Paul’s Security Weekly (Video)
Technology
We discuss the always controversial Flipper Zero devices the hidden risks in the undersea cables, and the landscape of government oversight, revealing the intricacies of CVE, KEV, and NVD systems that are the linchpins of our digital safety. The conversation takes a turn to the practicalities of risk management and the impact of individuals on the industry, like Daniel from the curl project, striking a chord with the significance of cybersecurity vulnerabilities compared to environmental pollution. We tackle the challenges of vulnerability prioritization and the importance of a comprehensive approach to managing the ever-evolving threats that target our digital infrastructure.
(00:01) Security Practices and Flipper Zero (07:01) Technology and Privacy Concerns in Cars (17:33) Undersea Cables and NVD Issues (27:45) Government Oversight and Funding for Cybersecurity (33:33) Improving Vulnerability Prioritization in Cybersecurity (45:37) Risk Management and CVE Implementation (58:06) Cybersecurity Budget and Risk Management (01:10:48) Unique Challenges in Cybersecurity Industry (01:16:41) Discussion on Open Source and CNAs (01:26:44) Bluetooth Vulnerabilities and Exploits Discussed (01:39:46) Email Security and Compromised Accounts (01:46:23) Cybersecurity Threats and Vulnerabilities (01:52:06) GPU Security Vulnerabilities Explained
Show Notes: https://securityweekly.com/psw-821
Interview with Dr. Whitfield Diffie - PSW Vault
Learning About Firmware Security - Xeno Kovah - PSW #811
Supply Chain - PSW #811
LogoFAIL, Default Passwords and Android Hacking - PSW #810
Embracing AI - Alex Sharpe - PSW #810
Holiday News Edition Featuring Special Guests - PSW #809
Vulnerability Management and Disclosure - PSW #809
Hardware Hacking - PSW #809
Vulnerability Reporting, Zyxel, GPS Spoofing - PSW #808
AI, LLMs and Some Hardware Hacking - Matthew Carpenter - PSW #808
AI and LLMs - Think of the Children - Josh More - PSW #808
Interview with Brian Snow - PSW Vault
SSH Under Attack, IoT Routers, BLE Spam, & Patching a House of Cards - PSW #807
3 Layers of App Security to Keep Hackers Out, Let Customers In - Aviad Mizrachi - PSW #807
Firmware, Mainframes, Security and Risk - PSW #806
Testing AI Before It Comes To Get You - Austin Carson - PSW #806
Source Code Revealed, Resume Prompt Injection, iPhones Be Updating, & Florida Man - PSW #805
Trustworthy AI for National Security - Kathleen Fisher - PSW #805
VSCode Vulnerabilities - Thomas Chauchefoin, Paul Gerste - PSW #804
Shenanigans and more - PSW #804
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast