Application Security Weekly (Audio)
Technology
Sometimes infosec problems can be summarized succinctly, like "patching is hard". Sometimes a succinct summary sounds convincing, but is based on old data, irrelevant data, or made up data. Adrian Sanabria walks through some of the archeological work he's done to dig up the source of some myths. We talk about some of our favorite (as in most disliked) myths to point out how oversimplified slogans and oversimplified threat models lead to bad advice -- and why bad advice can make users less secure.
Segment resources:
The OWASP Top 10 gets its first update after a year, Metasploit gets its first rewrite (but it's still in Perl), PHP adds support for prepared statements, RSA Conference puts passwords on notice while patching remains hard, and more!
Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweekly.com/asw-279
Goose Egg - ASW #140
Total Recall - ASW #139
The Sound of Silence - ASW #138
A Tree of Woe - ASW #137
Breaking John - ASW #136
Pokémon & Synthwave & Hair & Hats - ASW #135
Dark & Scary - ASW #134
A Cesspool of Images - ASW #133
Talking Cookies - ASW #132
Thunderdome Technique - ASW #131
Black Friday - ASW #130
Snowy Clouds - ASW #129
Exploding Decompression - ASW #128
The Spookiest Month - ASW #127
Way Over My Head - ASW #126
Still Raging - ASW #125
The Laughing Isn't Helping - ASW #124
Hot Off the Press - ASW #123
One Love, One Fuzz - ASW #122
The Wire Stripper - ASW #121
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast