Paul’s Security Weekly (Video)
Technology
Public information about exploits and vulnerabilities alone is not enough to inform prioritization, especially with the growing rate and variety of CVEs. Dan DeCloss, founder and CTO of PlexTrac, joins the show to discuss solving the challenges of risk prioritization to drive faster, more strategic assessment cycles. Spoiler: The key is adding context and prioritization to risk-scoring equations.
Segment Resources: https://plextrac.com/get-ready-to-prioritize-risk-with-our-new-contextual-scoring-engine/?utmmedium=techptr&utmsource=securityweekly
https://plextrac.com/video/priorities/?utmmedium=techptr&utmsource=securityweekly
This segment is sponsored by PlexTrac. Visit https://securityweekly.com/plextrac to learn more about them!
Show Notes: https://securityweekly.com/psw-819
Hidden Buttons, Dumb Password Rules, BLE Relay Attack, & Stealthy UEFI - PSW #775
Ask Our PSW Hosts Anything! - PSW #775
ChatGPT Articles, What the Zimbra, Burp Plugins, & Vocal Passports - PSW #774
Phishing Attack & Defense - Asaf Cidon - PSW #774
TikTok Thefts, Typo Squatting is Lame, Stealing from the TPM, & Codebreaking Letters - PSW #773
Zero Trust ≠ Zero Risk: Leveraging Risk Techniques for Zero Trust Acceleration - Ron Woerner - PSW #773
The RIGHT Software, Docker vs. Root, CORS, Vuln Risk Scoring, & Cisco Attacks - PSW #772
Linux and FOSS Supply Chain Issues - Hal Pomeranz - PSW #772
Super(conductive) Graphene, Yandex Leak, No Fly Lists, & Thinkpad Servers - PSW #771
The Power of Purple Teaming: Using Runbooks to Standardize and Collaborate - Dan DeCloss - PSW #771
GetVariable Strikes Again, Linux Santa, AMD Vulns, & Remote Computer Detonation - PSW #770
How Do We Raise the Floor for Software Quality? - Brian Behlendorf - PSW #770
Real Time Linux, RSA Encryption, Sec vs. Compliance, Cold River, & ChatGPT - PSW #769
Other Considerations for Applying Security into Critical Infrastructure Systems - Kate Stewart - PSW #769
Roblox Prison, 3DS RCE, Puckungfu, Google Home Wiretaps, & Lastpass Hack - PSW #768
Software Supply Chain Security & MITRE's System of Trust - Robert Martin - PSW #768
Holiday Security News & The Holiday Hack Challenge 2022! - PSW #767
Hacker Trivia - PSW #767
How To Get Started in Information Security - PSW #767
Is Penetration Testing Dead? - PSW #767
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast