Application Security Weekly (Video)
News:Tech News
Details of the Citrix Bleed vuln, exploitation of the Atlassian improper authorization vuln, so many jQuery installations to upgrade, the price of bounties and the cost of fixes, Microsoft's Secure Future Initiative, and more!
Show Notes: https://securityweekly.com/asw-262
OWASP Breach, Types of Prompt Injection, Device-Bound Sessions, ASVS & APIs - ASW #280
Lessons That The XZ Utils Backdoor Spells Out - Farshad Abasi - ASW #280
Top 10's First Update, Metasploit's Second Update, PHP Prepares Statements, RSA & MS - ASW #279
Infosec Myths, Mistakes, and Misconceptions - Adrian Sanabria - ASW #279
Successful Security Needs a Streamlined UX - Benedek Gagyi - ASW #278
GoFetch Side Channel, OpenSSF & Security Education, Fuzzing vs. Formal Verification - ASW #278
Vulns in Smart Locks, FCC labels for IoT, ZAP's New Home - ASW #277
Figuring Out Where Appsec Fits When Starting a Cybersecurity Program - Tyler VonMoll - ASW #277
TeamCity Authn Bypass, ArtPrompt Attacks, Low Quality Vuln Reports, Secure by Design - ASW #276
More API Calls, More Problems: The State of API Security in 2024 - Lebin Cheng - ASW #276
SAML & Secrets, Serializing AI Models, OWASP ISTG, More Memory Safety - ASW #275
The Simple Mistakes and Complex Seeds of a Vulnerability Management Program - Emily Fox - ASW #275
PrintListener, Post-Quantum Crypto in iMessage, Silent Sabotage, Rust Survey Results - ASW #274
Creating the Secure Pipeline Verification Standard - Farshad Abasi - ASW #274
Redefining Threat Modeling - Security Team Goes on Vacation - Jeevan Singh - ASW Vault
LLMs & Security Tools, Shim Vuln, AI Threat Models, Configuration as Code with Pkl - ASW #273
Creating Code Security Through Better Visibility - Christien Rioux - ASW #273
Sorting Out Glibc Vulns, Apple's Security Research Device, BoringSSL, Old C Vulns - ASW #272
Starting an OWASP Project (That's Not a List!) - Grant Ongers - ASW #272
Vulns & Secure Design, MiraclePtr Success, Abandoned Projects & Maven, Old "AI Chip" - ASW #271
Create your
podcast in
minutes
It is Free
The WAN Show
The 404 Media Podcast
Cyber Security Headlines
Babbage from The Economist
Cybersecurity Today