This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
محتوای ارائه شده توسط Jerry Bell and Andrew Kalat, Jerry Bell, and Andrew Kalat. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Jerry Bell and Andrew Kalat, Jerry Bell, and Andrew Kalat یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
مشابه Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Daily update on current cyber security threats
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Welcome to the Security Weekly Podcast Network, your all-in-one source for the latest in cybersecurity! This feed features a diverse lineup of shows, including Application Security Weekly, Business Security Weekly, Paul's Security Weekly, Enterprise Security Weekly, and Security Weekly News. Whether you're a cybersecurity professional, business leader, or tech enthusiast, we cover all angles of the cybersecurity landscape. Tune in for in-depth panel discussions, expert guest interviews, and ...
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
Every Friday and Sunday, Slate’s popular daily news podcast What Next brings you TBD, a clear-eyed look into the future. From fake news to fake meat, algorithms to augmented reality, Lizzie O’Leary is your guide to the tech industry and the world it’s creating for us to live in.
…
continue reading
Africa-focused technology, digital and innovation ecosystem insight and commentary.
…
continue reading
We help founders make something people want.
…
continue reading
Player FM - برنامه پادکست
با برنامه Player FM !
با برنامه Player FM !
))
Defensive Security Podcast Episode 286
Manage episode 451797573 series 1344233
محتوای ارائه شده توسط Jerry Bell and Andrew Kalat, Jerry Bell, and Andrew Kalat. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Jerry Bell and Andrew Kalat, Jerry Bell, and Andrew Kalat یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
In this episode of the Defensive Security Podcast, hosts Jerry Bell and Andrew Kalat discuss various cybersecurity topics, including the launch of their new podcast, Getting Defensive. They delve into a CISA report on exploited vulnerabilities, highlighting the concerning trend of zero-day vulnerabilities being exploited. The conversation also covers a GitHub incident involving malicious commits aimed at framing a researcher, Microsoft’s new Windows resiliency initiative, and insights from a CISA red team assessment of a critical infrastructure organization. We emphasize the importance of consent in security assessments and the challenges organizations face in managing risks associated with outdated software.
Takeaways
- The launch of the new podcast ‘Getting Defensive’ aims to explore deeper cybersecurity topics.
- CISA’s report indicates a troubling trend of zero-day vulnerabilities being exploited more frequently.
- Organizations must prioritize patching and mitigating controls to address vulnerabilities effectively.
- The GitHub incident highlights the risks of malicious commits and the importance of code review.
- Microsoft’s Windows resiliency initiative introduces new features to enhance security and system integrity.
- Consent is crucial in penetration testing and security assessments.
- Organizations often accept risks associated with outdated software, which can lead to vulnerabilities.
- Effective monitoring and detection are essential to mitigate potential attacks.
- Ransomware is not the only threat; organizations must be aware of various attack vectors.
- The CISA red team assessment provides valuable insights into the security posture of critical infrastructure.
Links:
- https://www.darkreading.com/cyberattacks-data-breaches/zero-days-wins-superlative-most-exploited-vulns
- https://www.bleepingcomputer.com/news/security/github-projects-targeted-with-malicious-commits-to-frame-researcher/
- https://thehackernews.com/2024/11/microsoft-launches-windows-resiliency.html?m=1
- https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-326a
268 قسمت
Defensive Security Podcast Episode 286
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
اشتراک گذاری
Manage episode 451797573 series 1344233
محتوای ارائه شده توسط Jerry Bell and Andrew Kalat, Jerry Bell, and Andrew Kalat. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Jerry Bell and Andrew Kalat, Jerry Bell, and Andrew Kalat یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
In this episode of the Defensive Security Podcast, hosts Jerry Bell and Andrew Kalat discuss various cybersecurity topics, including the launch of their new podcast, Getting Defensive. They delve into a CISA report on exploited vulnerabilities, highlighting the concerning trend of zero-day vulnerabilities being exploited. The conversation also covers a GitHub incident involving malicious commits aimed at framing a researcher, Microsoft’s new Windows resiliency initiative, and insights from a CISA red team assessment of a critical infrastructure organization. We emphasize the importance of consent in security assessments and the challenges organizations face in managing risks associated with outdated software.
Takeaways
- The launch of the new podcast ‘Getting Defensive’ aims to explore deeper cybersecurity topics.
- CISA’s report indicates a troubling trend of zero-day vulnerabilities being exploited more frequently.
- Organizations must prioritize patching and mitigating controls to address vulnerabilities effectively.
- The GitHub incident highlights the risks of malicious commits and the importance of code review.
- Microsoft’s Windows resiliency initiative introduces new features to enhance security and system integrity.
- Consent is crucial in penetration testing and security assessments.
- Organizations often accept risks associated with outdated software, which can lead to vulnerabilities.
- Effective monitoring and detection are essential to mitigate potential attacks.
- Ransomware is not the only threat; organizations must be aware of various attack vectors.
- The CISA red team assessment provides valuable insights into the security posture of critical infrastructure.
Links:
- https://www.darkreading.com/cyberattacks-data-breaches/zero-days-wins-superlative-most-exploited-vulns
- https://www.bleepingcomputer.com/news/security/github-projects-targeted-with-malicious-commits-to-frame-researcher/
- https://thehackernews.com/2024/11/microsoft-launches-windows-resiliency.html?m=1
- https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-326a
268 قسمت
Todos os episódios
×
به Player FM خوش آمدید!
Player FM در سراسر وب را برای یافتن پادکست های با کیفیت اسکن می کند تا همین الان لذت ببرید. این بهترین برنامه ی پادکست است که در اندروید، آیفون و وب کار می کند. ثبت نام کنید تا اشتراک های شما در بین دستگاه های مختلف همگام سازی شود.
مشابه Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
Daily update on current cyber security threats
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Welcome to the Security Weekly Podcast Network, your all-in-one source for the latest in cybersecurity! This feed features a diverse lineup of shows, including Application Security Weekly, Business Security Weekly, Paul's Security Weekly, Enterprise Security Weekly, and Security Weekly News. Whether you're a cybersecurity professional, business leader, or tech enthusiast, we cover all angles of the cybersecurity landscape. Tune in for in-depth panel discussions, expert guest interviews, and ...
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
Every Friday and Sunday, Slate’s popular daily news podcast What Next brings you TBD, a clear-eyed look into the future. From fake news to fake meat, algorithms to augmented reality, Lizzie O’Leary is your guide to the tech industry and the world it’s creating for us to live in.
…
continue reading
Africa-focused technology, digital and innovation ecosystem insight and commentary.
…
continue reading
We help founders make something people want.
…
continue reading
Player FM - برنامه پادکست
با برنامه Player FM !
با برنامه Player FM !
