Paul’s Security Weekly (Video)
Technology
We discuss the always controversial Flipper Zero devices the hidden risks in the undersea cables, and the landscape of government oversight, revealing the intricacies of CVE, KEV, and NVD systems that are the linchpins of our digital safety. The conversation takes a turn to the practicalities of risk management and the impact of individuals on the industry, like Daniel from the curl project, striking a chord with the significance of cybersecurity vulnerabilities compared to environmental pollution. We tackle the challenges of vulnerability prioritization and the importance of a comprehensive approach to managing the ever-evolving threats that target our digital infrastructure.
(00:01) Security Practices and Flipper Zero (07:01) Technology and Privacy Concerns in Cars (17:33) Undersea Cables and NVD Issues (27:45) Government Oversight and Funding for Cybersecurity (33:33) Improving Vulnerability Prioritization in Cybersecurity (45:37) Risk Management and CVE Implementation (58:06) Cybersecurity Budget and Risk Management (01:10:48) Unique Challenges in Cybersecurity Industry (01:16:41) Discussion on Open Source and CNAs (01:26:44) Bluetooth Vulnerabilities and Exploits Discussed (01:39:46) Email Security and Compromised Accounts (01:46:23) Cybersecurity Threats and Vulnerabilities (01:52:06) GPU Security Vulnerabilities Explained
Show Notes: https://securityweekly.com/psw-821
Texas A&M Prof Fails, Windows Vs. iPhones, Cobalt Strike on Mac, & SHA-1 in Shambles - PSW #785
Artificial Ignorance & Pen Testing - Kevin Johnson - PSW #785
SBOMbshells, Honeytokens, Fixin It in the Future, & Immortal Modems - PSW #784
Mastering Penetration Testing: Critical Tasks & Essential Tools for Success - Paula Januszkiewicz - PSW #784
No Pr0nHub 4 U, HTTP Lock Status, Selling Hacking Tools, & Chrome Drops HTTP Lock - PSW #783
Pen Testing Techniques and Jurassic Malware - Rob Fuller - PSW #783
Hack All The Things With Flipper Zero - Kaitlyn Handelman - PSW #782
SSD AI/ML, Salsa for your Software, Hacking Smart TVs with IR, & Getting Papercuts - PSW #782
Under the Weather (Taxonomy?), Beating Roulette, Monitoring Macs, & XBMC Glory Days - PSW #781
Supply Chain Security - Ivan Arce - PSW #781
Stolen Cred Bizarre, US CyberSec, Stealing Cars With Headlights, & AI Censorship - PSW #780
Social Engineering & Conquering Impostor Syndrome - Billy Boatright - PSW #780
Rorschach, QNAP, We Got Hacked, SystemD, UTF-8, & Grub2 Music - PSW #779
Cybersecurity Workforce Development - Sin Ming Loo - PSW #779
The RESTRICT Act, Intel's Attack Surface, & Stop Developing AI (For 6 Months) - PSW #778
Firmware Hacking! Reversing and Exploitation - Philippe Laulheret - PSW #778
7" Laptop, Trojans in Chips, Samsung's Faux Moon, & The 4 C's - PSW #777
Vulnerability Research (& Other "Things") - Nico Waisman - PSW #777
How to Steal a Tesla, AI On Your Pi, Linux Desktop: Future, & SOCKS5 Your Burp - PSW #776
Everything's Valid in Code & War: Attacks on the Software Supply Chain - Santiago Torres Arias - PSW #776
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast