Application Security Weekly (Video)
News:Tech News
Details of the Citrix Bleed vuln, exploitation of the Atlassian improper authorization vuln, so many jQuery installations to upgrade, the price of bounties and the cost of fixes, Microsoft's Secure Future Initiative, and more!
Show Notes: https://securityweekly.com/asw-262
Exchange RCE, Patching at Scale, DORA Metrics, USENIX Best Papers, Passkeys - ASW #214
Critical Requirements for Cloud Native Application Security - Dean Agron - ASW #214
Authz Bypass in Oracle Cloud, Chrome Prototype Pollution, Why Security Products Fail - ASW #213
Show, Don’t Tell, Your Developers How To Write Secure Code - Janet Worthington - ASW #213
Uber Breach, Rust Security Team, MiraclePtr, Supply Chain Criticism, Careers - ASW #212
API Security from a Developer's Perspective - Sam Placette - ASW #212
Go Vuln Project, OSS-Fuzz Successes, No More Basic Auth, NSA Supply Chain Hardening - ASW #211
Shifting Left Probably Left You Vulnerable. Here’s How You Can Make it Right. - Sonali Shah - ASW #211
Twitter Whistleblower Complaint, LastPass Breach, Threat Modeling Culture - ASW #210
Cloud Security Frameworks: Clarity vs. Confusion - Doug Dooley - ASW #210
Debugging & Dev Tools, Isolating PostgreSQL, Abusing the DevOps Pipeline, Xiaomi Flaw - ASW #209
AppSec Tips & Tricks for Cloud Native and Kubernetes Environments - Kiran Kamity - ASW #209
Microsoft Bounties & Edge Security, Strategic Bounty Programs, HTTP Desync Attacks - ASW #208
Good, Not Perfect, AppSec - Tanya Janca - ASW #208
Auth Problems from Parsing, Slack's Password Hashes, Twitter's Info Breach - ASW #207
Agility Broke AppSec. Now It's Going to Fix It - Chen Gour Arie - ASW #207
Smart Lock and Simple Vulns, Macros and Secure Defaults, Breaches and Costs - ASW #206
Reachability & Attackability - Manish Gupta - ASW #206
Atlassian Vuln, Attacking OAuth, OpenSSF Security Audits, Tabletop Exercises - ASW #205
How to Build a Successful Continuous Application Security Program - Ferruh Mavituna - ASW #205
Create your
podcast in
minutes
It is Free
Cyber Security Headlines
The WAN Show
Babbage from The Economist
Cybersecurity Today
Software Engineering Daily