Collaborate Disseminate
Mike Shema, John Kinsella, and Matt Alderman talk cloud native from an application perspective. Full Show Notes Follow us on Twitter: https://www.twitter.com/securityweekly Hosts Announcements Register for our upcoming webcasts with Viavi & ISC… Continue reading Cloud Native – Application Security Weekly #68
GKE improves authentication with Workload Identity, AWS reinforce reveals traffic tools and security solutions that improve support for DevOps, Brief history of Trusted Execution Environments, From the Enterprise’s Project: How to Explain Ser… Continue reading GKE, AWS, & S3 Buckets – Application Security Weekly #67
Mozilla pushes a patch onto an Array, Netflix shares a stream of patches, Breach to bankruptcy for healthcare company, Osquery becomes a foundational tool, Avoiding DevOps dangers, and Assigning DevOps directions! News Bugs, Breaches, and More! Moz… Continue reading Osquery, Netflix, & Mozilla – Application Security Weekly #66
API are now over 80% of the HTTP traffic and enterprise application breaches through compromised APIs are mounting!. A guide to API Security. They also discuss Public VS Private APIs and if the best practice should be segregation of the two. Full S… Continue reading Don’t Ignore APIs – Application Security Weekly #66
Mike Shema and John Kinsella interview Shannon Lietz, the Director Information Security at Intuit about DevOps. Full Show Notes Follow us on Twitter: https://www.twitter.com/securityweekly Hosts Announcements Register for our upcoming w… Continue reading Shannon Lietz, Intuit – Application Security Weekly #65
“Waiting for the worms to come.” — Pink Floyd and RDP’s CVE-2019-0708. Even the NSA warns about the population of exposed systems, A patch commands attention for mail servers, In macOS Catalina and iOS 13, Apples finds a way… Continue reading MacOS Catalina, OpenShift, & Pink Floyd – Application Security Weekly #64
This week, Duo reveals a path from a Docker container to its host, Google fumbles some password functionality, GitHub makes dependency tracking more dependable, and more! News Bugs, Breaches, and More! Duo reveals a path from a Docker container to … Continue reading Application News – Application Security Weekly #63
Mike and John delve into some DevSecOps topics. They discuss good design patterns that emerged from cloud native environments, Kubernetes and containers, and building blocks of unique services in the AppSec world. Full Show Notes Follow us on Twitt… Continue reading Major Identities & Micro Services – Application Security Weekly #63
Firefox gives more scrutiny to add-ons but Firefox also forgot to give more scrutiny to a cert, Path traversals trampled by ransomware, Secure Software Design: The Next Frontier In Cybersecurity, Trust the Stack, Not the People, VRT adds a CAN, and… Continue reading Application News – Application Security Weekly #60
This week, we welcome Larry Maccherone, Senior Director of Comcast, to talk about the world of SecOps vs. DevSecOps! Full Show Notes Follow us on Twitter: https://www.twitter.com/securityweekly Hosts
The post Larry Maccherone, Comcast – Appli… Continue reading Larry Maccherone, Comcast – Application Security Weekly #59