Best Securitypodcast Podcasts (2024)

1
How do we patch the right things? - Josh Bressers - PSW #840 2:58:57

6h ago2:58:57

2:58:57

Every week here on the show we talk about vulnerabilities and exploits. Typically we recommend that organizations remediate these vulnerabilities in some way. But how? And more importantly, which ones? Some tools we have to help us are actually not all that helpful at time, such as: Mitre Att&ck - Don't get me wrong, this is a great project and Ada…

1
Cybersecurity Myths - Eugene Spafford - PSW #839 3:08:31

19h ago3:08:31

3:08:31

Early on in his career Spaf was working with microcode and continued to work on technical projects. As time went on he realized that focusing on the non-technical work, such as policies and shaping our thinking, would help move the needle. Borrowing concepts from his book on the subject, we will delve into some cybersecurity myths such as: Are user…

1
Downgrades and Attacking Security Things & Things Not to Miss at BH/DC - Trent Lo - PSW #838 3:07:57

15d ago3:07:57

3:07:57

This week, Downgrade attacks, bootloader fun, check your firmware before you wreck your firmware, you've got mail server issues, Ivanti is the new Rhianna, you should update your BIOS, Openwrt dominates, and attacking the security tools for fun and profit! Learn what is most interesting at hacker summer camp this year! Visit https://www.securitywee…

1
PK Fail - John Loucaides - PSW #837 3:22:11

12d ago3:22:11

3:22:11

John is one of the foremost experts in UEFI and joins us to talk about PK Fail! What happens when a vendor in the supply chain accidentally loses a key? It's one of the things that keeps me up at night. Well, now my nightmare scenario has come true as a key has been leaked. Learn how and why and what you can do about it in this segment! Hacking tra…

1
MS Patch Tuesday: Which Vulnerabilities Really Need Prioritizing. - Douglas McKee - PSW #836 3:04:36

27d ago3:04:36

3:04:36

Doug and the Security Weekly crew talk about vulnerabilities, are we patching the right things? This is the burning question. We will try to answer it. Segment Resources: https://blog.sonicwall.com/en-us/2024/04/patch-tuesday-which-vulnerabilities-really-need-prioritizing/ Segment description coming soon!The Crowdstrike incident: what happened and …

1
3D Printing For Hackers - David Johnson - PSW #835 3:01:58

28d ago3:01:58

3:01:58

Thinking about getting a 3D printer or have one and need a good primer? Check out this segment, we live 3D print a Captain Crunch whistle and talk all about 3D printing for hackers! Segment Resources: Slides used in this segment: https://files.scmagazine.com/wp-content/uploads/2024/07/3D-Printing-for-Hackers.pdf Major 3D Printer Websites: https://v…

1
RFID hacking & More Vulnerability Shenanigans - Iceman - PSW #834 3:30:33

1M ago3:30:33

3:30:33

Bats in your headset, Windows Wifi driver vulnerabilities, Logitech's dongles, lighthttpd is heavy with vulnerabilities, node-ip's not vulnerability, New Intel CPU non-attacks, Blast Radius, Flipper Zero alternatives, will OpenSSH be exploited, emergency Juniper patches, and the D-Link botnet grows. Iceman comes on the show to talk about RFID and N…

1
Hacker Heroes - Joe Grand - PSW Vault 1:43:58

2M ago1:43:58

1:43:58

Exploring the Hardware Hacking Realm with Joe Grand, AKA Kingpin Joe Grand, also known by his hacker pseudonym "Kingpin," stands as a prominent figure in the cybersecurity landscape. With an extensive background in hardware hacking, reverse engineering, and embedded systems, Joe has carved a niche for himself as a respected authority in the field. …

1
Ep 35: Community engagement and the role of empathy-led security 1:02:13

2M ago1:02:13

1:02:13

Join Paladin Director James Blight as he talks with Connie Marciniuk, the City of Edmonton's Community Safety Liason, about the importance of community engagement and the role empathy-led security plays. Note: this is an encore presentation of a conversation that happened during a live webinar. Episode topics: Understanding the nuanced landscape of…

1
Do We Need Penetration Testing and Vulnerability Scanning? - Josh Bressers, Adrian Sanabria - PSW #833 2:51:52

2M ago2:51:52

2:51:52

This may be controversial, however, we've been privately discussing how organizations benefit from penetration testing and vulnerability scanning. Do you still need these services as a critical part of your security program? Can't you just patch stuff that is missing patches? Tune in for a lively debate! Zyxl NAS devices are under attack and the ex…

1
Hacker Heroes - Dave Aitel - PSW Vault 1:29:24

2M ago1:29:24

1:29:24

Exploring the Strategic Minds in Cybersecurity: A Conversation with Dave Aitel Welcome to an enlightening episode of our podcast, where we sit down with Dave Aitel, a prominent figure in the cybersecurity landscape. With a robust background in offensive security and an extensive career spanning various facets of the industry, Dave brings a wealth o…

1
GenAI, Security, and More Lies - Aubrey King - PSW #832 2:54:18

2M ago2:54:18

2:54:18

We will discuss LLM security in general and some of the issues covered in the OWASP Top 10 for LLMs! Segment Resources: https://genai.owasp.org/ Skyrocketing IoT vulnerabilities, bricked computers?, MACBORG!, raw dogging source code, PHP strikes again and again, if you have a Netgear WNR614 replace it now, Arm Mali, new OpenSSH feature, weird headp…

1
Whose Vulnerability Is It Anyway? - Josh Bressers - PSW #831 2:43:47

3M ago2:43:47

2:43:47

Josh comes on the show to discuss all things related to vulnerability tracking and scoring, including the current issues with various systems and organizations including NIST, CVE, Mitre, CVSS, NVD, and more! Segment Resources: NVD blog post Josh wrote: https://anchore.com/blog/navigating-the-nvd-quagmire/ Josh's Latest post: https://opensourcesecu…

1
Hacker Heroes - Josh Corman - PSW Vault 1:10:35

3M ago1:10:35

1:10:35

Making The World A More Secure Place: Joshua Corman's Journey and Insights Welcome to an insightful podcast episode featuring Joshua Corman, a prominent figure in the realm of cybersecurity. With a wealth of experience and a keen understanding of the evolving threat landscape, Joshua has established himself as a thought leader and influencer in the…

1
Pen Testing As A Service - Seemant Sehgal - PSW #830 2:52:21

3M ago2:52:21

2:52:21

The Security Weekly crew and special guest Seemant Sehgal explore what PTaaS involves, how it differs from traditional penetration testing, and why it's becoming a crucial service for companies of all sizes to protect their digital assets. We'll discuss the how PTaaS is using the latest technologies (e.g machine learning), the benefits of having a …

1
The Impacts Of Cryptocurrency - Nicholas Weaver - PSW #829 3:12:50

3M ago3:12:50

3:12:50

Has cryptocurrency done more harm than good? Our guest for this segment has some interesting views on its impacts! Vulnrichment (I just like saying that word), Trustworthy Computing Memo V2, SSID confusion, the Flipper Zero accessory for Dads, the state of exploitation, Hackbat, Raspberry PI Connect, leaking VPNs, exploiting faster?, a new Outlook …

1
Corporate Ransomware Deep Dive - Jeremiah Grossman, Mikko Hypponen - PSW #828 1:56:15

4M ago1:56:15

1:56:15

In this RSAC 2024 South Stage Keynote, Mikko Hyppönen will look back at the past decade of ransomware evolution and explore how newer innovations, like AI, are shaping its future. Illuminating the Cybersecurity Path: A Conversation with Jeremiah Grossman Join us for a compelling episode featuring Jeremiah Grossman, a prominent figure in the cyberse…

1
Ep. 34: The number one tip to becoming a better leader with Hi Nguyen 34:02

4M ago34:02

34:02

This month's guest is Hi Nguyen, Director of Protection Services at the Univerisity of Ottawa. Hi is a former RCMP officer and certified leadership coach and is passionate about educating others on how to become a stronger, more successful leader. In the podcast, he provides his top tip for finding success, whether you're a new supervisor or season…

1
Kicking Off With Crypto - PSW #827 3:04:10

4M ago3:04:10

3:04:10

The Security Weekly crew discusses some of the latest articles and research in cryptography and some background relevant subtopics including the race against quantum computing, key management, creating your own crypto, selecting the right crypto and more! https://www.globalsecuritymag.com/keysight-introduces-testing-capabilities-to-strengthen-post-…

1
Advising The President On Cyber-Physical Resilience - Philip Venables - PSW #826 2:50:30

4M ago2:50:30

2:50:30

On February 27, 2024, PCAST (President’s Council of Advisors on Science and Technology) sent a report to the President with recommendations to bolster the resilience and adaptability of the nation’s cyber-physical infrastructure resources. Phil was part of the team that worked on the report and comes on the show to talk about what was recommended a…

1
PCI 4.0 - Winn Schwartau - PSW #825 2:07:44

4M ago2:07:44

2:07:44

Version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS) puts greater emphasis on application security than did previous versions of the standard. It also adds a new “customized approach” option that allows merchants and other entities to come up with their own ways to comply with requirements, and which also has implications for a…

1
Digging Into Supply Chain Security - James McMurry - PSW #824 3:00:28

5M ago3:00:28

3:00:28

Jim joins the Security Weekly crew to discuss all things supply chain! Given the recent events with XZ we still have many topics to explore, especially when it comes to practical advice surrounding supply chain threats. Ahoi new VM attacks ahead! HTTP/2 floods, USB Hid and run, forwarded email tricks, attackers be scanning, a bunch of nerds write s…

1
XZ - Backdoors and The Fragile Supply Chain - PSW #823 2:52:20

5M ago2:52:20

2:52:20

As most of you have probably heard there was a scary supply chain attack against the open source compression software called "xz". The security weekly hosts will break down all the details and provide valuable insights. https://blog.qualys.com/vulnerabilities-threat-research/2024/03/29/xz-utils-sshd-backdoor https://gynvael.coldwind.pl/?id=782 http…

1
Are we winning? - Jason Healey - PSW #822 3:00:55

5M ago3:00:55

3:00:55

Jason Healey comes on the show to discuss new ideas on whether the new national cybersecurity strategy is working. Segment Resources: DEFRAG Hacker Film Festival short documentary (https://youtu.be/NYvHWcQsIRE) on hackers and their favorite films. For educational purposes only, as we don’t have the rights to the clips. YouTube link to Wargames even…

1
Securing All The Things - Josh Corman - PSW #821 3:08:27

5M ago3:08:27

3:08:27

Josh Corman joins us to explore how we can make things more secure, making companies make things more secure, and making regulations that make us make things more secure! We will also touch on supply chain security and the state of vulnerability tracking and scoring. We discuss the always controversial Flipper Zero devices the hidden risks in the u…

1
Memory Safety, Re-Writing Software, and OSS Supply Chains - Omkhar Arasaratnam - PSW #820 2:48:36

5M ago2:48:36

2:48:36

Omkhar Arasaratnam is the General Manager of the Open Source Software Foundation (OpenSSF) and appears on the show to discuss memory safety, why re-writing software isn't always the best option, open-source software supply chains, and more! Segment Resources: https://openssf.org/blog/2024/02/26/openssf-supports-efforts-to-build-more-secure-and-meas…

Podcasts Worth a Listen

Securitypodcast

Podcasts Worth a Listen

1
Paul's Security Weekly (Audio)

Security Weekly Productions

1
The Difference Makers: A Paladin Security Podcast

Paladin Security Group Ltd.

1
Tradecraft Security Weekly (Audio)

Security Weekly

1
How do we patch the right things? - Josh Bressers - PSW #840 2:58:57

1
Cybersecurity Myths - Eugene Spafford - PSW #839 3:08:31

1
Downgrades and Attacking Security Things & Things Not to Miss at BH/DC - Trent Lo - PSW #838 3:07:57

1
PK Fail - John Loucaides - PSW #837 3:22:11

1
MS Patch Tuesday: Which Vulnerabilities Really Need Prioritizing. - Douglas McKee - PSW #836 3:04:36

1
3D Printing For Hackers - David Johnson - PSW #835 3:01:58

1
RFID hacking & More Vulnerability Shenanigans - Iceman - PSW #834 3:30:33

1
Hacker Heroes - Joe Grand - PSW Vault 1:43:58

1
Ep 35: Community engagement and the role of empathy-led security 1:02:13

1
Do We Need Penetration Testing and Vulnerability Scanning? - Josh Bressers, Adrian Sanabria - PSW #833 2:51:52

1
Hacker Heroes - Dave Aitel - PSW Vault 1:29:24

1
GenAI, Security, and More Lies - Aubrey King - PSW #832 2:54:18

1
Whose Vulnerability Is It Anyway? - Josh Bressers - PSW #831 2:43:47

1
Hacker Heroes - Josh Corman - PSW Vault 1:10:35

1
Pen Testing As A Service - Seemant Sehgal - PSW #830 2:52:21

1
The Impacts Of Cryptocurrency - Nicholas Weaver - PSW #829 3:12:50

1
Corporate Ransomware Deep Dive - Jeremiah Grossman, Mikko Hypponen - PSW #828 1:56:15

1
Ep. 34: The number one tip to becoming a better leader with Hi Nguyen 34:02

1
Kicking Off With Crypto - PSW #827 3:04:10

1
Advising The President On Cyber-Physical Resilience - Philip Venables - PSW #826 2:50:30

1
PCI 4.0 - Winn Schwartau - PSW #825 2:07:44

1
Digging Into Supply Chain Security - James McMurry - PSW #824 3:00:28

1
XZ - Backdoors and The Fragile Supply Chain - PSW #823 2:52:20

1
Are we winning? - Jason Healey - PSW #822 3:00:55

1
Securing All The Things - Josh Corman - PSW #821 3:08:27

1
Memory Safety, Re-Writing Software, and OSS Supply Chains - Omkhar Arasaratnam - PSW #820 2:48:36

Quick Reference Guide