Paul Asadoorian – Page 33 – WindowsTechs.com

Google Patches, WordPress, and GnuPG – Paul’s Security Weekly #521

Posted on July 10, 2017 by Paul Asadoorian

How to hire infosec professionals, patching automation code, hijacked Android devices, Bitdefender support for Mac, and more security news! Paul’s Stories[edit] How to Hire Information Security Professionals This Retail Website Considers Password Security Optional Google Patches Critical Broadpwn Bug in July Security Update Researchers Crack 1024-bit RSA Encryption in GnuPG Crypto Library WordPress Plugin Used […]

The post Google Patches, WordPress, and GnuPG – Paul’s Security Weekly #521 appeared first on Security Weekly.

Continue reading Google Patches, WordPress, and GnuPG – Paul’s Security Weekly #521→

Command & Control 101: Transports – Tradecraft Security Weekly #9

Posted on July 7, 2017 by Paul Asadoorian

After an attacker is successful in getting a payload onto a system and getting it to run they still have to worry about whether there will be a successful connection out to a command and control server. There are a number of different transport mechanisms that can be utilized including direct TCP connections, pivoting through […]

The post Command & Control 101: Transports – Tradecraft Security Weekly #9 appeared first on Security Weekly.

Continue reading Command & Control 101: Transports – Tradecraft Security Weekly #9→

Network Hardening Using Egress Filtering – Enterprise Security Weekly #52

Posted on July 7, 2017 by Paul Asadoorian

Paul and Doug talk about the need for and the pitfalls of egress filtering in your enterprise network (and sweaty lawyers). Full Show Notes Visit http://securityweekly.com/esw for all the latest episodes!

The post Network Hardening Using Egress Filtering – Enterprise Security Weekly #52 appeared first on Security Weekly.

Continue reading Network Hardening Using Egress Filtering – Enterprise Security Weekly #52→

News – Enterprise Security Weekly #52

Posted on July 6, 2017 by Paul Asadoorian

Fortinet preps for a next-gen firewall, Samsung no longer mails printers, beware of Cisco training, using the right switches, Kubernetes, requirements and testing, to update or not to update, and more! Fortinet prepping for next-generation firewall – Its next, next generation firewall: “Today is not only about network security anymore,” Xie said. “It’s from the network, to […]

The post News – Enterprise Security Weekly #52 appeared first on Security Weekly.

Continue reading News – Enterprise Security Weekly #52→

Linux hacking, Petya, and Windows – Paul’s Security Weekly #520

Posted on July 5, 2017 by Paul Asadoorian

Separating the hacked and the paranoid, remote Linux hacking, Petya goes postal at FedEx, today’s mainstream hacktivism tools, and why choosing Windows should get you fired! Paul’s Security News Stories Separating the Paranoid from the Hacked Choosing Windows for your organization should get you fired – I love this because it is to controvertial of a […]

The post Linux hacking, Petya, and Windows – Paul’s Security Weekly #520 appeared first on Security Weekly.

Continue reading Linux hacking, Petya, and Windows – Paul’s Security Weekly #520→

Domain Admin in Active Directory, Guy Franco – Paul’s Security Weekly #520

Posted on July 4, 2017 by Paul Asadoorian

Guy came on the show and gave a live demo on how to become Domain Admin in an Active Directory environment, and keep those privileges for 20+ years. Guys shows us how to abuse service accounts to get yourself a golden ticket. Then shows how the Javelin Networks technology can be used to detect, prevent […]

The post Domain Admin in Active Directory, Guy Franco – Paul’s Security Weekly #520 appeared first on Security Weekly.

Continue reading Domain Admin in Active Directory, Guy Franco – Paul’s Security Weekly #520→

Moses Hernandez, Cisco Systems – Paul’s Security Weekly #520

Posted on July 3, 2017 by Paul Asadoorian

Moses returns to the show to discuss his background in technology and security (which is eerily similar to Paul’s!). The crew then got into a deep discussion of the history of many different technologies (Solaris Firewalls, IDS, Java and more!). Moses talked at length about serialization bugs in both PHP and Java. Then we dove […]

The post Moses Hernandez, Cisco Systems – Paul’s Security Weekly #520 appeared first on Security Weekly.

Continue reading Moses Hernandez, Cisco Systems – Paul’s Security Weekly #520→

Microsoft, Carbon Black, and Office 365 – Enterprise Security Weekly #51

Posted on July 2, 2017 by Paul Asadoorian

Enterprise Security News Microsoft buys another company, to patch (or not), the shift in the cybersecurity battleground, Carbon Black’s Petya assessment, and more enterprise news! Microsoft confirms its buying Israeli cloud-monitoring startup Cloudyn – The Cloudyn solution will be incorporated into Microsoft’s product portfolio — offering customers the industry’s broadest set of multi-cloud management, security and governance […]

The post Microsoft, Carbon Black, and Office 365 – Enterprise Security Weekly #51 appeared first on Security Weekly.

Continue reading Microsoft, Carbon Black, and Office 365 – Enterprise Security Weekly #51→

Docker Security In The Enterprise – Enterprise Security Weekly #51

Posted on July 2, 2017 by Paul Asadoorian

Love it or hate it, Docker (and containers) are here to stay. Embrace change in this segment where Paul and Apollo discuss using Docker in the enterprise. We cover security considerations, deployment scenarios and much more! Enterprise Security Considerations for Docker During this segment we covered the following in great detail: While Docker allows for […]

The post Docker Security In The Enterprise – Enterprise Security Weekly #51 appeared first on Security Weekly.

Continue reading Docker Security In The Enterprise – Enterprise Security Weekly #51→

Tech Segment: Managing AWS Cloud Resources, Apollo Clark – Enterprise Security Weekly #51

Posted on July 1, 2017 by Paul Asadoorian

Apollo Clark discusses the tools and techniques your team can use to manage, monitor and tune your enterprise AWS deployment. How to Manage AWS Cloud Resources The Triangle of Security Success states: “Every good sales pitch involves triangles facing up or down.” – Andy Sutcliffe Inventory Management Resources State Management Default, weak, reused passwords, shared […]

The post Tech Segment: Managing AWS Cloud Resources, Apollo Clark – Enterprise Security Weekly #51 appeared first on Security Weekly.

Continue reading Tech Segment: Managing AWS Cloud Resources, Apollo Clark – Enterprise Security Weekly #51→