Risk Challenges - David Walter - SCW #22
Real Leaders, Social Distancing, and Vendor Relationships - BSW #167
Protect Your Assets According to Their Value - Jeff Costlow - BSW #167
The Benefits of SAST and SCA in Your IDE - Utsav Sanghani - ASW #101
Singularity: A Different Take on Container Security - Adam Hughes - ASW #101
Drobo Exploit, Docker Escape, SMBv3.11 - PSW #644
RSAC Micro Interview: Acunetix and Netsparker - Kevin Gallagher, Mark Ralls - ESW #176
Zen And The Art Of Logs In The Cloud - Corey Thuen - PSW #644
RSAC Micro Interview - SaltStack and Synopsys - ESW #176
Work from home securely - PSW #644
A holistic view of meeting compliance requirements - Part 2 - Matt Allen - SCW #21
Enterprise News - ESW #176
A holistic view of meeting compliance requirements - Part 1 - Matt Allen - SCW #21
Where the Law Thinks Your Data Lives - Steve Black - BSW #166
Bottlerocket, Supply Chain Casualty, DevOps Sweet Spot - ASW #100
DevSecOps / Scaling Security - Clint Gibler - ASW #100
Drowning in a Sea of Alerts, CIO News, and More! - BSW #166
Connected devices security - Dorit Naparstek - PSW #643
Protecting Data on Employee 0wned PCs - Gabe Gumbs - PSW #643
Girls Who Hack and Secure Open Vote - Bianca Lewis - PSW #643
RSAC Micro Interviews - ExtraHop and Bandura - Corey Bodzin, Todd Weller - ESW #175
Drink all the booze, log all the things. - Corey Thuen - ESW #175
Neustar, Fortinet, WatchGuard, Panda Security - ESW #175
Categorization of Information Security - BSW #165
Where do you Stand? Part 2 - Winn Schwartau - SCW #20
Where do you Stand? - Winn Schwartau - SCW #20
CISOs, CVE, DevOps, Gandalf - ASW #99
CISOs ready to move, How CISOs manage stress, and more! - BSW #165
Guy Podjarny, Snyk - Guy Podjarny - ASW #99
Tomcat, AWS Malware, Hacker Movies - PSW #642
Mark Cooper, PKI Solutions - Mark Cooper - PSW #642
Active Directory, Azure and Windows Security - Sean Metcalf - PSW #642
RSAC Micro Interview - Plextrac & Gravwell - Corey Thuen, Daniel DeCloss - ESW #174
RSAC Micro Interview - Elastic & Rapid7 - Mike Nichols, Tod Beardsley - ESW #174
Enterprise News - ESW #174
Compliance News - SCW #19
Reflections On RSAC - SCW #19
InfoSec World Workshop: DevSecOps and Cultural Transformation - Dan Petit - ASW #98
Ghostcat, Apache, Networks, Starliner - ASW #98
Cool Things We Found At RSAC 2020 - PSW #641
Protect Ya Data - Gabe Gumbs - PSW #641
Tales From The Crypt...Analyst - Jeff Man - PSW #641
Shadow Risk Elimination - Rob Gurzeev - BSW #164
Jinan Budge, Forrester - CISO Leadership, Culture, and the Evolving Role - Jinan Budge - BSW #164
Application News - RSA Conference News and Activities - ASW #97
Chris Eng Interview - What's New with Veracode - Chris Eng - ASW #97
Tesla Sensors, Israeli Soldiers Phished, Machine Learning - PSW #640
Kubernetes/Container Security - Ian Coldwater - PSW #640
ExtraHop Customer Interview - Ben Budge, Lyle Beck - ESW #173
Unifying SIEM And Endpoint Security - PSW #640
IBM announces RSA Conference withdrawal, Dell Offloads RSA, 12 hottest new cybersecurity startups at RSA 2020 - ESW #173
Red Lion is running the CTF at Infosec World 2020 - ESW #173
SweynTooth, OWASP, CRXcavator, DevSecOps - ASW #96
Zero to Sixty: Making Security Programmatic and Cultural - David Sherry, Tara Schaufler - BSW #163
Integrated Risk Management is the New GRC - Part 2 - Jeff Recor - SCW #18
Integrated Risk Management is the New GRC - Part 1 - Jeff Recor - SCW #18
Companies Can't Sustain Privacy, Old School Paper Planner, Attracting Top Talent - BSW #163
Lessons Learned From The DevSecOps Trenches - Doug DePerry - ASW #96
Docker, 42 Vulnerabilities, Backdoors, Spying on 100+ Foreign Govs. - PSW #639
The Unprotected Attack Surface of the Enterprise - John Loucaides - PSW #639
Living in Blue Team Land and Skicon - O'Shea Bowens - PSW #639
RSA NetWitness, MDR+, CASB+, ZeroFox, Elastic Stack, Tufin SecureCloud - ESW #172
Secure Cloud Workloads & Reduce Friction With ExtraHop - Jeff Deininger - ESW #172
Building a Great Culture, Excelling at Failure, and Leadership Book Suggestions - BSW #162
Endpoint Security, Facebook Lawsuit, Hanna Andersson/Salesforce Breach - SCW #17
Cyber Safety & Security in K-12 Schools - David Waugh - ESW #172
WhatsApp Flaw, Dropbox Bug Bounty Program, Investigating Web Shell Attacks - ASW #95
The Critical Role of Basic Cyber Hygiene - Mike Lloyd - BSW #162
The Spirit of the Law - Risk-Based Security - SCW #17
Mitigating at Design Time - Shaun Lamb - ASW #95
Security News - PSW #638
Security Orchestration Is Not About Tools - Wilson Bautista - ESW #171
Adventures In AWS Computing - PSW #638
The Rise of the Cyber Industrial Complex - Malcolm Harkins - ESW #171
BADASS Army - The Fight Against Revenge Porn - Katelyn Bowden - PSW #638
The Big Lie - Part 2 - SCW #16
Threat Detection, Risk Analytics, Threat Intelligence, Vulnerability Management - ESW #171
Kobe's Quotes To Live and Other Leadership News - BSW #161
The Big Lie - Part 1 - Chris Roberts - SCW #16
Network Communications in the World of IoT - David Starobinski - BSW #161
Scaling an AppSec Program - ASW #94
Xbox Bounty Program, Magento Patch, RCE in OpenSMTPD - ASW #94
Wawa Breach, Citrix ADC, Magecart Hackers, Ragnarok Ransomware - PSW #637
Stopping Python Backdoor Attacks - Peter Smith - PSW #637
The Unicorn Project and The Five Ideals - Gene Kim - PSW #637
Cybereason, Swimlane, Citrix Scanner - ESW #170
Trust, Community, Competitive Advantage, Employee Appreciation - BSW #160
Cyber Insurance, Ransomware, and More Cowbell - SCW #15
Edward Snowden and the Insider Threat - Steven Bay - ESW #170
Migrating Legacy Apps to the Cloud Pt. 1 - ESW #170
Pwn2Own In Miami, Cloud Vuln., Deconstructing Web Cache Deception Attacks - ASW #93
CISO Challenges in a Changing World - Michael Figueroa - BSW #160
Cyber Insurance - SCW #15
Dynamically Protecting Mobile Applications With RASP - John Butler - ASW #93
Tomatoes, Jeff Bezo, Vuln. In AMD ATI Radeon, 'The Rise of Skywalker' - PSW #636
Electronic Frontier Foundation (EFF), Godwin's Law, Freedom of Speech - Mike Godwin - PSW #636
Compelling People to Care About Security - Robert Siciliano - ESW #169
Dug Song - Engineer to Entrepreneur - Dug Song - PSW #636
SAP Vulnerabilities - Alex Horan, Juan Pablo Perez Etchegoyen - ESW #169
IE Zero-Day, Flashpoint, Malware Sandboxes - ESW #169
The State of the Financial Markets - Chase Robertson - BSW #159
The Role of Compliance in the Federal Gov. - How Security Works - Trevor Bryant - SCW #14
Security Money - BSW #159
The Role of Compliance in the Federal Gov. - How Compliance Works - Trevor Bryant - SCW #14
Crypto Bugs, IoT Planes and Application Inspectors, Oh My! - ASW #92
Protecting Data in Apps and Protecting Apps from Data - ASW #92
CVE-2020-0601, Netscaler RCE, npm - PSW #635
VISA Security Alerts - What We Can Learn & What We Can Do - Ward Cobleigh - ESW #168
Hacking IoT Devices - Jeff Spielberg, Ryan Speers - PSW #635
What Does It Mean To Be A Hacker? - PSW #635
Outdated Defense Approaches - Mark Orlando - ESW #168
Leadership Articles - BSW #158
Security and Compliance News - SCW #13
Tenable, VMRay, Tinfoil - ESW #168
Application News - ASW #91
Startup Security - It's Everyone's Business - Al Ghous - BSW #158
The Multiple Personalities In Compliance & Audit Engagements - Ben Rothke - SCW #13
The Evolution of DevSecOps and AppSec Trends in 2020 - Hillel Solow - ASW #91
Security News: January 9, 2020 - PSW #634
The Keys to Your Kingdom: Protecting Data in Hybrid and Multiple Public Clouds - Ambuj Kumar - PSW #634
Improve Pen Testing Outcomes With Purple Teaming - PSW #634
RSA Conference 2020 - Britta Glade, Linda Gray Martin - ESW #167
Leadership Articles - BSW #157
Quantifiable Risk Metrics - Bringing Value to Your Security Program Part 2 - Ian Amit - SCW #12
Docker Container Security - Vulnerable Upon Inception - ESW #167
Enterprise News - ESW #167
Application News - ASW #90
The Best and Worst of 2019 - BSW #157
Quantifiable Risk Metrics - Bringing Value to Your Security Program Part 1 - Ian Amit - SCW #12
Privacy by Design - ASW #90
Security News: January 2, 2020 - PSW #633
Diplomacy, Norms and Deterrence in Cyberspace - Chris Painter - PSW #633
Who is Going to Protect the Brave New Virtual Worlds and HOW? - Kavya Pearlman - PSW #633
Security History - Lessons from the past - PSW #632
Security vs. Compliance - PSW #632
Holiday Hack Challenge - PSW #631
The State of Penetration Testing - PSW #631
DevOps and Securing Applications - PSW #632
Blue Team Tactics and Techniques - PSW #631
Risk-Based Vuln. Mgmt/Threat & Vuln. Mgmt - Jason Rolleston, Michael Roytman - ESW #166
Unify DevOps and SecOps - ESW #166
The Joys Of Scoping pt. 2 - Steve Levinson - SCW #11
Enterprise News - ESW #166
Leadership Articles - BSW #156
The Joys Of Scoping - Steve Levinson - SCW #11
Securing the OT - Martin Bally - BSW #156
Binary Planting, GitLab, and DevOps Pipelines - ASW #89
API Security - Dave Ferguson - ASW #89
Risks, Ransomware, Data Leaks, Oh My! - PSW #630
Improving Security Requires Reducing Complexity - Jamie Butler - ESW #165
Backdoors & Breaches - The Card Game - PSW #630
Measuring And Maturing Security Operations Maturity - James Carder - ESW #165
Runtime Protection for Containers - Jorge Salamero - PSW #630
Equifax, Data Security, & A Compliance Carol - SCW #10
Booz Allen, Barracuda, & Accenture - ESW #165
Orienting Younger Children to Cyber and Tech - Laura Jones - SCW #10
Leadership Articles - BSW #155
The World Runs On Open-Source, But Who's Paying For Gas? - ASW #88
Software Bill of Materials (SBOM) - Allan Friedman - ASW #88
Defecting Chinese, IoT Smartwatch, and Malicious SDKs - PSW #629
Open Source Intelligence (OSINT) in Cyber - PSW #629
Untangle's Upcoming SD-WAN Router release - Heather Paunet - ESW #164
Outlook on Phishing in 2020 - Eric Brown - PSW #629
Web Security Program and A Realistic Approach for Enterprises - Ferruh Mavituna - ESW #164
Why You Should Be Sending More Video Emails - BSW #154
Hong Kong, Sentara Hospitals, & Global Cops - SCW #9
NSS Labs, CloudKnox, & Kratikal - ESW #164
Integrated Risk Management for CEOs - Mathieu Gorge - SCW #9
Facebook, Twitter, & Firefox - ASW #87
Bringing NetOps Into The Threat Hunt - Ward Cobleigh - BSW #154
Bot Management - Sandy Carielli - ASW #87
Patch Management - Brendan O'Connor - ESW #163
Cloudflare, Qulays, and Palo Alto - ESW #163
IoT Crusher - Ken Belva - ESW #163
Discussion and Q&A - Jim Nitterauer, Russell Mosley - SCW #8
Security & Compliance at Small and Medium Sized Businesses - Jim Nitterauer, Russell Mosley - SCW #8
Elastic Security Update and Organizational Cybersecurity - Nate Fick - BSW #153
Maersk, Digital Detox, and The Tech Job Market - BSW #153
Development Decisions Affect The Security Of Any Application - Tim Mackey - ASW #86
The Marvel Universe - PSW #628
Application News - ASW #86
Coalfire Incident & DerbyCon Communities - PSW #628
The Next Generation of SOCs - Peter Liebert - PSW #628
Kubernetes and Project Falco - Jorge Salamero - ESW #162
Kubernetes, CyberCube, and Illusive - ESW #162
Cloud, Containers, and Microservices - Reuven Harrison - ESW #162
Mirantis' Docker, CISOs, & End of Life Dates - ASW #85
Challenges in the Browser & Securing Web Sessions - Scott Petry - BSW #152
The Highest Performing Teams Have These 4 Mindsets - BSW #152
CCPA, GDPR, Uber, PCI, and You Can't Find Me! - SCW #7
2019 Verizon Payment Security Report - SCW #7
Sysdig Secure 3.0 - Pawan Shankar - ASW #85
Security and Compliance News - SCW #6
Building A Security and Compliance Program - SCW #6
Humans vs. Machines - PSW #627
Simulating Ransomware Attacks with SCYTHE - PSW #627
The Ethics of Surveillance - Dr. Kevin Harris - PSW #627
Threat Detection: The Network Scavenger Hunt - Ward Cobleigh - ESW #161
Bridging Compliance pt 2 - Ron Ross - SCW #4
Zero Trust Architecture - Baber Amin - ESW #161
STEALTHbits, Tenable, Aqua Security - ESW #161
Security and Compliance News - SCW #5
Bridging Compliance pt 1 - Ron Ross - SCW #4
Application News - ASW #84
Leadership Articles - BSW #151
Security Testing - ASW #84
2019 NACD Blue Ribbon Commission Initiative - SCW #3
Developing an Effective AppSec Security Program - Brendon Macaraeg - BSW #151
Artificial Intelligence and Compliance, Part 1 - SCW #5
Security and Compliance News - SCW #3
Security News: November 7, 2019 - PSW #626
Arcade Hustle - PSW #626
Quantum Computing and IT - Tim Callan - ESW #160
Stopping Linux Malware - Peter Smith - PSW #626
Enterprise Deception - Adrian Sanabria - ESW #160
Leadership Articles - BSW #150
Enterprise News - ESW #160
Security and Compliance News - SCW #2
PCI: State of the Union - SCW #1
Application News - ASW #83
What is Hardsec? - Henry Harrison - BSW #150
Cybersecurity Talent Initiative - Alexander Niejelow - SCW #2
Teaching Security In Software Development - Daniel Lowrie, Justin Dennison - ASW #83
Security and Compliance News - SCW #1
Security Weekly RoundTable, Cyberwire - PSW #625
Format String Vulnerabilities - PSW #625
IT/OT Convergence In The Power/Utilities Space - Carter Manucy - ESW #159
A New Prescription for Security - Philippe Courtot, Sumedh Thakar - PSW #625
Vulnerability Management Evaluation Guide - ESW #159
Leadership Articles - BSW #149
Enterprise News - ESW #159
Application News - ASW #82
Email Security - Kevin O'Brien - BSW #149
Bug Bounties, Pentesting, & Scanners - ASW #82
Endgame To Elastic Endpoint Security - Mark Dufresne - PSW #624
Pentesters and Phishing- Kevin O'Brien, GreatHorn - ESW #158
Security News: October 24, 2019 - PSW #624
Insider Threat (Whistleblowers) - Erich Anderson, ObserveIT - ESW #158
Mental Health Hackers & Veterans - Tom Williams - PSW #624
Enterprise News - ESW #158
Application News - ASW #81
CISO Role and Experience - Merlin Namuth - BSW #148
Leadership Articles - BSW #148
Cybercrime, Threat Hunting, & APT - PSW #623
Doug Coburn, Signal Sciences - Doug Coburn - ASW #81
Security News: October 17, 2019 - PSW #623
Hacker Halted Interviews - ESW #157
What Makes A Good Pentest Report? - Daniel DeCloss - PSW #623
Tactics For Understanding Security Vendor Products - ESW #157
Enterprise News - ESW #157
Security Money - BSW #147
Survey Results - BSW #147
Application News - ASW #80
Francois Lascelles, Ping Identity - - Francois Lascelles - ASW #80
Leadership Articles - BSW #146
Application News - ASW #79
Ty Sbano, Sisense - Ty Sbano - BSW #146
Cloud Security for Small Teams - ASW #79
Security News: October 3, 2019 - PSW #622
Data Privacy and The Journey to Code - Stewart Room - PSW #622
Security & Compliance Introduction - PSW #622
Cyber Security Threats - Paul Claxton - ESW #156
Leadership Articles - BSW #145
Supply Chain Security In The IoT Era - Matt Wyckhouse - ESW #156
Enterprise News - ESW #156
Application News - ASW #78
SOC Visibility and SIEM Tools - Jeff Costlow - BSW #145
Information Disclosure Vulnerabilities - Ryan Kelso - ASW #78
Security News: September 26, 2019 - PSW #621
Perry Carpenter and Chris Edwards - PSW #621
Billy Boatright, Edward Miro, & Jayson Street - PSW #621
Building An Engineering Team With Company Growth - Tony Meehan - ESW #155
qqqqqqqqqqqqqqqqqqqqqq - PSW #22222
Path To Threat Hunting Through Great Network Data, Brian Dye - ESW #155
Big Tech VS Big Tobacco - Brian Lamoureux - BSW #144
Enterprise News - ESW #155
Leadership Articles - BSW #144
Application News - ASW #77
Training For Developers - Nicolas Valcarcel - ASW #77
iOS, Equifax Is Back, & phpMyAdmin CSRF Zero-Day - PSW #620
Audio Security - PSW #620
Attacking AWS: Elastic Map to Reduce Clusters - ESW #154
Anything Red/Purple Teaming - Jason Lang - PSW #620
Enterprise News - ESW #154
Cloud Security - ESW #154
Investigating the Insider Threat - Chris Bush - BSW #143
Bugs, Breaches, & More - ASW #76
Leadership Articles - BSW #143
Investigating the Insider Threat - Chris Bush - BSW #143
OWASP Application Security Verification Standard - ASW #76
SE Village Interviews: Chris Kirsch & Micah Zenko - PSW #619
Capital One Breach, Edgewise - Peter Smith - PSW #619
Black Hat Interviews: DenimGroup, SCYTHE, & Eclypsium - ESW #153
Security News: September 12, 2019 - PSW #619
Elements of an Effective Penetration Testing Program - Steve Laubenstein - ESW #153
Mobile App Security At Scale: Brian Reed, NowSecure - Brian Reed - BSW #142
Enterprise News - ESW #153
Bugs, Breaches, & More - ASW #75
David X Martin, DavidXMartin, LLC - David X Martin - BSW #142
Tools in the DevOps Pipeline: Ty Sbano, Sisense - ASW #75
Black Hat Interviews: Attivo Networks and Infoblox - ESW #152
Black Hat Interviews: NSS Labs and SaltStack - ESW #152
Enterprise News - ESW #152
SE Village 2020 and Innocent Lives Foundation - Christopher Hadnagy - PSW #618
Analyzing Custom Log Sources - Corey Thuen - PSW #618
Respond Software, Morphisec, and Sophos - ESW #151
AttackIQ, BlueHexagon, and Coalfire - ESW #151
Security News: August 28, 2019 - PSW #618
Imperva, Cofense, & VMware - ESW #151
Black Hat Interviews - WhiteSource and Venafi - ASW #74
Managing 3rd Party Risk, SecureLink - Tony Howlett - BSW #141
Container Security With Sysdig Secure 2.4 - Pawan Shankar - ASW #74
Leadership Articles - BSW #141
Recorded Future and Virsec - PSW #617
Enterprise News - ESW #150
Critical Patches, Automox - Richard Melick - PSW #617
Deobfuscating JavaScript to Investigate Phishing Domains - PSW #617
VMRay and Blue Voyant - ESW #150
Coresecurity, Endgame, & Edgewise - ESW #150
Bugs, Breaches, and More! - ASW #73
Jessica Johnson & Amber Pedroncelli, Hacker Halted - BSW #140
Leadership Articles - BSW #140
Ping Identity, Cequence, & NowSecure - ASW #73
DEF CON 27 Interviews - PSW #616
Security News: August 15, 2019 - PSW #616
Blue Team To Red Team, Offensive Security - Tony Punturiero - PSW #616
Black Hat 2019 Interviews - ESW #149
Brandon Edwards, Capsule8 - ESW #148
Joe Gillespie, Netsparker - ESW #148
Enterprise News - ESW #149
Leadership Articles - BSW - News #139
Joshua Douglas, Mimecast - PSW #615
Network Detection & Response, ExtraHop - John Smith - ESW - Interview #148
The Sec & Ops Challenge, Mehul Revankar - ESW #149
Application News - ASW - News #72
Vanessa Van Edwards, Science of People - Vanessa Van Edwards - BSW - Interview #139
Security Do's and Don'ts - PSW #615
Gabriel Gumbs, Spirion - PSW #615
Hacker Summer Camp Round-UP - ASW - Topic #72
Security News - PSW #614
Signal Sciences Kubernetes, Doug Coburn - PSW #614
LogRhythm To The Cloud, Sam Straka - PSW #614
News - ESW #147
Threat Hunting - ESW #147
Evaluating Vendors - ESW #147
Container Security Today - Application Security Weekly #71
Leadership Articles - Business Security Weekly #138
CISO COMPASS, Todd Fitzgerald - Business Security Weekly #138
Application News - Application Security Weekly #71
Security News - Paul's Security Weekly #613
Integrity Through Prevention, WEforum - Paul's Security Weekly #613
DDoS, Murray Goldschmidt - Paul's Security Weekly #613
Michael Aiello, Google - Enterprise Security Weekly #146
Enterprise News - Enterprise Security Weekly #146
Leadership Articles - Business Security Weekly #137
Luis Giraldo, Kaseya - Enterprise Security Weekly #146
Application News - Application Security Weekly #70
Securing Identity With Conditional Access - Business Security Weekly #137
Secure App Deployment With Unikernels - Application Security Weekly #70
Security News: July 18, 2019 - Paul's Security Weekly #612
Topic Segment: Security Roundtable - Paul's Security Weekly #612
IT Industry, Jared Haggerty - Enterprise Security Weekly #145
MITRE ATT&CK: Katie Nickels, MITRE - Paul's Security Weekly #612
Identity Authentication, David Harding - Enterprise Security Weekly #145
Eric McAlpine, Momentum Cyber - Business Security Weekly #136
Security Money: July 15, 2019 - Business Security Weekly #136
Enterprise News: July 17, 2019 - Enterprise Security Weekly #145
Securing Multi-Cloud Environments - Application Security Weekly #69
Application News - Application Security Weekly #69
Porn Pirating, Zoom RCE, & Huawei - Paul's Security Weekly #611
Biometric Authentication, Jumio - Paul's Security Weekly #611
Cloud-Based Training Solutions - Enterprise Security Weekly #144
Blue/Purple Teaming (defense) - Paul's Security Weekly #611
PinID, Infoblox, & BeyondTrust - Enterprise Security Weekly #144
Threat Hunting - Enterprise Security Weekly #144
Application News - Application Security Weekly #68
Science, Ben Franklin, & Lessons - Business Security Weekly #135
Cloud Native - Application Security Weekly #68
ANSI's Subscription-Based Model - Business Security Weekly #135
Mastercard, Gen Z, & Leadership - Business Security Weekly #134
Security Training for Devs - Application Security Weekly #67
Security Challenges in the Global Value Chain - Business Security Weekly #134
GKE, AWS, & S3 Buckets - Application Security Weekly #67
Security News - Paul's Security Weekly #610
CySA+ & PenTest+ Certs, ITProTV - Paul's Security Weekly #610
Tools to Hack Your Career, CyberSecJobs - Paul's Security Weekly #610
Enterprise News - Enterprise Security Weekly #143
Email Data Exfiltration, ObserveIT - Enterprise Security Weekly #143
Don't Ignore APIs - Application Security Weekly #66
Leadership Articles - Business Security Weekly #133
RSAC Asia Pacific & Japan 2019 - Enterprise Security Weekly #143
Osquery, Netflix, & Mozilla - Application Security Weekly #66
Third Party Vendor Management - Business Security Weekly #133
Security News - Paul's Security Weekly #609
Purple Teaming, SCYTHE - Paul's Security Weekly #609
AttackDefense Labs Platform - Paul's Security Weekly #609
Inheriting Someone Else's Code - Enterprise Security Weekly #142
Enterprise News - Enterprise Security Weekly #142
Challenges of Healthcare Security - Enterprise Security Weekly #142
3 Shocking Ways To Show Up - Business Security Weekly #132
Shannon Lietz, Intuit - Application Security Weekly #65
Azure & Cloud Migration For CISOs - Business Security Weekly #132
Grim, Vim, & Neovim - Paul's Security Weekly #608
Bugs, Breaches, and More! - Application Security Weekly #65
Sysmon DNS Logging, Gravwell - Paul's Security Weekly #608
Seed Rounds, Equity Rounds, Debt Rounds - Enterprise Security Weekly #141
1 Click Microsegmentation, Edgewise - Paul's Security Weekly #608
Container Services In Azure, ITProTV - Enterprise Security Weekly #141
Leadership Articles - Business Security Weekly #131
Rapid7, Ixia, & CNA - Enterprise Security Weekly #141
Privacy: One Year After GDPR - Business Security Weekly #131
MacOS Catalina, OpenShift, & Pink Floyd - Application Security Weekly #64
DevSecOps & Software Supply Chains, Microsoft - Application Security Weekly #64
SalesForce, iPhones, & Old Androids - Paul's Security Weekly #607
Mental Health & Wellness - Paul's Security Weekly #607
Imperva, Securonix, & ThreatConnect - Enterprise Security Weekly #140
Detection & Response, Endgame - Paul's Security Weekly #607
Importance Of Remediation, Viavi - Enterprise Security Weekly #140
The Effectiveness Of Your SOC, LogRhythm - Business Security Weekly #130
Defending Against Microsoft Vulnerabilities - Enterprise Security Weekly #140
Cybersecurity Workforce Gap - Business Security Weekly #130
Application News - Application Security Weekly #63
Major Identities & Micro Services - Application Security Weekly #63
Gatekeeper, WannaCry, and BlueKeep- Paul's Security Weekly #606
Automate IT, SaltStack - Paul's Security Weekly #606
Network-Wide Security Policy, Tufin - Enterprise Security Weekly #139
BlueKeep Vulnerability, Robert Graham - Paul's Security Weekly #606
Digital Hygiene & The School System - Paul's Security Weekly #606
Verodin, Palo Alto, & Okta - Enterprise Security Weekly #139
Understanding & Quantifying Cyber Risk, RiskLens - Enterprise Security Weekly #139
Google, Huawei, & Windows 0-Day - Paul's Security Weekly #605
Does DNS Fit Into A Secure Architecture - Paul's Security Weekly #605
KnowBE4, Autho0, & Guardicore - Enterprise Security Weekly #138
Candy Alexander, ISSA - Enterprise Security Weekly #138
Matthew McMahon, Salve Regina University - Paul's Security Weekly #605
The Pillars Of The Enterprise, Gravwell - Enterprise Security Weekly #138
Application News - Application Security Weekly #62
Leadership Articles - Business Security Weekly #129
Cody Wood, Signal Sciences - Application Security Weekly #62
Discovering Applications, Netsparker - Business Security Weekly #129
Singapore, Cisco, and Israeli Spyware - Paul's Security Weekly #604
Fixing Identity and Access Management - Paul's Security Weekly #604
Julian Zottl, Raytheon - Paul's Security Weekly #604
Centralization of Web Security, Netsparker - Enterprise Security Weekly #137
SysDig, In-Q-Tel, NextGen, & SIEM - Enterprise Security Weekly #137
Leadership Articles - Business Security Weekly #128
Firewalls, Paul Asadoorian - Enterprise Security Weekly #137
Application News - Application Security Weekly #61
Jon Fredrickson, BCBSRI - Business Security Weekly #128
Securing Software Supply Chains - Application Security Weekly #61
Security News - Paul's Security Weekly #603
Chris Sanders, AND & RTF - Paul's Security Weekly #603
Security Industry Briefings Update - Enterprise Security Weekly #136
Enterprise News - Enterprise Security Weekly #136
From IT to OT Security, Lesley Carhart - Paul's Security Weekly #603
Continuous Controls Monitoring, Panaseer - Enterprise Security Weekly #136
Application News - Application Security Weekly #60
Leadership Articles - Business Security Weekly #127
Sven Morgenroth, Netsparker - Application Security Weekly #60
Global Cyber Innovation Summit Recap - Business Security Weekly #127
Philip Niedermair, National Cyber Group - Paul's Security Weekly #602
Joshua Abraham, Praetorian - Paul's Security Weekly #602
ThreatConnect, HALO, & SolarWinds - Enterprise Security Weekly #135
Nokia 9, Julian Assange, & Tenable - Paul's Security Weekly #602
Joshua Abraham, Praetorian - Enterprise Security Weekly #135
Leadership Articles - Business Security Weekly #126
Patch Management Struggles, Automox - Enterprise Security Weekly #135
Security Awareness, Education, & Training - Business Security Weekly #126
Application News - Application Security Weekly #59
Larry Maccherone, Comcast - Application Security Weekly #59
Fujifilm, Facebook, & Black Holes - Paul's Security Weekly #601
SaaS Product, Cloudneeti - Paul's Security Weekly #601
Dave Kennedy, Binary Defense - Enterprise Security Weekly #134
The Canary Tool, Thinkst - Paul's Security Weekly #601
ShieldX, Tenable, & Capsule8 - Enterprise Security Weekly #134
Francis Dinha, OpenVPN - Enterprise Security Weekly #134
Leadership Articles - Business Security Weekly #125
Adam Fletcher, Blackstone - Business Security Weekly #125
Application News - Application Security Weekly #58
Thomas Hatch, SaltStack - Application Security Weekly #58
Patrick Tierney, Endgame - Enterprise Security Weekly #133
Tufin, OpenVPN, & NYSE IPO - Enterprise Security Weekly #133
SOC Intel: Wire, Logs, & Endpoint - Enterprise Security Weekly #133
How To Think Like An Investor, Will Lin - Business Security Weekly #124
Application News - Application Security Weekly #57
Security Money - Business Security Weekly #124
Containers and Kubernetes - Application Security Weekly #57
Bitcoin, WikiLeaks, & Julian Assange - Paul's Security Weekly #600
Merissa & Jessica, WSC - Paul's Security Weekly #600
Gabriel Gumbs, Spirion - Paul's Security Weekly #600
Coalfire ASV Scanning - Enterprise Security Weekly #132
Vendor Briefing - Enterprise Security Weekly #132
Cloud Security, Bitglass, & Funding - Enterprise Security Weekly #132
Calendars, Work-Life, & Balance - Business Security Weekly #123
Docker, ARM, & "Selfie" - Application Security Weekly #56
Falco, Sysdig - Application Security Weekly #56
Post-Perimeter Security , Lookout - Business Security Weekly #123
OceanLotus, Russia, & Google - Paul's Security Weekly #599
Threat Hunting & AI Hunter, ACM - Paul's Security Weekly #599
Illusive Networks - Enterprise Security Weekly #131
Mary Beth Borgwing, Cyber Social Club - Paul's Security Weekly #599
Branden Williams, Union Bank - Enterprise Security Weekly #131
Leadership Articles - Business Security Weekly #122
Bugs, Breaches, and More! - Application Security Weekly #55
Security ROI, Endgame - Business Security Weekly #122
Android Q, Sirens, & Korean Hotels - Paul's Security Weekly #598
Iris, DomainTools - Paul's Security Weekly #598
Marcus Carey, Tribe of Hackers - Paul's Security Weekly #598
NexDefense, 42Crunch, & ExtraHop - Enterprise Security Weekly #130
Endgame, Virsec, & SCYTHE - Enterprise Security Weekly #130
DARPA, Yelp, & FBI - Application Security Weekly #54
Leadership Articles - Business Security Weekly #121
Jamie Duncan, Red Hat - Application Security Weekly #54
Intersection of Development & Security - Business Security Weekly #121
Malware Sandboxing, VMRay - Paul's Security Weekly #597
Tesla, YouTube, & Sexy Selfies - Paul's Security Weekly #597
RSAC 2019 Recap - Enterprise Security Weekly #129
Evolution of Zero Trust, Edgewise - Paul's Security Weekly #597
Continuous Cloud Assurance, Cloudneeti - Enterprise Security Weekly #129
RSAC 2019 Interviews Enterprise Security Weekly #129
Application News - Application Security Weekly #53
Leadership Articles - Business Security Weekly #120
RSA 2019 Recap - Application Security Weekly #53
Ben Carr, Aristocrat - Business Security Weekly #120
YouTube Censorship & Vulnerabilities- Paul's Security Weekly #596
David Marble, OSHEAN - Paul's Security Weekly #596
PCI, Capsule8, & Polaris - Enterprise Security Weekly #128
Threat Intelligence, Recorded Future - Paul's Security Weekly #596
Funding and M&A News - Enterprise Security Weekly #128
Matt Springfield, 12Feet, Inc. - Application Security Weekly #52
Bruce Sussman, SecureWorld - Business Security Weekly #119
Securing the Human Layer, Armorblox - Business Security Weekly #119
Bugs, Breaches, and More! - Application Security Weekly #52
Passwords, Splunk, & Nest Microphones - Paul's Security Weekly #595
Steve Brown, SecureWorld Keynote - Paul's Security Weekly #595
Product Launches and Announcements - Enterprise Security Weekly #127
SILENTRINITY Updates, BHIS - Paul's Security Weekly #595
SOAR, Cody Cornell - Enterprise Security Weekly #127
Leadership & Communication - Business Security Weekly #118
Android, Dark Web, & Development - Application Security Weekly #51
Cyber Insurance, Brendan Goodwin - Business Security Weekly #118
DEFCON, Windows 10, & Linux vs Mac - Paul's Security Weekly #594
Integrating Security into DevOps, Altran - Application Security Weekly #51
Enterprise-ish Network Security: Pt. 1 - Paul's Security Weekly #594
Harry Sverdlove, Edgewise - Paul's Security Weekly #594
The Evolution Of Vulnerability Management - Enterprise Security Weekly #126
Qualys, Lacework, & Multicloud - Enterprise Security Weekly #126
Application News - Application Security Weekly #50
Leadership Articles - Business Security Weekly #117
Basic Flow of Problem, Solution, and Value - Application Security Weekly #50
Connie Mastovich, InfoSec World 2019 - Paul's Security Weekly #593
Ed Moyle, InfoSec World 2019 - Business Security Weekly #117
5G, Zero-Days, & National Museum - Paul's Security Weekly #593
DetectionLab, Chris Long - Paul's Security Weekly #593
RSA, DigiCert, and Signal Sciences - Enterprise Security Weekly #125
Randall Trzeciak, CERT - Enterprise Security Weekly #125
Application News - Application Security Weekly #49
Privacy & Software Development - Application Security Weekly #49
Sandra Toms & Britta Glade, RSA Conference - Business Security Weekly #116
Dave Kennedy, TrustedSec - Business Security Weekly #116
The Future Of Security - Paul's Security Weekly #592
Web App Scanning w/ Authentication, Acunetix - Paul's Security Weekly #592
Yubico, Symantec, & Sophos - Enterprise Security Weekly #124
Leadership Articles - Business Security Weekly #115
Japan, Imperva, & DDoS - Paul's Security Weekly #592
Andrew Peterson, Signal Sciences - Enterprise Security Weekly #124
Advanced Bot Protection, Cequence Security - Business Security Weekly #115
Jing Xie, Venafi - Application Security Weekly #48
Bugs, Breaches, and More! - Application Security Weekly #48
Android, Nest, & Linux Malware - Paul's Security Weekly #591
Topics & Questions - Paul's Security Weekly #591
Chris Morales, Vectra - Paul's Security Weekly #591
Ping, API, & eSentire - Enterprise Security Weekly #123
Open-Source & Free Collaboration Security Tools - Enterprise Security Weekly #123
The Human Element of Application Security - Application Security Weekly #47
Leadership Articles - Business Security Weekly #114
Zane Lackey, Signal Sciences - Business Security Weekly #114
Bugs, Breaches, and More - Application Security Weekly #47
DerbyCon, Flaws, & Azure DevOps - Paul's Security Weekly #590
PowerShell for Fun and Profit - Paul's Security Weekly #590
Dr. Eric Cole, Secure Anchor Consulting - Paul's Security Weekly #590
Security Product Launches, and Announcements - Enterprise Security Weekly #122
Security Mergers, Acquisitions, and Partnerships - Enterprise Security Weekly #122
CRLF, NASA, & GitHub - Application Security Weekly #46
Leadership Articles - Business Security Weekly #113
Rey Bango, Microsoft - Application Security Weekly #46
Security Money - Business Security Weekly #113
Tim Callahan, Aflac - Business Security Weekly #112
Hyatt, El Chapo's IT, and Amazon Key - Paul's Security Weekly #589
pktrecon, Kory Findley - Paul's Security Weekly #589
Bryson Bort, SCYTHE- Paul's Security Weekly #589
Neustar, BlackBerry, and ShieldSquare - Enterprise Security Weekly #121
Cyber Deception Today: Tony Cole - Enterprise Security Weekly #121
Ken Johnson, GitHub - Application Security Weekly #45
WordPress, Silicon Valley, and Hijacking - Application Security Weekly #45
Leadership Articles - Business Security Weekly #112
PewDiePie, DOOM Roomba, and 9/11 - Paul's Security Weekly #588
Breaches, Privacy, Compliance and More! - Paul's Security Weekly #588
Helping People In The Security Community - Paul's Security Weekly #588
Hacking the Brainstem, Mandy Logan - Paul's Security Weekly #587
What The Heck Are "Security Basics"? - Paul's Security Weekly #587
Detecting Attacker Behavior, LogRhythm - Paul's Security Weekly #587
Top Ten List for 2018 - Enterprise Security Weekly #120
Bitdefender, Symantec, & Untangle - Enterprise Security Weekly #120
Signal App, Jenkins Servers, & WordPress - Application Security Weekly #44
Leadership Articles - Business Security Weekly #111
Harry Sverdlove, Edgewise - Application Security Weekly #44
Bob Ackerman, AllegisCyber - Business Security Weekly #111
Taylor Swift, KringleCon, & 3D Head - Paul's Security Weekly #586
Ed Skoudis, Counter Hack Challenge - Paul's Security Weekly #586
Minerva, Rapid7, & Venafi - Enterprise Security Weekly #119
Don Murdoch, Regent University Cyber Range - Paul's Security Weekly #586
John Bradshaw, Acalvio - Enterprise Security Weekly #119
Kubernetes, Firefox, & WordPress - Application Security Weekly #43
Chris Elgee, Counter Hack Challenge - Application Security Weekly #43
Leadership & Communication - Business Security Weekly #110
Brian Carey, Rapid7 - Business Security Weekly #110
Marriott Breach, Lame Printer Hack, and Docker - Paul's Security Weekly #585
Marcello Salvati, BHIS - Paul's Security Weekly #585
Ixia, Yubico, Fortinet, and ZeroStack - Enterprise Security Weekly #118
Lenny Zeltser, Minerva Labs - Paul's Security Weekly #585
Mike Nichols, Endgame - Enterprise Security Weekly #118
NSA Malware, AFL Fuzzer, & Firecracker - Application Security Weekly #42
Leadership Articles - Business Security Weekly #109
Aleksei Tiurin, Acunetix - Application Security Weekly #42
Jay Prassl, Automox - Business Security Weekly #109
"Dunkin" Donuts, Microsoft, & Marijuana - Paul's Security Weekly #584
Wietse Venema & Dan Farmer, SATAN - Paul's Security Weekly #584
Sven Morgenroth, Netsparker - Paul's Security Weekly #584
EdgeEngine, Cloud-Native, and Orkus - Enterprise Security Weekly #117
Drupalgeddon, USPS, & JavaScript - Application Security Weekly #41
Jeremy Winter, Microsoft - Enterprise Security Weekly #117
Leadership Articles - Business Security Weekly #108
Brent Dukes - Application Security Weekly #41
Richard Seiersen, President of M-Cubed - Business Security Weekly #108
Mimecast, Endpoint Security, & Tufin - Enterprise Security Weekly #16
Rick Fernandez, LogRhythm - Enterprise Security Weekly #16
Interviews: Venafi, Irdeto, and HP - Enterprise Security Weekly #16
Goals, Leadership, & Don't Set Limits - Business Security Weekly #107
Michael Pleasant, Open Security - Business Security Weekly #107
Instagram, Kraken, GitMiner - Application Security Weekly #40
John Kinsella, Layered Insight - Application Security Weekly #40
Spectre, ATMs, and Japan's Minister - Paul's Security Weekly #583
John Moran, DFLabs - Paul's Security Weekly #583
Jon Buhagiar, Sybex - Paul's Security Weekly #583
Dragos, BlackBerry, & ForeScout - Enterprise Security Weekly #115
Brian Kelly, CyberArk - Application Security Weekly #39
James Wickett, Signal Sciences - Enterprise Security Weekly #115
Dario Forte, DFLabs - Business Security Weekly #106
ColdFusion, Destroying Logs, & Tracing Meme's - Application Security Weekly #39
Leadership Articles - Business Security Weekly #106
Eyal Neemany, Javelin Networks - Paul's Security Weekly #582
Corin Imai, DomainTools - Paul's Security Weekly #582
Symantec, Veracode, & Thoma Bravo - Enterprise Security Weekly #114
Harry Sverdlove, Edgewise - Enterprise Security Weekly #114
'Stalkerware', DHCPv6 Packets , & Python - Application Security Weekly #38
Leadership Articles - Business Security Weekly #105
Daniel Cuthbert, Banco Santander - Application Security Weekly #38
Alex Wood, CISO - Business Security Weekly #105
Apache, Dirty Cow, & Edge - Paul's Security Weekly #582
AWS Lambda, Bleedingbit, and Cisco - Paul's Security Weekly #581
Matt Toussain, BHIS - Paul's Security Weekly #581
Aleksei Tiurin, Acunetix - Paul's Security Weekly #581
LogRhythm, SOAR, and A Huge Acquisition - Enterprise Security Weekly #113
Ian McShane, Endgame - Enterprise Security Weekly #113
Airline Hacks, MicroTik Bug, & WordPress - Application Security Weekly #37
Johnny Xmas, Kasada.io - Application Security Weekly #37
AI Fear, FDA, Tesla, and D-Link - Paul's Security Weekly #580
Yossi Sassi, Javelin Networks - Paul's Security Weekly #580
Veronica Schmitt, DFIRLABS - Paul's Security Weekly #580
Security Solutions, Acquisitions, and IPOs - Enterprise Security Weekly #112
Jonathan Sander, Snowflake - Enterprise Security Weekly #112
Cryptocurrency, Disney, and Adobe - Application Security Weekly #36
Leadership, Communication, and Innovation - Business Security Weekly #103
Bugs, Breaches, and More! - Application Security Weekly #36
Michael McKee, ObserveIT - Business Security Weekly #103
Shodan, Apache, ICS, and Controllers - Paul's Security Weekly #579
John Walsh, CyberArk - Paul's Security Weekly #579
Mark Dufresne, Endgame - Paul's Security Weekly #579
BlackBerry, Imperva, & CyberArk - Enterprise Security Weekly #111
Briefings Summary - Enterprise Security Weekly #111
Garrett Gross, Rapid7 - Application Security Weekly #35
Git Project, Google+, & Facebook - Application Security Weekly #35
Article Discussion - Business Security Weekly #102
DerbyCon, Russians, and Next Story - Paul's Security Weekly #578
Lee Neely, Lawrence Livermore National Lab - Paul's Security Weekly #578
Omer Yair, Javelin - Paul's Security Weekly #578
Mark Russinovich, Microsoft Azure - Enterprise Security Weekly #110
Splunk, White Hat, and Palo Alto - Enterprise Security Weekly #110
Mimecast, LogRhythm, & Tanium - Enterprise Security Weekly #109
Michael Gordover, ObserveIT - Enterprise Security Weekly #109
Bugs, Breaches, and More - Application Security Weekly #34
Leadership, Communication, and Innovation - Business Security Weekly #101
Landing a Job in Application Security - Application Security Weekly #34
Jason Albuquerque, Carousel Industries - Business Security Weekly #101
Business Tips and Tricks - Business Security Weekly #104
Linux Bugs, macOS Zero-Day, & Twitter Exposed - Paul's Security Weekly #577
Offensive Operating Against SysMon, Carlos Perez - Paul's Security Weekly #577
Mike Nichols, Keith McCammon, & Shawn Smith - Paul's Security Weekly #577
BeyondTrust, Rapid7, & Symantec - Enterprise Security Weekly #108
Threat & Vulnerability Management - Enterprise Security Weekly #108
Newegg, Ticketmaster, & iOS 12 - Application Security Weekly #33
Ron Gula, Gula Tech Adventures - Application Security Weekly #33
Scott King, Rapid7 Pt. 2 - Business Security Weekly #100
Scott King, Rapid7 Pt. 1 - Business Security Weekly #100
GovPayNow.com, AmazonBasics, and FBI - Paul's Security Weekly #576
Threat Hunting in the Cloud, Apollo Clark - Paul's Security Weekly #576
Mike Ahmadi, DigiCert - Paul's Security Weekly #576
Cisco, Fidelis, Crossmatch, and DigitalPersona - Enterprise Security Weekly #107
Audit Mistakes - Enterprise Security Weekly #107
Bluebox-ng, Stock Data Breaches, and CommitStrip- Application Security Weekly #32
Tracking Security Innovation - Business Security Weekly #99
April Wright, ArchitectSecurity.org - Application Security Weekly #32
Microsoft, Elon Musk, Kernel and Powershell - Paul's Security Weekly #575
Chris Brenton, ACM - Business Security Weekly #99
Bypassing PAM, Eyal Neemany - Paul's Security Weekly #575
Brian Coulson, LogRhythm - Paul's Security Weekly #575
CLEAR, Demisto, OneLogin & Netskope - Enterprise Security Weekly #106
Dave Maestas, Bandura - Enterprise Security Weekly #106
Microsoft, Equifax, MacOS, and Bug Bounties - Application Security Weekly #31
Imperva, Allstate, & Sonatype - Business Security Weekly #98
Zane Lackey, Signal Sciences - Application Security Weekly #31
Supermicro, Apache Struts, & HTTPS - Paul's Security Weekly #574
Gabriel Gumbs, STEALTHbits - Business Security Weekly #98
Beacon Analysis, Chris Brenton - Paul's Security Weekly #574
Wim Remes, Wire Security bvba - Paul's Security Weekly #574
Black Hat Dual Interview pt. 2- Enterprise Security Weekly #105
Black Hat Dual Interview pt.1- Enterprise Security Weekly #105
BitSight, SentinelOne, and McAfee - Enterprise Security Weekly #105
Texas, T-Mobile, and Jack Daniel - Paul's Security Weekly #573
No-Script Automation Tool, John Moran - Paul's Security Weekly #573
Jayson Street, SphereNY - Paul's Security Weekly #573
Minerva Labs, CrowdStrike, & VMware - Enterprise Security Weekly #104
Office 365 User Behavior Analytics - Enterprise Security Weekly #104
Fortnite, Netflix, & Black Hat - Application Security Weekly #30
Rick Holland, Digital Shadows - Enterprise Security Weekly #104
Cloudera, AlienVault, and CA - Business Security Weekly #97
The Apache Struts2 RCE Vulnerability - Application Security Weekly #30
Burp Suite 2.0, DNC, and NotPetya - Paul's Security Weekly #572
Todd Weller, Bandura Systems - Business Security Weekly #97
PHP Type Juggling Vulnerabilities, Netsparker - Paul's Security Weekly #572
Tod Beardsley, Rapid7 - Paul's Security Weekly #572
Mike Jones, DomainTools - Enterprise Security Weekly #103
DEF CON 2018: Enterprise Vendors pt. 2 - Enterprise Security Weekly #103
Matt Alderman & Paul Asadoorian, Def Con 2018 - Application Security Weekly #29
DEF CON 2018: Enterprise Vendors pt.1 - Enterprise Security Weekly #103
Matt Alderman & Paul, Def Con 2018 - Business Security Weekly #96
Tom McLaughlin, ServerlessOps - Application Security Weekly #29
Cigars and Security - Paul's Security Weekly #571
Sharon Goldberg, Commonwealth Crypto - Business Security Weekly #96
Spoofing GPS with a hackRF, Larry Pesce - Paul's Security Weekly #571
ThinkPenguin, Hacking Bodycams, & Adobe Flaws - Paul's Security Weekly #571
Attack Simulation - Enterprise Security Weekly #102
ICS - Enterprise Security Weekly #102
Al Ghous, GE Digital - Enterprise Security Weekly #102
Secure Coding Practices - Application Security Weekly #28
Alibaba Cloud Security, Comcast, and Facebook - Application Security Weekly #28
Resources, Bugs, Breaches, and Learning Tools - Application Security Weekly #27
Katie Stebbins, UMASS - Business Security Weekly #95
Galen Hunt, Microsoft - Application Security Weekly #27
Yale University, Spam's Revival, and SDR - Paul's Security Weekly #570
Eric Bednash, RackTop - Business Security Weekly #95
Larry Pesce, Getting Started with FL2k - Paul's Security Weekly #570
Joshua Abraham, Praetorian - Paul's Security Weekly #570
Oracle, FireEye, & Mimecast - Enterprise Security Weekly #101
Evaluating Security Vendors At Trade Shows - Enterprise Security Weekly #101
Spectre, OWASP, and iGoat - Application Security Weekly #26
Tenable, Imperva, & Proofpoint - Business Security Weekly #94
Jessica Rozhin, Marqueta - Application Security Weekly #26
Bluetooth Bug, Tenable, and Cosco - Paul's Security Weekly #569
Article Discussion - Business Security Weekly #94
Chris Dale, Netsecurity - Paul's Security Weekly #569
Dean Coclin, DigiCert - Paul's Security Weekly #569
Pulse, CloudHealth, and Barracuda - Enterprise Security Weekly #100
Rip & Replace Your Antivirus Software? - Enterprise Security Weekly #99
Joe Garcia, CyberArk - Application Security Weekly #25
Corey Thuen, Gravwell - Enterprise Security Weekly #100
Article Discussion - Business Security Weekly #93
Venmo, Oracle, & Linux - Application Security Weekly #25
Pen Testing, SIM Hijackers, & Mining Bitcoin - Paul's Security Weekly #568
Gary Berman, Cyberman Security - Business Security Weekly #93
Chris Spehn, Mandiant's Red Team - Paul's Security Weekly #568
Davi Ottenheimer, MongoDB - Paul's Security Weekly #568
ThreatConnect, Optiv, & StackRox - Enterprise Security Weekly #99
John Moran, DFLabs - Enterprise Security Weekly #99
AppSec Solutions in a DevOps World - Application Security Weekly #24
Mayank Varia, Boston University pt. 2 - Business Security Weekly #92
iOS Bugs, Burp Suite, & DevSecOps - Application Security Weekly #24
Chris Brenton, Active Countermeasures - Enterprise Security Weekly #95
Airport Security, Dark Web, and Apple - Paul's Security Weekly #567
Mayank Varia, Boston University pt. 1 - Business Security Weekly #92
Limor Elbaz, Peerlyst - Paul's Security Weekly #567
SolarWinds, Mimecast, & AT&T - Enterprise Security Weekly #98
Zane Lackey, Signal Sciences - Paul's Security Weekly #567
Joe McManus, Automox - Enterprise Security Weekly #98
Ferruh Mavituna, Netsparker - Enterprise Security Weekly #98
The Hardest Problem in Application Security - Application Security Weekly #23
Intellectual Property, Edna Conway - Business Security Weekly #91
Facebook, Google, & GitLab - Application Security Weekly #23
Articles, News, & Discussion - Business Security Weekly #91
PHPMyAdmin, GitHub, and VS Code - Application Security Weekly #22
WPA3, Ticketmaster, and Don't Wipe So Hard - Paul's Security Weekly #566
Thomas GX, Yelda - Application Security Weekly #22
Fun with Android APK's, Joff Thyer - Paul's Security Weekly #566
Tom Brennan & Gary Berman - Paul's Security Weekly #566
Duo, CyberArk, & Demisto - Enterprise Security Weekly #97
Gabriel Gumbs, STEALTHbits - Enterprise Security Weekly #97
Microsoft, JavaScript, AI Can Fire - Application Security Weekly #21
Tracking Security Innovation - Business Security Weekly #90
Dan Kuykendall, Rapid7 - Application Security Weekly #21
Golden Tickets, 911 Callers, and Hacking Therapy - Paul's Security Weekly #565
Topic: How to Conduct a Time Audit - Business Security Weekly #90
NMAP Scripts With LUA and NSE - Paul's Security Weekly #565
Galen Hunt, Microsoft Azure - Paul's Security Weekly #565
Topic: IPFIX - Enterprise Security Weekly #96
Windows, Smart Lock, & iPhone Hackers - Application Security Weekly #20
ForeScout, SafeBreach, & ExtraHop - Enterprise Security Weekly #96
Splunk, VictorOps, & Claroty - Business Security Weekly #89
Ron Gula, Gula Tech Adventures - Application Security Weekly #20
Pennsylvania, Equifax, and US Senators - Paul's Security Weekly #564
Sandy Dunn, CISO - Business Security Weekly #89
Keith Hoodlet: Bug Bounty Hunting - Paul's Security Weekly #564
Jason Haddix, Bugcrowd - Paul's Security Weekly #564
Riverbed, Tufin, & Splunk - Enterprise Security Weekly #95
Fortinet, Qualys, & CounterTack - Business Security Weekly #88
Peter Chestna, Veracode - Application Security Weekly #19
FireFox, Windows 10, DevOps, and BitHubLab - Application Security Weekly #19
Article Discussion - Business Security Weekly #88
Masha Sedova, Elevate Security - Business Security Weekly #88
John Kinsella, Layered Insight - Paul's Security Weekly #563
CounterTack, Phishing Attacks, and Who Uses Flash? - Paul's Security Weekly #563
Jake Reynolds, LogRhythm - Paul's Security Weekly #563
Qualys, Twistlock, & Tenable - Enterprise Security Weekly #94
Microsoft, KnowBe4, & Signifyd - Business Security Weekly #87
GitHub, Oracle, & GDPR - Application Security Weekly #18
Group Discussion: Penetration Testing - Enterprise Security Weekly #94
Jonathan Pritchard, Like A Mind Reader Training - Business Security Weekly #87
Agile vs. DevOps - Application Security Weekly #18
Acoustic Attacks, Bromium, and New GDPR Law - Paul's Security Weekly #562
Christian Hamer, Harvard University - Business Security Weekly #87
Chris Elgee & Lee Ford, Mass. Army National Guard G-6 - Paul's Security Weekly #562
Ronnie Flathers, Uptake Technologies - Paul's Security Weekly #562
DuoSec, Varonis, & InAuth - Enterprise Security Weekly #93
Eric Bednash and Jonathan Halstuch, RackTop - Enterprise Security Weekly #93
GDPR, DOJ Sinkholes, & PornHub - Paul's Security Weekly #561
Bypassing Chrome's XSS Auditor - Paul's Security Weekly #561
Steven Bellovin, Columbia University - Paul's Security Weekly #561
Skybox, McAfee, & Thales - Enterprise Security Weekly #92
Building Your Purple Team - Enterprise Security Weekly #92
Capital One, TransUnion, & Tanium Business Security Weekly #86
Nest, Node.js, & F.Secure - Application Security Weekly #None
Terry Mason, Head of Information Risk & Technology Governance - Business Security Weekly #86
James Wickett, Signal Sciences - Application Security Weekly #17
Project Zero, Securus, and CIA's "Vault 7" Mega-Leak - Paul's Security Weekly #560
Corey Thuen and Kristopher Watts, Gravwell - Business Security Weekly #86
Configuring Your Own Travel Router with OpenVPN - Paul's Security Weekly #560
Matthew Silva, RWU - Paul's Security Weekly #560
ServiceNow, Gurucul Fraud, and Shadow Devices - Enterprise Security Weekly #91
Ron Gula, Gula Tech Adventures - Enterprise Security Weekly #91
Article Discussion - Business Security Weekly #85
Adam Gordon, ITProTV - Application Security Weekly #16
Michael Santarcangelo, Security Catalyst - Enterprise Security Weekly #90
PhishLabs, SafeBreach, & Red Canary - Business Security Weekly #85
Text Bombs, Black Dots of Death, and Azure - Application Security Weekly #16
Microsoft Zero-Day, Mirai DDoS Attack, and GDPR - Paul's Security Weekly #559
Apollo Clark, Consultant - Enterprise Security Weekly #90
George Finney, Southern Methodist University - Business Security Weekly #85
Thomas Fischer, Security Advocator - Enterprise Security Weekly #90
Docker Security Incident: Lessons Learned - Paul's Security Weekly #559
Joe Gray, Advanced Persistent Security - Paul's Security Weekly #559
Building Your AppSec Program - Application Security Weekly #15
Article Discussion - Business Security Weekly #84
Twitter, Meltdown, & RSAC - Application Security Weekly #15
Carbon Black, Trusted Key, & IronNet - Business Security Weekly #84
Elizabeth Wharton, Senior Attorney - Business Security Weekly #84
Drupal, Twitter, iLo Ransomware, and Cambridge Analytica - Paul's Security Weekly #558
Leonard Rose, Principal Security Architect at Limelight Networks - Paul's Security Weekly #558
Jeff Man, RSA Vendor Wrap-up - Enterprise Security Weekly #89
Adam Gordon, ITProTV - Enterprise Security Weekly #89
Cisco, LogRhythm, & ServiceNow - Enterprise Security Weekly #89
Tracking Security Innovation - Business Security Weekly #83
Drupal, RSAC, & Facebook - Application Security Weekly #13
FDA, Microsoft, & Android - Application Security Weekly #14
Building Your AppSec Program: Getting Started - Application Security Weekly #14
Programming Update & Discussion - Business Security Weekly #83
Rami Sass, CEO & Co-Founder of WhiteSource - Application Security Weekly #13
Equifax, Amazon, & Hacking Hotels - Paul's Security Weekly #557
Tim Chen, DomainTools - Business Security Weekly #83
Jeff Man, Recap of RSAC - Paul's Security Weekly #557
Ferruh Mavituna, Founder of Netsparker - Paul's Security Weekly #557
RSA, Fortinet, SANS, & Twitter - Enterprise Security Weekly #88
Eyal Neemany, AD Domain Trusts and Forest Trusts - Enterprise Security Weekly #88
Lenny Zeltser and Eddy Bobritsky, Minerva Labs - Enterprise Security Weekly #88
Ron Gula, Gula Tech Adventures - Business Security Weekly #82
Tracking Security Innovation - Business Security Weekly #82
Drupal, Microsoft, & NSA - Paul's Security Weekly #556
Article Discussion on Leadership, Communication, and Innovation - Business Security Weekly #82
Long Live Penetration Testing - Paul's Security Weekly #556
Adrian Sanabria, Savage Security - Paul's Security Weekly #556
Tracking Security Innovation - Business Security Weekly #81
Attorney-Client Privilege & Security - Business Security Weekly #81
Shawn Tuma, Scheef & Stone, LLP - Business Security Weekly #81
Open Source Software - Application Security Weekly #12
RTF Bugs, Attacking Accountants, & Trollcave - Paul's Security Weekly #555
Windows, MacOS, & Javascript - Application Security Weekly #12
Got Privs? Extract and Crack the Creds - Paul's Security Weekly #555
Ron Gula, Gula Tech Adventures - Paul's Security Weekly #555
Kevin Donovan, ObserveIT - Enterprise Security Weekly #87
Article Discussion on Leadership, Communication, and Innovation - Business Security Weekly #80
Cisco, Tufin, Infocyte, & ObserveIT - Enterprise Security Weekly #87
Tracking Security Innovation - Business Security Weekly #80
One Language to Rule Them All - Application Security Weekly #11
Intel, Cisco, Facebook, & Twitter - Paul's Security Weekly #554
Intel, Slack, Spectre, & NASA - Application Security Weekly #11
Masha Sedova, Elevate Security - Paul's Security Weekly #554
Katherine Teitler, MISTI - Paul's Security Weekly #554
Topic: Security Threats from Virtual Machines - Enterprise Security Weekly #86
SolarWinds, Qualys, and NGINX - Enterprise Security Weekly #86
Cloudflare, Facebook, & Red Team Wisdom - Application Security Weekly #10
DevOps or DevSecOps? - Application Security Weekly #10
Apple, Meltdown, & Atlanta Hackers - Paul's Security Weekly #553
Cutting The Cord: The Ideal Home Network Setup - Paul's Security Weekly #553
Rob Cheyne, SourceBoston - Paul's Security Weekly #553
Cisco, SensorNet, Wombat, and Google - Enterprise Security Weekly #85
The Phoenix Project - Enterprise Security Weekly #85
Article Discussion on Leadership, Communication, and Innovation - Business Security Weekly #79
Dan Wheatley, StraightTalk - Business Security Weekly #79
Tracking Security Innovation - Business Security Weekly #79
Alex Stamos, Facebook, Uber, and The Cuban Sonic Weapon - Paul's Security Weekly #552
How To Find The Most Innovative Tech At A Security Show - Paul's Security Weekly #552
Brian Honan, BH Consulting - Enterprise Security Weekly #84
Enterprise Tools to Defend Against Attacks - Enterprise Security Weekly #84
Article Discussion on Leadership - Business Security Weekly #78
Tracking Security Innovation - Business Security Weekly #78
Fred Scholl, Monarch Information Networks - Business Security Weekly #78
AMD, MailChimp, & Equifax - Application Security Weekly #9
Dick Wilkins, Phoenix Technologies - Paul's Security Weekly #551
Personal Development in Application Security - Application Security Weekly #9
Flash, Pwn2Own, & VMware - Paul's Security Weekly #551
Patrick Laverty, Rapid7 - Paul's Security Weekly #551
Rami Essaid, Distil Networks - Enterprise Security Weekly #83
Rapid7, CyberArk, & Tenable - Enterprise Security Weekly #83
Thornton May, Futurist - Business Security Weekly #77
KnowBe4, Snyk, & McAfee - Business Security Weekly #77
Edna Conway, Cisco Systems, Inc. - Business Security Weekly #77
Ethereum, Kali Linux, & Creepy Alexa - Application Security Weekly #8
AppSec/Development Partnership - Application Security Weekly #8
Cisco, Kali, Equifax, & Facebook - Paul's Security Weekly #550
Sven Morgenroth, Netsparker - Paul's Security Weekly #550
Stefano Righi, UEFI - Paul's Security Weekly #550
PhishMe, Splunk, & CyberX - Business Security Weekly #76
Eyal Neemany, Domain Exploitation and Malware in the Olympics Hack - Enterprise Security Weekly #82
Articles of Discussion - Business Security Weekly #76
AlgoSec, SolarWinds, & Martin Shkreli - Enterprise Security Weekly #82
Shawn Tuma, Scheef & Stone, LLP - Business Security Weekly #76
DigiCert, GitHub, & Black Panther - Application Security Weekly #7
Facebook Malware Scan - Application Security Weekly #7
Quickjack, Olympics, Largest DDoS Attack, and Bad AI is Still Bad AI - Paul's Security Weekly #549
Bruce Sussman, SecureWorld Boston - Paul's Security Weekly #549
Mary Beth Borgwing, Mach37 - Paul's Security Weekly #549
Red Hat, OpenShift, Atos, and Trustwave - Enterprise Security Weekly #81
Ferruh Mavituna, Netsparker - Enterprise Security Weekly #81
Sean D'souza, "The Brain Audit", Pt. 2 - Business Security Weekly #75
Will Lin, Trident Capital - Business Security Weekly #75
Tracking Security Innovation - Business Security Weekly #75
Tracking Security Innovation - Business Security Weekly #74
Sean D'Souza, Psychotactics.com - Business Security Weekly #74
Bitcoin, Salon, Oxford Comma Dispute, and Amazon - Application Security Weekly #6
Joe Kay, Enswarm Business Security Weekly #74
Topic: Bug Bounties - Application Security Weekly #6
DoubleDoor, NSA, & Google - Paul's Security Weekly #548
Steve Tcherchian, XYPRO Technology - Paul's Security Weekly #548
Domain Persistence, Javelin Networks - Enterprise Security Weekly #80
Startup & Security News You Need to Know - Business Security Weekly #73
NopSec, Palo Alto, & Microsoft - Enterprise Security Weekly #80
Article Discussion on Leadership, Communication, and Innovation - Business Security Weekly #73
Dawn-Marie Hutchinson, Optiv - Business Security Weekly #73
NSA, Google, & Microsoft - Application Security Weekly #05
OWASP ASVS pt. 2 - Application Security Weekly #05
Bitcoin, NSA, and Facebook - Paul's Security Weekly #547
ESP8266 SoC0, Larry Pesce - Paul's Security Weekly #547
Zane Lackey, Signal Sciences Paul's Security Weekly #547
Summer Fowler, InfoSecWorld 2018 Speaker - Enterprise Security Weekly #79
BehavioSec, DISCO, & Logikcull - Business Security Weekly #72
Asif Awan & Matt Alderman, Layered Insight - Business Security Weekly #72
CISCO, SANS, APIS, and Mastering Security in the Zettabyte Era - Enterprise Security Weekly #79
Vik Desai, Accenture - Business Security Weekly #72
Summer Fowler, InfoSecWorld 2018 Speaker - Enterprise Security Weekly #79
CISCO, SANS, APIS, and Mastering Security in the Zettabyte Era - Enterprise Security Weekly #79
Intel, CloudFair, & Lenovo - Application Security Weekly #04
OWASP Application Security Verification Standard - Application Security Weekly #04
AI Celebrity Porn, NSA Exploit, and Bitcoin Exchange - Paul's Security Weekly #546
MITRE, John Strand - Paul's Security Weekly #546
Mark Arnold & Will Gragido, InfoSecWorld 2018 - Paul's Security Weekly #546
John Moran, DFLabs - Enterprise Security Weekly #78
Brendan O'Connor, ServiceNow - Enterprise Security Weekly #78
Sqrrl, Microsoft, & BeyondTrust - Enterprise Security Weekly #78
Article Discussion on Leadership - Business Security Weekly #71
Security Literacy in the Digital Age - Business Security Weekly #71
Facebook, RedHat, & Russian Twitterbots - Application Security Weekly #03
Matias Madou, Secure Code Warrior - Application Security Weekly #03
BIND, Intel, and Brickerbot - Paul's Security Weekly #545
Critical Security Control Resources, John Strand - Paul's Security Weekly #545
Kevin Donovan, ObserveIT - Paul's Security Weekly #545
ThreatMetrix, Palo Alto, and CrowdStrike - Enterprise Security Weekly #77
Lenny Zeltser, Minerva Labs - Enterprise Security Weekly #77
FireEye, WatchGuard, and First Alert - Business Security Weekly #70
Jennifer Minella, Carolina Advanced Digital, Inc. - Business Security Weekly #70
Top 10 OWASP pt.2 - Application Security Weekly #02
BIND, Intel, and Brickerbot - Paul's Security Weekly #544
Google, Oracle, and Apple - Application Security Weekly #02
Rebekah Brown, Rapid7 - Paul's Security Weekly #544
Adam Gordon, ItPro.TV - Paul's Security Weekly #544
VIVOTEK, Moneris, and AlgoSec - Enterprise Security Weekly #76
Clayton Fields, Javelin Networks - Enterprise Security Weekly #76
SolarWinds, Verizon, Cyxtera, and Arctic Wolf - Business Security Weekly #69
Curiosity Is the Key To Getting Answers - Business Security Weekly #69
Google, Intel, Oracle, and Meltdown-Spectre - Hack Naked News #157
Skype, Apple, and Wi-Fi Alliance - Paul's Security Weekly #543
OWASP Top 10 (2017) Overview - Application Security Weekly #1
Jake Williams, SANS - Paul's Security Weekly #543
NVIDIA, Oracle, Coinbase, and Bitcoin - Application Security Weekly #1
Diana Kelley & Ed Moyle, Security Curve - Paul's Security Weekly #543
Container Security - Enterprise Security Weekly #75
CASB Bitglass, WhiteHat, and Twistlock - Enterprise Security Weekly #75
Marci McCarthy, CEO and President of T.E.N. - Enterprise Security Weekly #75
Article Discussion and Security News - Startup Security Weekly #68
Google, Intel, Mozilla, and Starbucks - Application Security Weekly #00
VMWare, Meltdown, Spectre, and Chip Hacks That Work - Paul's Security Weekly #542
Rise of Application Security - Application Security Weekly #00
Mimikatz Event Log Clearing Feature with John Strand - Paul's Security Weekly #542
Marcello Salvati, Coalfire Labs - Paul's Security Weekly #542
Bam Azizi, NoPassword - Startup Security Weekly #68
Patching Intel Vulnerabilities In The Enterprise - Enterprise Security Weekly #74
Coalfire, Swimlane, Shift in Security Solutions, and Twistlock 2.3 - Enterprise Security Weekly #74
Rich Walchuck and Rick Olesek, CryptoniteNXT - Startup Security Weekly #67
Fake Bitecoin, North Korea, and Wordpress - Paul's Security Weekly #541
Kevin Finisterre, Department 13 - Paul's Security Weekly #541
Bob Hillery, InGuardians - Paul's Security Weekly #541
All I Want for Christmas is A Secure Active Directory - Enterprise Security Weekly #73
Flexera, Amazon, and ExtraHop - Enterprise Security Weekly #73
Accenture and Heaphones - Startup Security Weekly #66
ShieldX, Menlo, Gemalto, and Accenture - Startup Security Weekly #66
North Korea, Kaspersky, and France to Facebook - Hack Naked News #154
On-Demand Webcasts, Net Neutrality, and Pentesting - Paul's Security Weekly #540
Ed Skoudis, Holiday Hack Challenge - Paul's Security Weekly #540
Joe Gray, Advanced Persistent Security - Paul's Security Weekly #540
Jeff Schilling, CSO of Armor - Enterprise Security Weekly #72
LogRhythm, Fortinet, and RiskSense - Enterprise Security Weekly #72
Article Discussion on Leadership, Innovation, and Startup Success - Startup Security Weekly #65
Todd O'Boyle, StrongArm - Startup Security Weekly #65
Google Patches, Android Flaw, and Apple HomeKit - Hack Naked News #153
Uber, Vulnerable Banking Apps, and Bluetooth - Paul's Security Weekly #539
Bypassing Two-Factor Authentication - Paul's Security Weekly #539
Lisa O'Connor, Accenture - Paul's Security Weekly #539
Word-of-Mouth, Growth, McAfee, and Bitdefender - Startup Security Weekly #64
Zach Schlumpf, IOActive - Startup Security Weekly #64
Dirty COW, Apache, MailSploit, and Mac - Hack Naked News #152
High Sierra, NSA, WordPress, and HP - Paul's Security Weekly #538
Network Telemetry with Mick Douglas, SANS Institute - Paul's Security Weekly #538
Allison Miller Paul's Security Weekly #538
James Wilkinson - Enterprise Security Weekly #71
GuardiCore, Docker, CloudPassage, and McAfee - Enterprise Security Weekly #71
Imgur, Firefox, Uber, and Facebook - Hack Naked News #151
Rapid7, Tenable, and HPE - Enterprise Security Weekly #70
Ismael Valenzuela, SANS Institute - Enterprise Security Weekly #70
Darren Mar-Elia, Semperis - Startup Security Weekly #63
Article Discussion on Leadership, Innovation, and Startup Success - Startup Security Weekly #63
Microsoft, Amazon Key, Intel, and HP - Hack Naked News #150
DoD, Oracle, Apple, and Boeing - Paul's Security Weekly #537
Mike Roderick & Adam Gordon, ITProTV - Paul's Security Weekly #537
Kyle Wilhoit, DomainTools - Paul's Security Weekly #537
Comodo, RiskIQ, Forcepoint, and CloudHealth - Enterprise Security Weekly #69
Tony Kirtley, SecureWorks - Enterprise Security Weekly #69
OnePlus, Amazon Key, and ADT - Hack Naked News #149
Zscalers, Crowdstrike, MetricStream, and Skybox - Startup Security Weekly #62
Roi Abutbul, Javelin Networks - Startup Security Weekly #62
Ex-NSA, Microsoft, Vault 8, and Backdoor in SATNAV - Paul's Security Weekly #536
Tech Segment: Sven Morgenroth, Netsparker - Paul's Security Weekly #536
Amanda Berlin, NetWorks Group and Lee Brotherston, Wealthsimple - Paul's Security Weekly #536
Logan Harris, SpotterRF - Enterprise Security Weekly #68
Forecepoint, WatchGuard, and Flexera - Enterprise Security Weekly #68
WatchGuard, Forescout, and Synopsys - Startup Security Weekly #61
Sales Lessons, Idea to Launch, and Contribution Margin - Startup Security Weekly #61
FERC, Fake WhatsApp, and Google Play Bug - Hack Naked News #148
Gadi Evron, Cymmetria - Paul's Security Weekly #535
Tim Medin, SANS Institute - Paul's Security Weekly #535
Richard Moulds, Whitewood Security - Paul's Security Weekly #535
Ixia, Lacework, and Francisco - Enterprise Security Weekly #67
Bryan Patton, Quest Software - Enterprise Security Weekly #67
Kaspersky, McAfee, AIG, and ARM - Hack Naked News #147
Article Discussion on Leadership, Innovation, and Startup Success - Startup Security Weekly #60
WHOIS, OSX Malware, NetBSD, and Kaspersky - Hack Naked News #146
Microsoft, KRACK, Docker, and Kubernetes - Paul's Security Weekly #534
Borrowing Data, Joe Vest and Andrew Chiles, MINIS - Paul's Security Weekly #534
Wendy Nather, Duo Security - Paul's Security Weekly #534
Tanium Expands, LogRhythm, CyberArk, and Carbon Black - Enterprise Security Weekly #66
Richard Moulds, Whitewood Security - Enterprise Security Weekly #66
Attivo Networks, CloudZero, and Akami - Startup Security Weekly #59
Don Pezet, ITProTV - Startup Security Weekly #59
Equifax, Google Chrome, KRACK, and Adobe - Hack Naked News #145
Windows, Disqus, Cyberattacks, and FBI Cyberstalker - Paul's Security Weekly #533
Matthew Toussain, SANS Institute - Paul's Security Weekly #533
Pausing Processes with PowerShell with Mick Douglas, SANS - Paul's Security Weekly #533
Splunk, ForeScout, Carbon Black, and ManageEngine - Enterprise Security Weekly #65
Cloud Security (SaaS) - Enterprise Security Weekly #65
Social Capital, Slack, and Oracle - Startup Security Weekly #58
Elizabeth Lawler, CyberArk - Startup Security Weekly #58
Kaspersky, White House, Russian Hackers, and Doug White - Hack Naked News #144
Equifax, Google, Alex Stamos, and Kaspersky - Paul's Security Weekly #532
Ran Levi, Podcast Israel Media - Paul's Security Weekly #532
Don Pezet, ITProTV - Paul's Security Weekly #532
John McAfee, ShieldX, and Phishing Emails - Enterprise Security Weekly #64
Mary Chaney, ICMCP - Enterprise Security Weekly #64
Leadership, Innovation, and Startup Success - Startup Security Weekly #57
Barrett Lyon, Neustar - Startup Security Weekly #57
ICANN, Duo Security, iPhone Hacking, and Whole Foods - Hack Naked News #143
#TrevorForget, PGP, Oracle, and Linux Kernel - Paul's Security Weekly #531
Ed Skoudis, Counter Hack - Paul's Security Weekly #531
Jim Nitterauer, AppRiver - Paul's Security Weekly #531
Topic: Network Security Architecture pt. 2 - Enterprise Security Weekly #63
Signal Sciences, Zscaler, and Google Cloud - Enterprise Security Weekly #63
Equifax, iOS 11, Zero-day, and DDos threats - Hack Naked News #142
SecureAuth, Digital Shadows, and ThreatStack - Startup Security Weekly #56
Don Pezet and Tim Broom, ITProTV - Startup Security Weekly #56
Equifax Breach Insights - Enterprise Security Weekly #62
CyberGRX, Riverbed, YARA Rules, and Palantir - Enterprise Security Weekly #62
CashShield, AppGuard, Securonix, and Startup Journeys - Startup Security Weekly #55
Jason Brvenik, NSS Labs - Startup Security Weekly #55
Windows 10, Zerodium, Linus Torvalds, and Equifax - Paul's Security Weekly #530
VMware, CCleaner Malware, Equifax, and Rogue Wordpress - Hack Naked News #141
What It Takes To Attack an ICS with Mike Assante, SANS Institute - Paul's Security Weekly #530
Ted Demopoulos, SANS Institute - Paul's Security Weekly #530
Go Development Tools, ThreatQuotient, and Bay Dynamics - Enterprise Security Weekly #61
Tom Parker, Accenture - Enterprise Security Weekly #61
ForgeRock, Cybersecurity Investors, and Startup Journeys - Startup Security Weekly #54
Gary Golomb, Awake Security - Startup Security Weekly #54
September 12, 2017 - Hack Naked News #140
Flaw in Apache, Wikileaks Unveils Project Protego, and Linux 4.13 - Paul's Security Weekly #529
Mobile Application Assessment with Chris Crowley, SANS Institute - Paul's Security Weekly #529
Michele Jordan, Under the Oak Consulting - Paul's Security Weekly #529
Topic: Network Security Architecture - Enterprise Security Weekly #60
Threat Intelligence, Starting the Avalanche, and SealPath - Enterprise Security Weekly #60
Matt Alderman, Startup Categories - Startup Security Weekly #53
Facebook Watch Show, Qadium, and Forcepoint - Startup Security Weekly #52
September 5, 2017 - Hack Naked News #139
FCC, The Fappening, and Boarding Passes - Paul's Security Weekly #528
Dave Kennedy, DerbyCon 2017 Preview - Paul's Security Weekly #528
Tech Segment: Kyle Wilhoit, DomainTools - Paul's Security Weekly #528
Fortinet FortiGate, Tufin, Okta, and VMware - Enterprise Security Weekly #59
Topic: Security Operations and Endpoint Protection - Enterprise Security Weekly #59
Technical Segment: Enterprise Network Monitoring - Enterprise Security Weekly #59
Startup News - Startup Security Weekly #52
De-Risking Risk - Startup Security Weekly #52
August 29, 2017 - Hack Naked News #138
Larry's Capture-the-Flag Scenario - Paul's Security Weekly #527
Fappening 2017, Open AWS, Flipboard, and Bitcoin - Paul's Security Weekly #527
Richard Moulds, Whitewood Security - Paul's Security Weekly #527
Enterprise News - Enterprise Security Weekly #58
Security Training: Developer Awareness - Enterprise Security Weekly #58
Technical Segment: Vulnerability Tracking & Reporting - Enterprise Security Weekly #58
News - Startup Security Weekly #51
Tara Wheeler, Symantec - Startup Security Weekly #51
August 22, 2017 - Hack Naked News #137
Airdrop, Rowhammer, and Profexor Goes Dark - Paul's Security Weekly #526
Bypassing Input Filters with Sven Morgenroth, Netsparker - Paul's Security Weekly #526
Bryson Bort, GRIMM - Paul's Security Weekly #526
Paul's IoC Enchanting Quadrants - Enterprise Security Weekly #57
Enterprise News - Enterprise Security Weekly #57
Mike Nichols, Endgame - Enterprise Security Weekly #57
News - Startup Security Weekly #50
Black Hat Recap with Matt Alderman - Startup Security Weekly #50
APT28, Gmail, Game of Thrones leak, and WannaCry - Hack Naked News #136
Dropbox, BeyondTrust, Marcus Hutchins, and DEF CON - Paul's Security Weekly #525
Paul's Printer Hacking Adventures - Paul's Security Weekly #525
Aram Jivanyan, BeSafe - Paul's Security Weekly #525
Security Policies and Procedures - Enterprise Security Weekly #56
Glenn Chisholm and Ben Johnson, Obsidian Security - Startup Security Weekly #49
WatchGuard, Riverbed Launches New Xirrus, and Cylance - Enterprise Security Weekly #56
News - Startup Security Weekly #49
August 8, 2017 - Hack Naked News #135
WannaCry, FBI Arrests Researcher, and Smart Guns - Paul's Security Weekly #524
VaporTrail with Larry Pesce and Galen Alderson, InGuardians - Paul's Security Weekly #524
Danny Miller, Ericom Software - Paul's Security Weekly #524
Tech Segment: RITA, John Strand - Enterprise Security Weekly #55
Ping Look, Optiv - Enterprise Security Weekly #55
Wandera, SOC, Qualys, and Forcepoint - Enterprise Security Weekly #55
August 2, 2017 - Hack Naked News #134
Ali Golshan, StackRox - Startup Security Weekly #48
SambaCry, FBI Warnings, and Hacking Segways - Paul's Security Weekly #523
Bypassing Corporate Firewalls with Sven Morgenroth, Netsparker - Paul's Security Weekly #523
Javelin ADProtect vs. Microsoft ATA with Almog Ohayon - Paul's Security Weekly #523
News - Enterprise Security Weekly #54
Tech Segment: Monitoring Infrastructure with Nagios - Enterprise Security Weekly #54
Thomas Fischer, Digital Guardian - Enterprise Security Weekly #54
News - Startup Security Weekly #47
Ronnie Feldman, Learnings & Entertainments - Startup Security Weekly #47
July 18, 2017 - Hack Naked News #133
Windows Vulnerabilities, Dirty Radio Songs, and Prime Day - Paul's Security Weekly #522
Hardening Software RNGs with Don Pezet, ITProTV - Paul's Security Weekly #522
Joe Desimone, Endgame - Paul's Security Weekly #522
CI Level Automated Web Security - Enterprise Security Weekly #53
News - Enterprise Security Weekly #53
The Opportunity For Hardening Docker Containers - Enterprise Security Weekly #53
July 11, 2017 - Hack Naked News #132
James Jardine, Jardine Software Inc. - Startup Security Weekly #46
Cloudflare, Upstream, and Symantec - Startup Security Weekly #46
Tim Helming, DomainTools - Paul's Security Weekly #521
Demystifying the Art of Hunting with Paul Ewing, Endgame - Paul's Security Weekly #521
Google Patches, Wordpress, and GnuPG - Paul's Security Weekly #521
Network Hardening Using Egress Filtering - Enterprise Security Weekly #52
News - Enterprise Security Weekly #52
Linux hacking, Petya, and Windows - Paul's Security Weekly #520
Domain Admin in Active Directory, Guy Franco - Paul's Security Weekly #520
Moses Hernandez, Cisco Systems - Paul's Security Weekly #520
Tech Segment: Managing AWS Cloud Resources, Apollo Clark - Enterprise Security Weekly #51
Docker Security In The Enterprise - Enterprise Security Weekly #51
Microsoft, Carbon Black, and Office 365 - Enterprise Security Weekly #51
Amazon, Cybereason, and GreatHorn - Startup Security Weekly #45
June 28, 2017 - Hack Naked News #131
Fred Kneip, CyberGRX - Startup Security Weekly #45
Bye Bye Chrome, GhostHook, and Cisco - Paul's Security Weekly #519
Reverse Analyzing Attacks for Detection, Justin Henderson - Paul's Security Weekly #519
Eric Conrad, SANS - Paul's Security Weekly #519
News - Enterprise Security Weekly #50
Brian Ventura and Ted Gary - Enterprise Security Weekly #50
Sqrrl, Hexadite, and SafeBreach - Startup Security Weekly #44
Tarun Desikan, Banyan - Startup Security Weekly #44
UPnP, WikiLeaks, and Microsoft to Removes SMBv1 Protocol - Hack Naked News #130
Iot is broken and 1 Million Exposed Endpoints - Paul's Security Weekly #518
ProxyCannon with Carrie Roberts, Black Hills Information Security - Paul's Security Weekly #518
Trey Forgety, NENA - Paul's Security Weekly #518
News - Enterprise Security Weekly #49
Malware: Endpoint Defense - Enterprise Security Weekly #49
Yubikey, CybelAngel, and Netskope - Startup Security Weekly #43
Startup Smart and Trade Secrets - Startup Security Weekly #43
June 13, 2017 - Hack Naked News #129
NSA Contractor Arrested, PPT Malware - Paul's Security Weekly #517
Detecting The Empire's Death Star Attack - Paul's Security Weekly #517
Graham Cluley - Paul's Security Weekly #517
Building an Internal Penetration Testing Team - Enterprise Security Weekly #48
DUO New Zealand and McAfee join forces - Enterprise Security Weekly #48
News - Startup Security Weekly #42
Startup Advice with Matt Alderman - Startup Security Weekly #42
June 6, 2017 - Hack Naked News #128
OneLogin Woes, Shadow Brokers Identity, oAuth Nightmares - Paul's Security Weekly #516
Exploiting Client-Side Node.js with Moses Hernandez - Paul's Security Weekly #516
Security For Small Business - Paul's Security Weekly #516
Exploit, Carbon Black, and IAM Best Practices - Enterprise Security Weekly #47
Containers and Security - Enterprise Security Weekly #47
Don Pezet and Tim Broom, ITPro.TV - Startup Security Weekly #41
Security News - Paul's Security Weekly #515
News - Startup Security Weekly #41
May 30, 2017 - Hack Naked News #127
Tech Segment: How Compromise Happens: Active Directory is Vulnerable - Paul's Security Weekly #515
Branden Williams - Paul's Security Weekly #515
Atif Ghauri, Herjavec Group - Enterprise Security Weekly #46
News - Enterprise Security Weekly #46
Startup Articles and Discussion - Startup Security Weekly #40
Startup Security Notes of Interest - Startup Security Weekly #40
May 23, 2017 - Hack Naked News #126
Security News - Paul's Security Weekly #514
Tech Segment: Disabling SMBv1 - Paul's Security Weekly #514
Joel Scambray, NCC Group - Paul's Security Weekly #514
Security Vendor Response to WannaCry Makes Me Want to Cry - Enterprise Security Weekly #45
News - Enterprise Security Weekly #45
News - Startup Security Weekly #39
May 16, 2017 - Hack Naked News #125
Bonnie Halper, StartupOneStop - Startup Security Weekly #39
Amanda Rousseau, Endgame - Hack Naked News #124
Steve Lipner, SAFECode - Paul's Security Weekly #513
Security News - Paul's Security Weekly #513
Tech Segment: Roi Abutbul and Guy Franco, Javelin Networks - Paul's Security Weekly #513
News - Enterprise Security Weekly #44
Ryan Hays, TBG Security - Enterprise Security Weekly #44
News - Startup Security Weekly #38
Public File Metadata Analysis - Tradecraft Security Weekly #1
Steven Grossman, Bay Dynamics - Startup Security Weekly #38
Security News - Paul's Security Weekly #512
May 9, 2017 - Hack Naked News #123
Tech Segment: Second Order Attacks with Ferruh Mavituna, Netsparker Paul's Security Weekly #512
Javvad Malik, AlienVault - Paul's Security Weekly #512
Deception Technologies and Honeypots - Enterprise Security Weekly #43
News - Enterprise Security Weekly #43
News - Enterprise Security Weekly #42
Building a Bug Bounty Program - Enterprise Security Weekly #42
Mike Simon, Cryptonite NXT - Startup Security Weekly #37
News - Startup Security Weekly #37
May 2, 2017 - Hack Naked News #122
Mimi Herrmann, Taylor and Francis - Paul's Security Weekly #511
Security News - Paul's Security Weekly #511
Tech Segment: Staying Secure at Hacker Conferences, Part 2 - Paul's Security Weekly #511
News - Startup Security Weekly #36
Roger Courville, EventBuilder - Startup Security Weekly #36
April 27, 2017 - Hack Naked News #121
Security News - Paul's Security Weekly #510
Tech Segment: Staying Secure at Hacker Conferences - Paul's Security Weekly #510
Philip Zimmerman, Silent Circle - Paul's Security Weekly #510
News - Enterprise Security Weekly #41
Rami Essaid, Distill Networks - Enterprise Security Weekly #41
News - Startup Security Weekly #35
Jeff Man - Startup Security Weekly #35
Security News - Paul's Security Weekly #509
Tech Segment: Basics of Abusing WMI Events - Paul's Security Weekly #509
April 18, 2017 - Hack Naked News #120
Alex Horan, Onapsis - Paul's Security Weekly #509
News - Enterprise Security Weekly #40
Gabriel Gumbs, STEALTHbits - Enterprise Security Weekly #40
How to Handle a Breach: Public Disclosure - Enterprise Security Weekly #39
News - Enterprise Security Weekly #39
News - Startup Security Weekly #34
James Gellert, RapidRatings - Startup Security Weekly #34
April 11, 2017 - Hack Naked News #119
Security News - Paul's Security Weekly #508
Tech Segment: Jeff's Trip to IBM InterConnect - Paul's Security Weekly #508
Anna Manley, Manley Law Inc. - Paul's Security Weekly #508
News - Startup Security Weekly #33
Ira Winkler, Secure Mentem - Startup Security Weekly #33
April 4, 2017 - Hack Naked News #118
Security News - Paul's Security Weekly #507
Technical Segment: Blocking Ads and Malware With Pi-hole In The Cloud - Paul's Security Weekly #507
Brad Antoniewicz, OpenDNS/BSides NYC - Paul's Security Weekly #507
Configuration Management - Enterprise Security Weekly #38
Configuration Management - Enterprise Security Weekly #38
News - Enterprise Security Weekly #38
March 28, 2017 - Hack Naked News #117
News - Startup Security Weekly #32
Kevin O'Brien, GreatHorn - Startup Security Weekly #32
Tech Segment: Arlo Wireless Camera System Security - Paul's Security Weekly #506
Tech Segment: Secure Online Backups, Don Pezet, ITProTV - Paul's Security Weekly #506
Ferruh Mavituna, NetSparker - Paul's Security Weekly #506
News - Startup Security Weekly #31
Michael Figueroa, Advanced Cyber Security Center - Startup Security Weekly #31
March 21, 2017 - Hack Naked News #116
Security News - Paul's Security Weekly #505
Brad Haines (a.k.a. Render Man) on Internet of Dongs - Paul's Security Weekly #505
Andrew Whitaker, Rapid7 - Paul's Security Weekly #505
News - Enterprise Security Weekly #37
Michael Dalgleish, LogRhythm - Enterprise Security Weekly #37
News - Startup Security Weekly #30
March 15, 2017 - Hack Naked News #115
Steve Tout & Stan Bounev, VeriClouds - Startup Security Weekly #30
Security News - Paul's Security Weekly #504
Keith Hoodlet, InfoSec Mentor Project - Paul's Security Weekly #504
Hyrum Anderson, Endgame - Paul's Security Weekly #504
Cloud and Virtual Infrastructure of Security, Don Pezet - Enterprise Security Weekly #36
News - Enterprise Security Weekly #36
News - Startup Security Weekly #29
Frank Wang, Cybersecurity Factory - Startup Security Weekly #29
March 7, 2017 - Hack Naked News #114
Security News - Paul's Security Weekly #503
Incident Response & Forensic Reporting, Doug White - Paul's Security Weekly #503
Alan White, Dell SecureWorks/US Army - Paul's Security Weekly #503
News - Enterprise Security Weekly #35
Chris Clymer, Jack Nichelson, and Jason Middaugh, InfoSec World - Enterprise Security Weekly #35
News - Startup Security Weekly #28
February 28, 2017 - Hack Naked News #113
Mike Kail, Cybric - Startup Security Weekly #28
Security News - Paul's Security Weekly #502
Tech Segment: David Fletcher, Symantec - Paul's Security Weekly #502
Don Pezet, ItPro.TV - Paul's Security Weekly #502
News - Enterprise Security Weekly #34
Jim Routh, Aetna - Enterprise Security Weekly #34
Scott Kannry and Jason Christopher, Axio - Startup Security Weekly #27
February 21, 2017 - Hack Naked News #112
Security News - Paul's Security Weekly #501
News - Startup Security Weekly #27
Slipping Executables Past Firewall, Carrie Roberts - Paul's Security Weekly #501
Paul's Security Weekly #501 - David Conrad, ICANN
Rules for Security Vendors - Enterprise Security Weekly #33
Startup Security Weekly #26 - William Lin, Trident Capital Cybersecurity
Startup Security Weekly #26 - News
Hack Naked News #111 - February 14, 2017
Enterprise Security Weekly #32 - Lior Frenkel, Waterfall Security
Enterprise Security Weekly #32 - News
Paul's Security Weekly #500 - Round Table: Penetration Testing pt. 2
Paul's Security Weekly #500 - Round Table: IoT Security pt. 1
Startup Security Weekly #25 - News
Hack Naked News #110 - February 7, 2017
Startup Security Weekly #25 - Archie Agarwal, ThreatModeler
Paul's Security Weekly #499 - Security News
Paul's Security Weekly #499 - Nathaniel "Q" Quist, LogRhythm
Paul's Security Weekly #499 - Katherine Teitler, MISTI
Enterprise Security Weekly #31 - News
Enterprise Security Weekly #31 - Matt Alderman, Tenable
Startup Security Weekly #24 - Eddy Bobritsky, Minerva Labs
Startup Security Weekly #24 - News
Hack Naked News #109 - January 31, 2017
Paul's Security Weekly #498 - Security News
Paul's Security Weekly #498 - Tech Segment: Jeff's HP Adventures
Paul's Security Weekly #498 - Chris Kubecka, HypaSec
Enterprise Security Weekly #30 - Jayne Groll and Alan Shimel, DevOps
Enterprise Security Weekly #30 - News
Hack Naked News #108 - Jason Wood, Paladin Security
Startup Security Weekly #23 - News
Hack Naked News #108 - News: January 25, 2017
Startup Security Weekly #23 - Ron Gula, Gula Tech Adventures
Paul's Security Weekly #497 - Security News
Paul's Security Weekly #497 - Bruce Potter, ShmooCon
Paul's Security Weekly #497 - Jason Blanchard, SANS Institute
Enterprise Security Weekly #29 - News
Enterprise Security Weekly #29 - Zane Lackey, Signal Sciences
Startup Security Weekly #22 - News
Startup Security Weekly #22 - Robert Stratton, Mach37
Hack Naked News #107 - January 17, 2017
Paul's Security Weekly #496 - Security News
Paul's Security Weekly #496 - Tech Segment: Bypassing AV on Android, Beau Bullock
Paul's Security Weekly #496 - Lesley Carhart, Motorola Solutions/US Air Force Reserve
Startup Security Weekly #21 - News
Hack Naked News #106 - January 11, 2017
Startup Security Weekly #21 - Justin Foster, Foster Thinking
Paul's Security Weekly #495 - Security News
Paul's Security Weekly #495 - Forensic Toolkit (FTK), Doug White
Paul's Security Weekly #495 - Joe McCray, Strategic Security
Enterprise Security Weekly #28 - Cyber Insurance, Michael Santarcangelo
Enterprise Security Weekly #28 - News
Article Discussion and Startup News - Startup Security Weekly #67
Hack Naked News #105 - January 3, 2017
Hack Naked News #104 - December 28, 2016
Paul's Security Weekly #494 - Security News
Paul's Security Weekly #494 - Tech Segment: Rudolph the Credit Card-Swiping Reindeer
Paul's Security Weekly #494 - Eric "Munin" Rand, Brown Hat Security
Enterprise Security Weekly #27 - Win10 Ubuntu with John Strand
Startup Security Weekly #20 - News
Startup Security Weekly #20 - Chad Boeckmann, Secure Digital Solutions
Paul's Security Weekly #493 - Security News
Paul's Security Weekly #493 - Tech Segment: I Made The Switch to a Linux Laptop
Paul's Security Weekly #493 - Dave Shackleford, Voodoo Security and SANS
Enterprise Security Weekly #26 - News
Enterprise Security Weekly #26 - Don Pezet, ItPro.TV
Startup Security Weekly #19 - News
Startup Security Weekly #19 - Josh Lefkowitz and Chris Camacho, Flashpoint
Paul's Security Weekly #492 - Security News
Paul's Security Weekly #492 - Ofri Ziv, GuardiCore
Paul's Security Weekly #492 - Ferruh Mavituna, Netsparker
Enterprise Security Weekly #25 - News
Enterprise Security Weekly #25 - Don Pezet, ItPro.TV
Startup Security Weekly #18 - Michael Tanji, Managing Director at Wapack Labs
Hack Naked News #103 - December 6, 2016
Paul's Security Weekly #491 - Security News
Startup Security Weekly #18 - News
Paul's Security Weekly #491 - Tech Segment: Containerizing your Security Operations Center
Paul's Security Weekly #491 - John Hurd and Alex Valdivia, ThreatConnect
Enterprise Security Weekly #24 - Top 5 Defenses Against Penetration Testers (And Attackers)
Enterprise Security Weekly #24 - News
Hack Naked News #102 - November 29, 2016
Startup Security Weekly #17 - News
Hack Naked News #101 - November 23, 2016
Startup Security Weekly #17 - Tyler Shields, Signal Sciences Corp
Paul's Security Weekly #490 - Security News
Paul's Security Weekly #490 - Tech Segment: Alex Horan and Sebastian Bortnik, Onapsis
Paul's Security Weekly #490 - Jen Ellis and Harley Geiger, Rapid7
Enterprise Security Weekly #23 - Open Source Enterprise Security Program?
Enterprise Security Weekly #23 - News
Startup Security Weekly #16 - News
Hack Naked News #100 - November 16, 2016
Startup Security Weekly #16 - Josh Marpet & Scott Lyons
Paul's Security Weekly #489 - Security News
Paul's Security Weekly #489 - Tech Segment: Outlook Web Access Two-Factor Authentication Bypass
Paul's Security Weekly #489 - Greg Foss, Logrhythm
Enterprise Security Weekly #22 - Incident Response
Enterprise Security Weekly #22 - News
Startup Security Weekly #15 - News
Startup Security Weekly #15 - Adam Bixler, Efflux Systems
Paul's Security Weekly #488 - Security News
Paul's Security Weekly #488 - Tech Segment: Considerations for Using Intel SGX
Paul's Security Weekly #488 - David Koplovitz, ProXPN
Enterprise Security Weekly #21 - News
Enterprise Security Weekly #21 - Using Bro In The Enterprise
Hack Naked News #99 - November 3, 2016
Startup Security Weekly #14 - News
Startup Security Weekly #14 - Brian Beyer, CEO of Red Canary
Paul's Security Weekly #487 - Security News
Paul's Security Weekly #487 - Tech Segment: Why Signatures Suck with Mark Dufresne, Endgame
Paul's Security Weekly #487 - Chris Roberts, Acalvio Technologies
Enterprise Security Weekly #20 - News
Enterprise Security Weekly #20 - Multi-Factor Authentication
Hack Naked News #98 - Don Pezet, ITPro.TV
Startup Security Weekly #13 - News
Startup Security Weekly #13 - H.D. Moore, Metasploit Project
Paul's Security Weekly #486 - Security News
Paul's Security Weekly #486 - Listener Feedback: Fixing Pen Test Findings and XMLRPC
Paul's Security Weekly #486 - Adrien de Beaupre
Startup Security Weekly #12 - A Handwritten Thankyou
Startup Security Weekly #12 - Stories
Hack Naked News #97 - October 18, 2016
Paul's Security Weekly #485 - Security News
Paul's Security Weekly #485 - Listener Feedback, Drinking From The InfoSec Fire Hose
Paul's Security Weekly #485 - Scott Lyons and Joshua Marpet, Guarded Risk
Enterprise Security Weekly #19 - Discussion
Enterprise Security Weekly #19 - Defending IoT Devices
Startup Security Weekly #11 - Discussion
Startup Security Weekly #11 - Magic of Momentum
Hack Naked News #96 - October 11, 2016
Paul's Security Weekly #484 - Security News
Paul's Security Weekly #484 - Tech Segment: Pre-exploit Preventing
Paul's Security Weekly #484 - Ed Skoudis
Enterprise Security Weekly #18 - Darkweb Monitoring
Enterprise Security Weekly #18 - News
Hack Naked News #95 - October 4, 2016
Paul's Security Weekly #483 - Listener Feedback: Old vs New
Paul's Security Weekly #483 - Interview Ferruh Mavituna, Netsparker
Paul's Security Weekly #483 - Security News
Enterprise Security Weekly #17 - News
Enterprise Security Weekly #17 - Security Training for Enterprises
Security Weekly #450 - Security News
Hack Naked News #94 - September 27, 2016
Enterprise Security Weekly #16 - News
Enterprise Security Weekly #16 - Privileged Alphabet Soup
Security Weekly #482 - Security News
Security Weekly #482 - Tech Segment: Securing a Shell Script
Security Weekly #482 - Kobi and Doron Naim, Cyberark Labs
Hack Naked News #93 - September 22, 2016
Startup Security Weekly #10 - Startup News
Security Weekly #481 - Security News
Security Weekly #481 - Josh Abraham, Praetorian
Enterprise Security Weekly #15 - Documentation
Enterprise Security Weekly #15 - News
Hack Naked News #92 - September 15, 2016
Hack Naked News #91 - September 13, 2016
Enterprise Security Weekly #14 - News
Enterprise Security Weekly #14 - Super Cyberman
Security Weekly #480 - Security News
Security Weekly #480 - Tech Segment: ODROID C2 vs. Raspberry PI 3
Security Weekly #480 - Marcus J. Ranum, Tenable Inc.
Hack Naked News #90 - September 8, 2016
Security Weekly #479 - Security News
Security Weekly #479 - Listener Feedback: Magic Wiffle Dust
Security Weekly #479 - Josh Corman, Cyber Statecraft Initiative
Hack Naked News #89 - September 1, 2016
Hack Naked News #88 - August 30, 2016
Security Weekly #478 - Security News
Security Weekly #478 - Heather Mahalik, SANS
Security Weekly #478 - Listener Feedback, A Host's Perspective
Enterprise Security Weekly #13 - News
Enterprise Security Weekly #13 - To MSSP or not to MSSP
Hack Naked News #87 - August 25, 2016
Hack Naked News #86 - August 24, 2016
Hack Naked TV - August 22, 2016
Security Weekly #477 - Security News
Security Weekly #477 - Interview with Alex Horan, Onapsis
Security Weekly #477 - Listener Feedback
Enterprise Security Weekly #12 - Detecting Rogue In The Enterprise
Hack Naked TV - August 18, 2016
Hack Naked TV - August 16, 2016
Security Weekly #476 - Security News
Security Weekly #476 - Tech Segment, TachyonNet
Security Weekly #476 - Lance James, Flashpoint
Enterprise Security Weekly #11 - Documentation and Quotes
Hack Naked TV - August 11, 2016
Security Weekly #475 - Security News
Security Weekly #475 - Listener Feedback
Security Weekly #475 - Federico Kirschbaum
Enterprise Security Weekly #10 - It's For Stupid People
Hack Naked TV - July 28, 2016
Hack Naked TV - July 26, 2016
Security Weekly #474 - John Kindervag
Security Weekly #474 - Security News
Security Weekly #474 - Tech Segment: Bluetooth Scanning Using The PwnPad 4 & Blue Hydra
Hack Naked TV - July 21, 2016
Hack Naked TV - July 19, 2016
Security Weekly #473 - Security News
Security Weekly #473 - Bob Stratton, Mach37
Security Weekly #473 - Tech Segment: DNS Blackhole Server with Python
Enterprise Security Weekly #9 - Sniffing Each Others' Farts
Hack Naked TV - July 14, 2016
Hack Naked TV - July 12, 2016
Security Weekly #472 - Security News
Security Weekly #472 - Tech Segment: Blocking Ads and Malware Using Bind DNS
Security Weekly #472 - Elizabeth Gossell
Hack Naked TV - July 7, 2016
Hack Naked TV - July 5, 2016
Security Weekly #471 - Security News
Security Weekly #471 - Tech Segment: Building A PfSense Firewall - Part 1 - The Hardware
Security Weekly #471 - Interview with Mark Baggett, SANS
Hack Naked TV - June 30, 2016
Enterprise Security Weekly #8 - Securing "Air Gapped" Networks
Security Weekly #470 - Security News
Security Weekly #470 - Rick Farina, Pwn Pad 4
Security Weekly #470 - Cory Doctorow
Hack Naked TV - Interview with Don Pezet
Enterprise Security Weekly #7 - Web Application Scanning
Hack Naked TV - June 21, 2016
Security Weekly #469 - Tech Segment: Telepresence Robot
Security Weekly #469 - Security News
Security Weekly #469 - Russell Beauchemin
Hack Naked TV - June 16, 2016
Hack Naked TV - June 14, 2016
Security Weekly #468 - Chris Poulin, X-Force
Security Weekly #468 - Security News
Security Weekly #468 - Russell Beauchemin, Hololens
Hack Naked TV - June 9, 2016
Security Weekly #467 - Security News
Security Weekly #467 - Listener Feedback, Crypto
Security Weekly #467 - Jon Searles and Will Genovese, BSides Security
Hack Naked TV - June 2, 2016
Enterprise Security Weekly #6 - IDS/IPS
Hack Naked TV - May 31, 2016
Security Weekly #466 - Security News
Security Weekly #466 - Listener Feedback
Security Weekly #466 - Wade Baker
Hack Naked TV - May 26, 2016
Enterprise Security Weekly #5 - "SEIM"
Hack Naked TV - May 24, 2016
Enterprise Security Weekly #4 - Patch Management
Enterprise Security Weekly #3 - Vulnerability Management
Enterprise Security Weekly #2 - Threat Intelligence
Security Weekly #465 - Security News
Security Weekly #465 - Listener Feedback
Security Weekly #465 - Neil Wyler, Grifter
Enterprise Security Weekly #1 - Threat Hunting
Hack Naked TV - May 19, 2016
Hack Naked TV - Beau Bullock
Hack Naked TV - May 12, 2016
Hack Naked TV - May 5, 2016
Hack Naked TV - May 3, 2016
Hack Naked TV - April 28, 2016
Security Weekly #464 - Douglas White, Ph.D.
Security Weekly #464 - Stories of the Week
Security Weekly #464 - Tech Segment, Listener Feedback
Security Weekly #463 - Interview with Ferruh Mavituna
Security Weekly #462 - Interview with Sean Metcalf
Security Weekly #463 - Tech Segment, Amazon
Security Weekly #463 - Stories of the Week
Security Weekly #462 - Stories of the Week
Security Weekly #461 - Jeff's Round Table
Security Weekly #461 - Stories of the Week
Hack Naked TV - April 21, 2016
Security Weekly #460 - Stories of the Week
Security Weekly #460 - Interview with Lee Holmes, Powershell
Security Weekly #460 - Tech Segment, MSF Venom
Hack Naked TV - Beau Bullock
Hack Naked TV - April 14, 2016
Hack Naked TV - April 8, 2016
Security Weekly #459 - Stories of the Week
Security Weekly #459 - Technical Segment - Apollo Clark
Security Weekly #459 - Interview with James Lyne
Hack Naked TV - April 7, 2016
Security Weekly #458 - Stories of the Week
Security Weekly #458 - Interview with Alex Horan
Hack Naked TV - March 31, 2016
Security Weekly #457 - Interview with Ferruh Mavituna
Security Weekly #457 - Stories of the Week
Security Weekly #457 - Technical Segment
Hack Naked TV - March 24, 2016
Hack Naked TV - March 24, 2016
Security Weekly #456 - Interview with Jared Atkinson
Security Weekly #456 - Stories of the Week
Hack Naked TV - March 17, 2016
Security Weekly #455 - Interview with Dennis Fisher
Security Weekly #455 - Stories of the Week
Hack Naked - March 10, 2016
Hack Naked TV - March 10, 2016
Security Weekly #454 - Paul's Big News and Interview w/ Inguardians
Security Weekly #454 - Stories of the Week
Hack Naked TV - 3/3/2016
Security Weekly #453 - Stories of the Week
Security Weekly #453 - Interview with Jeff Frisk and Jeff Pike
Hack Naked TV - February 18, 2016
Security Weekly #452 - Security News
Security Weekly #452 - DIY Routers with Joff
Security Weekly #451 - Stories of the Week
Hack Naked TV: February 19, 2016
Security Weekly #447 - Stories Of The Week
Security Weekly #450 - Interview with Patrick Heim, Dropbox Head of Security
Security Weekly #449 - Security News
Hack Naked TV: February 12, 2016
Security Weekly #451 - Interview with Mike Strouse
Security Weekly #449 - Interview with Essobi
Security Weekly #448 - Security News
Hack Naked TV - February 4, 2016
Hack Naked TV - January 26, 2016
Hack Naked TV - January 22, 2016
Security Weekly #448 - The Vulnerability Management Maturity Curve
Security Weekly #447 - Interview with Chris Domas
Security Weekly #446 - Stories of the Week
Security Weekly #446 - Interview With Adrien de Beaupre
Hack Naked TV: Januray 8, 2016
Hack Naked TV: OSCP Review
Security Weekly #445 - Sharon Goldberg
Hack Naked TV December 17 2015
Security Weekly #445 - News
Hack Naked TV: November 20, 2015
Security Weekly #444 - Stories of the Week
Security Weekly #444 - Pen Testing 5 Questions with John Strand
Security Weekly #444 - Ed Skoudis Holiday Hack Challenge
Security Weekly #443 - Security News
Hack Naked TV December 10, 2015
Hack Naked TV: December 2, 2015
Security Weekly #443 - Interview with Micah Zenko
Security Weekly News #442 - Failed Windows 3.1 and Hacking Back
Security Weekly #442 - Interview with Ferruh Mavituna
Hack Naked TV: November 19, 2015
Security Weekly News #441 - IoT Security In Alarm Clocks
Security Weekly #441 - Interview with Miron Livny and Barton Miller
Security Weekly News #440 - Canadian Encryption
Hack Naked TV - November 9, 2015
Security Weekly News #439 - Chip and Pin Hacked
Security Weekly #439 - Making The Most Of Threat Intelligence
Hack Naked TV - October 23, 2015
Hack Naked TV - October 20, 2015
Security Weekly #438 - Hacker Jeopardy
Security Weekly #438 - Interview wth Peiter "Mudge" Zakto
Security Weekly #438 - Interview with Ron Gula
Security Weekly #438 - Bug Bounty and Responsible Disclosure
Security Weekly #438 - Mobile Security and Privacy
Security Weekly #438 - L0pht Heavy Industries Panel
Hack Naked TV - October 13, 2015
Security Weekly #438 - Interview with Mikko Hypponen
Security Weekly News #437 - Facebook Sex tapes and rooting the OnHub
Security Weekly #437 - Interview with Dafydd Stuttard
Hack Naked TV - October 8, 2015
Security Weekly #436 – Security News: IoT and Nest
Hack Naked TV - October 1, 2015
Security Weekly #435 - Password Cracking with Larry
Hack Naked TV - September 23, 2015
Security Weekly #435 Security News - Exploding Chips and Cisco Routers
Security Weekly #435 - Interview with Josh Pyorre
Security Weekly #434 Security News - Deep Thoughts with Jack Daniel
Hack Naked TV - September 15, 2015
Security Weekly #434 - Interview with Micah Hoffman
Hack Naked TV - September 11, 2015
Hack Naked TV - September 8, 2015
Security Weekly #433 - Talking Security Outside The Echo Chamber
Security Weekly #432 News - Hacked "Smart" Fridge, More Ashley Madison
Security Weekly #433 Security News - Password Cracking and UPnP Exploits
Security Weekly #432 - Jack Daniel's Uplifting Rants
Hack Naked TV - September 1, 2015
Hack Naked TV - Favorite Hacking Tools
Episode 431 Stories: Ashley Madison Hack
Episode 431: Interview with Phil Young and Chad Rikansrud
Episode 430 Stories: Oracle, Lenovo, and StageFright
Episode 430: Interview with Daniel Miessler
Hack Naked TV August 13, 2015
Episode 429: Defcon is Coming!
Hack Naked TV July 28th 2015
Episode 427: Stories of the Week
Episode 427: Ed Skoudis on NetWars
Episode 427: Matt Duren
Hack Naked TV: NSA SIMP, ProxyGambit, TeslaCrypt (July 17, 2015)
Hack Naked TV: Hacker Summer Camp, Hacking Team, Adobe Flash (July 14, 2015)
Episode 426: Stories of the Week
Episode 426: Andrew Hay
Episode 425: Stories of the Week
Episode 425: Information Security Career
Episode 425: Shay Chen
Hack Naked TV: Local Network Attacks (Week of July 3, 2015)
Episode 424: Stories of the Week
Episode 424: Roll Your Own Password Management
Episode 424: Rick Farina
Episode 423: Stories of the Week - LastPass Breach, Google Bug Bounty
Episode 423: Patrick Wardle
Hack Naked TV: OPM Breach, Corporate Espionage, Hacking Hospitals (Week of June 19, 2015
Episode 422: Security for Startups
Episode 422: Stories of the Week
Episode 422: Ferruh Mavituna
Episode 421: Stories of the Week
Hack Naked TV: GitHub Keys, OpenSesame, & More (Week of June 5, 2015)
Episode 420: Stories of the Week
Episode 420: Byron Cleary
Episode 419: Stories of the Week
Episode 419: Gavin Millard
Hack Naked TV: Log Jam, Venom, NetUSB & More (Week of May 22, 2015)
Episode 418: Stories of the Week
Episode 418: Security Deathmatch
Episode 417: Stories of the Week
Episode 417: Sean Mitchell on Career Development
Episode 417: Chris Roberts
Hack Naked TV: Week of May 8, 2015
Episode 416: Tech Segment with Dan McInerney
Episode 416: Stories of the Week
Episode 415: Stories of the Week
Episode 415: Bash Command-Line Tips
Episode 415: Apollo Clark
Hack Naked TV: Week of April 24, 2015
Episode 414: Stories of the Week
Episode 414: Israel Barak
Episode 414: Jon Callas
Episode 413: Stories of the Week
Episode 413: Prying Eyes Are Watching You
Episode 413: Steve Crocker
Episode 413: Rob Cheyne on SOURCE Boston
Episode 412: John McAfee
Episode 412: Stories of the Week
Episode 412: The Dapper Hacker
Episode 411: Stories of the Week
Episode 411: Russ McRee
Episode 410: Stories of the Week
Episode 410: Interview with Matt Alderman
Episode 410: Interview with Seth Geftic
Episode 410: Interview with Pablos Holman
Episode 409: Stories of the Week
Episode 409: Keren Elazari
Episode 408: Stories of the Week
Episode 408: Jayson Street
Episode 407: Stories of the Week
Episode 407: Security Deathmatch
Episode 406: Interview with Deivant Ollam
Episode 406: Stories of the Week
Episode 406: Interview with Onapsis
Episode 405: Stories
Episode 405: Sniffing GSM with RTL-SDR & GNU Radio
Episode 404: Stories
Episode 404: Michael Santarcangelo Talks Breaches
Episode 403: Stories
Episode 403: Paul Henry
Episode 402: Stories
Episode 402: Country Attribution Aceess Control
Episode 402: Kimberly Crawley
Episode 401: Stories
Episode 401: Reuben Paul
Episode 400: Stories of the Week Gone Wild
Episode 400: Top 5 Breaches of 2014 Panel
Episode 400: DEF CON Social Engineering CTF
Episode 400: Mike Poor
Episode 400: "One Vulnerability to Rule Them All (Until The Next One") Panel
Episode 400: Electronic Frontier Foundation
Episode 400: Billy Rios
Episode 400: Marcus Ranum
Episode 399: Stories of the Week
Episode 399: Valerie Thomas & Bill Gardner
Episode 398: Stories of the Week
Episode 397: Stories of the Week
Episode 397: Paul Coggin
Episode 396: Stories of the Week
Episode 396: Brandon McCann Phishes
Episode 396: Interview with Adrian Wade
Episode 395: Stories
Episode 395: Elliott Brink on Honeypots
Episode 394: Stories
Episode 394: Interview with Ming Chow
Episode 393: Stories
Episode 393: Interview with Chris Crowley
Episode 392: Stories
Episode 392: Raspberry Pi to Tor Hotspot
Episode 392: Russell Butturini's noSQLMap
Episode 391: Stories
Episode 390: Stories
Episode 390: Red Team Field Manual
Episode 389: Shellshock & Stories
Episode 389: Rob Wiess on SCADA CTF
Episode 389: Don Murdoch's Blue Team Handbook
Episode 388: Stories
Episode 388: Pwnie Express's Pwn Plug R3
Episode 388: Michael Gough
Episode 387: Women's Society of Cyberjutsu
Episode 387: Stories of the Week
Episode 387: (Short) Intro & Announcements
Episode 386: Stories
Episode 386: Powercat Demonstration
Episode 386: Mike Murray
Episode 385: Stories
Episode 385: Corey Thuen and Ken Shaw
Episode 384: Stories
Episode 384: Dave Kennedy
Episode 384: Sarah Edwards
Episode 383: Stories
Episode 383: Daniel Ayoub Introduces iGuardian
Episode 383: Multi-Post XSRF Attacks with Adrien de Beaupre
Episode 382: Stories
Episode 382: Interview with Dan King & Friends
Episode 381: Stories
Episode 380: Stories
Episode 380: Bill Swearingen's Meat
Episode 379: Stories
Episode 379: Disrupting Opprotunistic SSH Scanners
Episode 378: Stories
Episode 378: Hacking Android
Episode 378: Interview with Onapsis
Episode 377: Stories of the Week
Episode 377: Interview with Steve Christy
Episode 377: Interview with Chris Hadnagy
Episode 376: Stories
Episode 376: Scanning DNS with Nmap
Episode 376: Interview with Michael Ossman
Episode 375: Stories
Episode 375: Interview with Pwnie Express
Episode 374: Stories
Episode 374: Embedded Security
Episode 374: OJ Reeves
Episode 373: Stories
Episode 373: Writing Shell Code with Ty Miller
Episode 373: Interview with James Jardine
Episode 372: Stories
Episode 372: Larry Rocks the Vote with Burp
Episode 372: Interview with Eddie Mize
Episode 371: Stories
Episode 371: Interview with Ed Skoudis
Episode 371: Interview with Adam Shostack
Episode 370: Interview with Rob Fuller
Episode 370: Stories
Episode 369: Stories
Episode 369: Interview with Michael Santarcangelo
Episode 368: Stories
Episode 368: Interview with Josh Abraham
Episode 367: Live from Mid-Atlantic Collegiate Cyber Defense Competition
Episode 366: Interview with Gary McGraw
Episode 366: Stories
Episode 366: Wordpress Defacement: Lessons Learned
Episode 365: Live from SANS ICS (Part 2)
Episode 365: Live from SANS ICS (Part 1)
Paul's Security Weekly #364 - Security News
Episode 364: Perl Compatible Regular Expressions
Episode 364: Interview with Eve Adams
Hack Naked TV 14-5
Paul's Security Weekly #363 - Security News
Episode 353: Guest Interview with Kat Sweet
Drunken Security News 362
Django Source Code Security Scanner - Joff Thyer
Paul Paget - Pwnie Express - Episode 362
Hack Naked TV 14-4
Episode 361: Stories
Episode 361: Interview with Brian Richardson
Episode 360: Stories
Episode 360: Tech Segment by Carlos Perez
Episode 360: Interview with Jared DeMott
Episode 358: Stories of the Week
Episode 358: Tech Segment with Joff Thyer
Episode 358: Interview with Joel Yonts
Hack Naked TV 14-2
Why Did the Podcast Name Change?
Drunken Security News - Episode 357
Tech Segment with Rob Lee - Episode 357
Interview with Ian Iamit - Episode 357
HackNaked TV Episode 14-1
Episode 355: Stories of the Week
Episode 355: Tech Segment on Scriptalert1
Episode 355: Interview with Jens Steube
Episode 354: Stories of the Week
Episode 353 - Stories of the Week
Episode 353 - Interview with Kyle 'esSOBI' Stone
Episode 353 - Crypto Challenge
Episode 352: Interview with Winn Schwartau
Episode 352: I am the Calvary
Episode 351: Token Stealing with Steve Sims
Episode 351: Interview with Dan Philpot
Episode 351: Rob Kornmeyer on Mona.py
Episode 350: Active Defense
Episode 350: SCADA Panel
Stogie Geeks: Episode 70
Episode 350: Wings for Warriors and Veterans
Episode 350: Interview with Kevin Finisterre
Episode 350: Interview with Jayson Street
Episode 350: Angelo & Leo - Honeynet.org
Episode 350: Graham, Auerbach and Thuen
Security Weekly #350 - Whitelisting Java
Episode 350: Using NMap to get HTML Comments from HTTP Responses
Stories of the Week - Episode 348
Tech Segment with Heather Mahalik - Episode 348
Interview with Thierry Zoller - Episode 348
Stories and Rants of the Week - Episode 347
Tech Segment with Jared DeMott - Episode 347
Interview with Jaime Filson - Episode 347
Interview with Vivek Ramachandran
Stories of the Week - Episode 346
DerbyCon Organizers and Stories - Episode 345
Tech Segment with Pete Finnigan - Episode 345
Interview with Rich Mogull - Episode 345
Drunken Security News - Episode 344
Interview with Richard Stiennon
Drunken Security News - Episode 343
Enumerating a Domain using ADSI in PowerShell
Interview with Ira Winkler - Episode 343
BruCon Matt - Episode 343
Interview with Phil Young - Episode 342
Tech Segment with Zach Cutlip - Episode 342
Drunken Security News - Episode 342
Drunken Security News - Episode 341
Tech Segment with Allison Nixon - Episode 341
Interview with Whitfield Diffie - Episode 341
Tech Segment: Threat Analytics with Ty Miller - Episode 340
Drunken Security News - Episode 340
Tech Segment: Honeyports - Episode 340
Hack Naked TV Episode 59
Hack Naked TV Episode 57
OWASP Top 10 (2013) with Dave Wichers
Interview with Troy Hunt - Episode 339
Interview with Onapsis - Episode 338
Interview with Schuyler Towne - Episode 338
Interview with Kati Rodzon and Mike Murray
Interview with Matt Bergin - Episode 337
Hack naked TV 56ish
Tech Segment: Bro IDS
Interview with Bruce Potter and JP Bourget - Episode 335