Collaborate Disseminate
Dr. Jing Xie is the senior threat intelligence researcher for Venafi, the market leading cybersecurity company in machine identity protection. As a member of the Venafi thought leadership group, she leads Venafi Labs. Full Show Notes Follow us on T… Continue reading Jing Xie, Venafi – Application Security Weekly #48
In the News segment, Oracle patches 284 vulnerabilities, bug in Twitter Android app exposed protected tweets, 4 tips for better API Security in 2019, and more! Bugs, Breaches, and More! Oracle Patches 284 Vulnerabilities in January Critical Patch U… Continue reading Bugs, Breaches, and More – Application Security Weekly #47
This week on Application Security Weekly, Matt Alderman is joined by James Wickett, who is the Head of Research at Signal Sciences. They talk about the human element of application security training and testing. Full Show Notes Follow us on Twitter… Continue reading The Human Element of Application Security – Application Security Weekly #47
Another server security lapse at NASA exposed staff and project data, CRLF Injection Into PHP’s cURL Options, System Down: A systemd-journald exploit, GitHub now gives free users unlimited private repositories, Twitter is Broken, Government shutdow… Continue reading CRLF, NASA, & GitHub – Application Security Weekly #46
Rey is a security advocate at Microsoft focused on helping the community build secure systems & being a voice for researchers within MS. After a long career in software development, he developed a strong interest in cybersecurity 2 years ago … Continue reading Rey Bango, Microsoft – Application Security Weekly #46
Wormable stored XSS on WordPress.org, a security lapse revealed private complaints from Silicon Valley employees, hackers hijack thousands of Chromecasts to warn of latest security bug, a linting tool for checking accessibility, speed, and security, ho… Continue reading WordPress, Silicon Valley, and Hijacking – Application Security Weekly #45
Ken Johnson has been hacking web applications professionally for 10 years and giving security training for 7 of those years. Ken is both a breaker and builder who currently works on the GitHub application security team. Ken explains approaching appsec … Continue reading Ken Johnson, GitHub – Application Security Weekly #45
Facebook bug exposed private photos of 6.8 million users, thousands of Jenkins servers will let anonymous users become admins, Signal app can’t include a backdoor for the Australian government, WordPress plugs bug that led to Google indexing some… Continue reading Signal App, Jenkins Servers, & WordPress – Application Security Weekly #44
Harry Sverdlove is the CTO of Edgewise. Harry joins Keith and Paul to discuss what Edgewise does in the AppSec world, segmentation, cloud migration, trying different architectures, and more! To get involved with Edgewise, go to: https://www.edgewise.ne… Continue reading Harry Sverdlove, Edgewise – Application Security Weekly #44
Kubernetes instances are being hijacked worldwide, malicious sites abuse 11-year old Firefox bug that Mozilla failed to fix, Google is on a Witch Hunt for Internal Leakers, a botnet of over 20,000 WordPress sites is attacking other WordPress sites, the… Continue reading Kubernetes, Firefox, & WordPress – Application Security Weekly #43