In the Application News, Chrome constrains the cookies and Edge pushes privacy, Windows builds a sandbox for Linux, Android Q for more quarantined code with more LLVM features, Steve Singh stepping down as Docker CEO, and Verizon releases its 2019 DBIR! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode61 Follow us on Twitter: https://www.twitter.com/securityweekly

This week, we welcome Jon Fredrickson, Information Security Officer at Blue Cross & Blue Shield of Rhode Island.

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode128

This week, Derek Weeks joins us to talk about DevSecOps and Securing Software Supply Chains. Derek is the VP and DevOps Advocate at Sonatype. Derek is the world's foremost researcher on the topic of DevSecOps and securing software supply chains.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode61 Follow us on Twitter: https://www.twitter.com/securityweekly

The top 5 mistakes that create field days for hackers, WordPress 5.2 brings new security features, a discontinued Insulin pump with security a security flaw in high demand, and how to communicate privately in the age of digital policing!

Full Show Notes: https://wiki.securityweekly.com/Episode603

Follow us on Twitter: https://www.twitter.com/securityweekly

Chris Sanders is the Founder of Applied Network Defense & Rural Technology Fund. He is also the Director of the Rural Technology Fund, a non-profit that donates scholarships and equipment to public schools to further technical education in rural and high poverty areas.

Full Show Notes: https://wiki.securityweekly.com/Episode603

Follow us on Twitter: https://www.twitter.com/securityweekly

We have a Security Industry Briefings Update, where we talk about 42Crunch, Viridium, Whitecanyon, and Eclypsium!

Full Show Notes: https://wiki.securityweekly.com/ES_Episode136

Visit https://securityweekly.com/esw for all the latest episodes!

In the Enterprise news, Secureworks launches new cybersecurity analytics app, StackRox Kubernetes Security Platform Receives Red Hat Container Certification, SIEM Solutions Firm Exabeam Raises $75 Million, and Serverless monitoring startup Espagon expands to cover broader microservices TechCrunch, and more!

Full Show Notes: https://wiki.securityweekly.com/ES_Episode136

Visit https://securityweekly.com/esw for all the latest episodes!

Lesley Carhart is the Principal Threat Analyst at Dragos Inc.. Lesley has been performing digital forensics and incident response on unconventional systems and advanced adversary attacks for over a decade. Lesley will be discussing her transition from IT security to OT security, DFIR in ICS - What is it like doing forensics in this environment? Firmware? Micro-code?, and much more!

Full Show Notes: https://wiki.securityweekly.com/Episode603

Follow us on Twitter: https://www.twitter.com/securityweekly

Nik Whitfield is the CEO at Panaseer. He joins us to talk about Continuous Controls Monitoring!

Full Show Notes: https://wiki.securityweekly.com/ES_Episode136

Visit https://securityweekly.com/esw for all the latest episodes!

Firefox gives more scrutiny to add-ons but Firefox also forgot to give more scrutiny to a cert, Path traversals trampled by ransomware, Secure Software Design: The Next Frontier In Cybersecurity, Trust the Stack, Not the People, VRT adds a CAN, and MDM, parental controls, and security.

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode60

Follow us on Twitter: https://www.twitter.com/securityweekly

In the Leadership and Communications segment, How to build a startup, You Don't Have To Be Nice To Be Respected. Boeing and the Importance of Encouraging Employees to Speak Up, and more!

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode127

Sven joins us to talk about securing our applications, how confident can we be about the security of web applications, and how we can make it easier to build applications that we don't need to worry about the OWASP top 10 because of secure defaults.

To learn more about Netsparker, visit: https://securityweekly.com/netsparker
Full Show Notes: https://wiki.securityweekly.com/ASW_Episode60
Follow us on Twitter: https://www.twitter.com/securityweekly

Matt, Jason, and Paul do a recap on the Global Cyber Innovation Summit that was held in Baltimore last week!

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode127

We welcome Philip Niedermair from National Cyber Group. Philip is the CEO at National Cyber Group and he joins us to discuss the National Cyber Education Program!

Full Show Notes: https://wiki.securityweekly.com/Episode602

Follow us on Twitter: https://www.twitter.com/securityweekly

Josh Abraham is in studio! He is a Staff Engineer at Praetorian, and he is going to talk about the MITRE attack framework for attackers!

Full Show Notes: https://wiki.securityweekly.com/Episode602

Follow us on Twitter: https://www.twitter.com/securityweekly

In the Enterprise news, ThreatConnects new features make creating security playbooks easier, SolarWinds adds password management to security portfolio, Checkpoint Systems announces HALO IoT platform, and BlackHat USA offers an inside look at Intel's security engine!

Full Show Notes: https://wiki.securityweekly.com/ES_Episode135

Visit https://securityweekly.com/esw for all the latest episodes!

In the Security News, how Tenable experts found 15 flaws in wireless penetration systems, Julian Assange refused exfiltration to the US, PoC exploits for old SAP config flaws increase risk of attacks, and how 1.75 million dollars was stolen from a Church through a phishing attack!

Full Show Notes: https://wiki.securityweekly.com/Episode602

Follow us on Twitter: https://www.twitter.com/securityweekly

Josh Abraham is in studio! He is a Staff Engineer at Praetorian, and he is going to talk about the MITRE attack framework for defenders!

Why Praetorian Benchmarks to MITRE ATT&CK: https://p16.praetorian.com/blog/why-praetorian-benchmarks-to-mitre-attack

Full Show Notes: https://wiki.securityweekly.com/ES_Episode135

Visit https://securityweekly.com/esw for all the latest episodes!

In the Leadership and Communications segment, 5 Myths about Strategy, The making of a technology leader, Want Fewer Employees to Quit? Listen to Them, and more!

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode126

A self-described "Nerd with a big mouth" Jay is an 18-year startup veteran specialized in pre-IPO, hyper-competitive environments with a focus on new technology introduction, partner/customer acquisition. Jay joins us to discuss Patch management struggles and how to overcome them!

To get involved with Automox, visit: https://securityweekly.com/automox

Full Show Notes: https://wiki.securityweekly.com/ES_Episode135

Visit https://securityweekly.com/esw for all the latest episodes!

Craig Sandman is the President and Co Founder of Symbol Security, a Cyber Security SaaS company with a mission to reduce corporate risk through Security Awareness Education. Craig will discuss Security Awareness, Education, and Training!

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode126

In the Application Security News, Software update gums up fingerprints, a counterproductive security practice expires thanks to well-considered guidelines, Docker Hub breach response, a path to hacking Ruby Gems, 5 Security Challenges to API Protection, and more!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode59 Follow us on Twitter: https://www.twitter.com/securityweekly

This week, we welcome Larry Maccherone, Senior Director of Comcast, to talk about the world of SecOps vs. DevSecOps!

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode59 Follow us on Twitter: https://www.twitter.com/securityweekly

Serious vulnerabilities found in Fujifilm x-ray devices, Facebook could be fined 5 billion over privacy violations, preinstalled malware on bootleg streaming devices, hackers using SIM swapping to steal cryptocurrency, and how a 29 year old computer scientist created the algorithm that took the first ever picture of a black hole!

Full Show Notes: https://wiki.securityweekly.com/Episode601

Follow us on Twitter: https://www.twitter.com/securityweekly

Guru Pandurangi is the CEO and Founder of Cloudneeti, to talk about how their SaaS product is delivering continuous cloud security and compliance assurance to businesses migrating or using cloud providers such as Azure, AWS, Office365, to develop and host their applications!

To learn more about Cloudneeti, visit: https://securityweekly.com/cloudneeti
Full Show Notes: https://wiki.securityweekly.com/Episode601

Follow us on Twitter: https://www.twitter.com/securityweekly