Paul’s Security Weekly (Audio)
Technology
Josh Corman joins us to explore how we can make things more secure, making companies make things more secure, and making regulations that make us make things more secure! We will also touch on supply chain security and the state of vulnerability tracking and scoring.
We discuss the always controversial Flipper Zero devices the hidden risks in the undersea cables, and the landscape of government oversight, revealing the intricacies of CVE, KEV, and NVD systems that are the linchpins of our digital safety. The conversation takes a turn to the practicalities of risk management and the impact of individuals on the industry, like Daniel from the curl project, striking a chord with the significance of cybersecurity vulnerabilities compared to environmental pollution. We tackle the challenges of vulnerability prioritization and the importance of a comprehensive approach to managing the ever-evolving threats that target our digital infrastructure.
(00:01) Security Practices and Flipper Zero (07:01) Technology and Privacy Concerns in Cars (17:33) Undersea Cables and NVD Issues (27:45) Government Oversight and Funding for Cybersecurity (33:33) Improving Vulnerability Prioritization in Cybersecurity (45:37) Risk Management and CVE Implementation (58:06) Cybersecurity Budget and Risk Management (01:10:48) Unique Challenges in Cybersecurity Industry (01:16:41) Discussion on Open Source and CNAs (01:26:44) Bluetooth Vulnerabilities and Exploits Discussed (01:39:46) Email Security and Compromised Accounts (01:46:23) Cybersecurity Threats and Vulnerabilities (01:52:06) GPU Security Vulnerabilities Explained
Visit https://www.securityweekly.com/psw for all the latest episodes!
Show Notes: https://securityweekly.com/psw-821
Managing Bug Bounty Programs At Scale - Dr. Jared DeMott - PSW #796
Defending Public Infrastructure While At War - Antranig Vartanian - PSW #795
Incident Response Readiness - Gerard Johansen - PSW #794
Incident Response Stories - Bill Swearingen - PSW #793
Post-Breach: The Hardening Continues - Sean Metcalf - PSW #792
Security Certification - Rohit Misuriya, Sumit Siddharth - PSW #791
Getting Control Of Your Security Data Pipeline - JP Bourget - PSW #790
Thoughts From A Security Legend - Dan Geer - PSW Vault
Adversary Emulation w/ Carlos Perez - PSW #789
Penetration Testing Stories w/ Emilie St-Pierre - PSW #788
Interview with Bill Cheswick - PSW VAULT
L0pht Heavy Industries Panel - PSW Vault
Crazy Chronicles: Hilarious Penetration Tester Stories & Unbelievable Security News - PSW #787
Generative AI Security Implications - Liam Mayron - PSW #786
PSW #785 - Kevin Johnson
PSW #784 - Paula Januszkiewicz
PSW #783 - Rob Fuller
PSW #782 - Kaitlyn Handelman
PSW #781 - Ivan Arce
PSW #780 - Billy Boatright
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast