Microsoft Email Breaches, API Security Concerns, and Irresponsible Vulnerability Disclosure

42:33
 
Share
 

Fetch error

Hmmm there seems to be a problem fetching this series right now. Last successful fetch was on January 20, 2020 06:02 (8d ago)

What now? This series will be checked again in the next day. If you believe it should be working, please verify the publisher's feed link below is valid and includes actual episode links. You can contact support to request the feed be immediately fetched.

Manage episode 231505923 series 1946765
By Information Security at the Medical University of South Carolina. Discovered by Player FM and our community — copyright is owned by the publisher, not Player FM, and audio is streamed directly from their servers. Hit the Subscribe button to track updates in Player FM, or paste the feed URL into other podcast apps.

The guys discuss a recent privileged account compromise at Microsoft corporate that resulted in an email breach. They speak high-level of API security concerns and what to expect in the future. Finally they cover a recent example of vulnerability disclosure done poorly that left potentially 160,000 WordPress websites being exploited.

As always they end with One Cool Thing.

Show Notes

Resources:
Microsoft admits email hack
https://www.darkreading.com/attacks-breaches/microsoft-downplays-scope-of-email-attack-/d/d-id/1334423

API Security Concerns
https://www.scmagazine.com/home/opinion/5-things-you-need-to-know-about-api-protection/

Security researcher dropping 0-days

https://arstechnica.com/information-technology/2019/04/a-security-researcher-with-a-grudge-is-dropping-web-0days-on-innocent-users/

One Cool Thing

The Data Map: https://thedatamap.org/

Monitor Darkly: https://www.youtube.com/watch?v=zvP2FEfOSsk

Contact

Email infosecicu@musc.edu

Twitter:

The post Microsoft Email Breaches, API Security Concerns, and Irresponsible Vulnerability Disclosure appeared first on MUSC Podcasts.

104 episodes