Application Security Weekly (Audio)
Technology
Sometimes infosec problems can be summarized succinctly, like "patching is hard". Sometimes a succinct summary sounds convincing, but is based on old data, irrelevant data, or made up data. Adrian Sanabria walks through some of the archeological work he's done to dig up the source of some myths. We talk about some of our favorite (as in most disliked) myths to point out how oversimplified slogans and oversimplified threat models lead to bad advice -- and why bad advice can make users less secure.
Segment resources:
The OWASP Top 10 gets its first update after a year, Metasploit gets its first rewrite (but it's still in Perl), PHP adds support for prepared statements, RSA Conference puts passwords on notice while patching remains hard, and more!
Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweekly.com/asw-279
Shrug & Move On - ASW #160
Policy of Truth - ASW #159
Fall On Our Sword - ASW #158
Drink Our Own Champagne - ASW #157
Everything Looks Crazy - ASW #156
Crawling Like a Human - ASW #155
Dead Simple - ASW #154
Something's Out There - ASW #153
Everybody's Looking For Something - ASW #152
Hot Potato - ASW #151
Talking Heads - ASW #150
Alert Your Star Destroyers - ASW #149
Minimum Safe Distance - ASW #148
That Will Bite Ya - ASW #147
Contortions - ASW #146
Grab A Sword - ASW #145
The Cure - ASW #144
Always Interesting - ASW #143
Check Your Alibis - ASW #142
New Wave Post Punk Security Hour - ASW #141
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast