Digital Podcast
Brakeing Down Security Podcast show

Brakeing Down Security Podcast

Summary: A podcast all about the world of Cybersecurity, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security Professionals need to know, or refresh the memories of the seasoned veterans.

Join Now to Subscribe to this Podcast
  • Visit Website
  • RSS
  • Artist: Bryan Brake, Amanda Berlin, Brian Boettcher
  • Copyright: Copyright 2020. All rights reserved

Podcasts:

 2020-029- Brad Spengler, Linux kernel security in the past 10 years, software dev practices in Linux, WISP.org PSA | File Type: audio/mpeg | Duration: 01:05:34

Brad Spengler from Grsecurity discusses advances in the Linux kernel in the last 10 years, including some of the background on how changes get added to the kernel.

 2020-028-Shlomi Oberman, RIPPLE20, supply chain security discussion, software bill of materials | File Type: audio/mpeg | Duration: 01:00:51

Full show notes at https://www.brakeingsecurity.com Supply chain issues What should companies do when they don’t know what’s in their own tech stack? Vendor Contact Are some devices and systems more vulnerable than others? What’s the initial email look like when you tell a company “you’re vulnerable to X”? How did you tailor your initial response when you learned of the position of the person? Was it worth the effort coordinating with Treck?

 2020-027-RIPPLE20 Report, supply chain security, responsible disclosure, software development, and vendor care. | File Type: audio/mpeg | Duration: 48:34

Agenda: RIPPLE 20 report background How did JSOF approach Treck Supply chain security tools used to analyze the TCP/IP stack Discussion of reasons for custom TCP/IP stacks OEM reaction Why supply chain security matters NIST guidelines on supply chain security https://www.brakeingsecurity.com

 2020-026- WISP PSA, PAN-OS vuln redux, F5 has a bad weekend, vuln scoring, Twitter advice, and more! | File Type: audio/mpeg | Duration: 58:22

WISP.org PSA from Rachel Tobac on the #shareTheMicInCyber initiative F5 BIG-IP vulnerability Redux of PAN-OS SAML vuln CVSS scoring blunders Advice on a problem in a Tweet And more!

 2020-025-Cognizant breach, maze ransomware, PAN-OS CVE 2020-2021, SAML authentication walkthrough | File Type: audio/mpeg | Duration: 46:33

0. Update on Palo Alto vulnerability mentioned later in the show 1. How was Mr. Boettcher's vacation? 2. Thank you to Marcus Carey for his leadership and friendship 3. Discussion of the recent Cognizant Breach of employee data 4. Maze ransomware discussion 5. Palo Alto PAN-OS vulnerability (CVE-2020-2021) 6. SAML auth discussion 7. End of show Full show notes at www.brakeingsecurity.com. Search for show "2020-025"

 2020-024-Bit of news, Ripple20 vulns, IoT Security, windows error codes, captchas used for evil, Marine Momma | File Type: audio/mpeg | Duration: 49:51

Ms. Berlin's oldest heads off to the Marines! Ripple 20 report discussed major vulns in #IoT #security TCP/IP stacks Bad Actors are using CAPTCHAs to evade analysis Much more!

 2020-023-James Nelson from Illumio, cyber resilence, business continuity | File Type: audio/mpeg | Duration: 48:43

James discusses how companies need to adopt a 'zero trust' model going forward, and how you measure the effectiveness of your training and controls to ensure that you get the most out of your company's technology.

 2020-022-Andrew Shikiar, FIDO Alliance, removing password from IoT, and discussing FIDO implementation | File Type: audio/mpeg | Duration: 43:12

2020-022-Andrew Shikiar, FIDO Alliance, removing password from IoT, and discussing FIDO implementation

 2020-021- Derek Rook, redteam tactics, blue/redteam comms, and detection of testing | File Type: audio/mpeg | Duration: 01:17:03

Derek Rook and our team discusses red team methodology, how it differs from CTF and OSCP methodologies, and what red teams can do to make the whole process better for MSSPs, SOC, and blueteams members.

 2020-020-Andrew Shikiar - FIDO Alliance - making Cybersecurity more secure | File Type: audio/mpeg | Duration: 42:18

2020-020-Andrew Shikiar - FIDO Alliance - making Cybersecurity more secure

 2020-019-Masha Sedova, customized training, phishing, ransomware, and privacy implications | File Type: audio/mpeg | Duration: 39:22

2020-019-Masha Sedova, customized training, phishing, ransomware, and privacy implications

 2020-018- Masha Sedova, bespoke security training, useful metrics to tailor training | File Type: audio/mpeg | Duration: 44:31

2020-018- Masha Sedova, bespoke security training, useful metrics to tailor training

 2020-017-Cameron Smith, business decisions, and how it affects Security | File Type: audio/mpeg | Duration: 01:08:05

2020-017-Cameron Smith, business decisions, and how it affects Security

 2020-016-Cameron Smith, Business decisions and their (in)secure outcomes - Part 1 | File Type: audio/mpeg | Duration: 49:20

2020-016-Cameron Smith, Business decisions and their (in)secure outcomes - Part 1

 2020-015-Tanya_Janca-Using Github Actions in your Devops Environment, workflow automation | File Type: audio/mpeg | Duration: 57:03

2020-015-Tanya_Janca-Using Github Actions in your Devops Environment, workflow automation

Comments

Login or signup comment.