Application Security Weekly (Video)
News:Tech News
Details of the Citrix Bleed vuln, exploitation of the Atlassian improper authorization vuln, so many jQuery installations to upgrade, the price of bounties and the cost of fixes, Microsoft's Secure Future Initiative, and more!
Show Notes: https://securityweekly.com/asw-262
Unpacking XDR & Business Applications - Chris Thomas, Oliver Tavakoli - ASW #286
Node.js Secure Coding - Liran Tal - ASW #286
The Enterprise Browser & AI in Securing Software and Supply Chains - Mike Fey, Josh Lemos - ASW #285
Inside the OWASP Top 10 for LLM Applications - Sandy Dunn - ASW #285
Hacking AI Bias with Human Techniques - Keith Hoodlet - ASW #284
AI & Hype & Security (Oh My!) - Caleb Sima - ASW #284
Random Problems, Protecting Packages, and Vulns in Designs, Defaults & Data Leaks - ASW #283
Why Companies Continue to Struggle with Supply Chain Security - Melinda Marks - ASW #283
XZ & Open Source, PuTTY's Private Keys, LeakyCLI, LLMs Writing Exploits - ASW #282
Sustainable Funding of Open Source Tools - Simon Bennetts, Mark Curphey - ASW #282
Arg Parsing in Rust, End of Life Hardware, CSRB & MS, Chrome’s V8 Sandbox - ASW #281
Demystifying Security Engineering Career Tracks - Karan Dwivedi - ASW #281
OWASP Breach, Types of Prompt Injection, Device-Bound Sessions, ASVS & APIs - ASW #280
Lessons That The XZ Utils Backdoor Spells Out - Farshad Abasi - ASW #280
Top 10's First Update, Metasploit's Second Update, PHP Prepares Statements, RSA & MS - ASW #279
Infosec Myths, Mistakes, and Misconceptions - Adrian Sanabria - ASW #279
Successful Security Needs a Streamlined UX - Benedek Gagyi - ASW #278
GoFetch Side Channel, OpenSSF & Security Education, Fuzzing vs. Formal Verification - ASW #278
Vulns in Smart Locks, FCC labels for IoT, ZAP's New Home - ASW #277
Figuring Out Where Appsec Fits When Starting a Cybersecurity Program - Tyler VonMoll - ASW #277
Create your
podcast in
minutes
It is Free
WSJ Tech News Briefing
Rebel Tech
The 404 Media Podcast
CyberWire Daily
The WAN Show