Archive for the ‘Security Weekly’ Category

Bypassing Input Filters with Sven Morgenroth, Netsparker – Paul’s Security Weekly #526

August 21st, 2017

Your WAF is not safe! Sven Morgenroth, a Security Researcher at Netsparker, blows Paul’s mind with his ninja-esque input filter bypass skills in this technical segment! Full Show Notes Subscribe to YouTube Channel

The post Bypassing Input Filters with Sven Morgenroth, Netsparker – Paul’s Security Weekly #526 appeared first on Security Weekly.

Posted in Netsparker, ninja-esque, online testing, pentesting, Security Weekly, Sven Morgenroth, tech segment, Technical Segment, WAF | Comments (0)

Bryson Bort, GRIMM – Paul’s Security Weekly #526

August 20th, 2017

Bryson Bort is the Founder and CEO of GRIMM, a Washington, D.C. based security engineering and consulting services company. Bryson delves in-depth into his entrepreneurship journey, the problems GRIMM aims to solve, and the current state of pen testing, malware analysis, and more! Full Show Notes Subscribe to YouTube Channel

The post Bryson Bort, GRIMM – Paul’s Security Weekly #526 appeared first on Security Weekly.

Posted in 526, Bryson Bort, Crossbow, enterprise problems, Enterprises, Grimm, Interview, Malware analysis, Paul's Security Weekly, pen testing, Security Weekly | Comments (0)

Paul’s Printer Hacking Adventures – Paul’s Security Weekly #525

August 15th, 2017

Printer attacks have been around for some time. Paul describes some of the latest techniques and research into printer hacking, including capturing print jobs, manipulating print jobs and other attacks. These are useful on penetration tests (believe it or not). Defenders take note, printers must be on your radar. Run PJL Commands: printer:/> site @PJL […]

The post Paul’s Printer Hacking Adventures – Paul’s Security Weekly #525 appeared first on Security Weekly.

Posted in Linux, Paul's Tech Seg, printer hacking, Security Weekly, tech segment | Comments (0)

Paul’s Printer Hacking Adventures – Paul’s Security Weekly #525

August 15th, 2017

Printer attacks have been around for some time. Paul describes some of the latest techniques and research into printer hacking, including capturing print jobs, manipulating print jobs and other attacks. These are useful on penetration tests (believe it or not). Defenders take note, printers must be on your radar. Run PJL Commands: printer:/> site @PJL […]

The post Paul’s Printer Hacking Adventures – Paul’s Security Weekly #525 appeared first on Security Weekly.

Posted in Linux, Paul's Tech Seg, printer hacking, Security Weekly, tech segment | Comments (0)

Salesforce, Dropbox, BeyondTrust, Pentesting, and Defcon – Paul’s Security Weekly #525

August 14th, 2017

Mystery bug bounties, Marcus Hutchins pleads not guilty, a password guru regrets past advice, Dropbox and offline two-factor authentication, and more security news! Paul’s Stories Mystery Company Offers $250,000 Bounty for VM Escape Vulnerabilities Hacker Marcus Hutchins To Plead Not Guilty To Malware Development Password Guru Regrets Past Advice Salesforce Sacks Security Engineers For Their […]

The post Salesforce, Dropbox, BeyondTrust, Pentesting, and Defcon – Paul’s Security Weekly #525 appeared first on Security Weekly.

Posted in 2FA, and Defcon, BeyondTrust, bug bounties, dropbox, Marcus Hutchins, pentesting, Salesforce, security news, Security Weekly, two-factor authentication | Comments (0)

Aram Jivanyan, BeSafe – Paul’s Security Weekly #525

August 13th, 2017

Aram is the Founder and CEO of BeSafe (formerly Skycryptor), an encrypted cloud company that uses proxy re-encryption techniques to protect user data. He provides a demo on his techniques to ensure user data security! Full Show Notes Subscribe to YouTube Channel

The post Aram Jivanyan, BeSafe – Paul’s Security Weekly #525 appeared first on Security Weekly.

Posted in 525, Aram Jivanyan, BeSafe, BeSafe software, CEO, Interview, Security Weekly, Skycryptor | Comments (0)

WannaCry, FBI Arrests Researcher, and Smart Guns – Paul’s Security Weekly #524

August 12th, 2017

WannaCry’s killswitch domain registrant is arrested, making infosec more inclusive, hacking 113-year-old subway signs, security standards for smart devices, and more security news! Paul’s Stories Making Infosec Meetings More Inclusive How Engineers Hacked 113 Year Old Subway System Signs Chromes built-in adblocker arrives for early adopters Researchers display CAN do skill in vehicle DoS An […]

The post WannaCry, FBI Arrests Researcher, and Smart Guns – Paul’s Security Weekly #524 appeared first on Security Weekly.

Posted in chrome, FBI, google, hacking 113-year-old subway, infosec, killswitch, security news, Security Weekly, smart devices, smart guns, WannaCry | Comments (0)

VaporTrail with Larry Pesce and Galen Alderson, InGuardians – Paul’s Security Weekly #524

August 11th, 2017

Larry and his intern, Galen Alderson, present a demo of their Vaportrail project! Galen shows us how to exfiltrate data from networks using broadcast FM radio and other inexpensive materials. Full Show Notes Subscribe to YouTube Channel

The post VaporTrail with Larry Pesce and Galen Alderson, InGuardians – Paul’s Security Weekly #524 appeared first on Security Weekly.

Posted in 524, broadcast FM radio, exfiltrate data, Galen Alderson, networkz, PSW, Security Weekly, Tech Seg, tech segment, Vaportrail | Comments (0)

Danny Miller, Ericom Software – Paul’s Security Weekly #524

August 10th, 2017

Danny Miller, the Director of Product Marketing at Ericom Software, joins us to discuss how enterprises can protect themselves by utilizing isolated browsing and other techniques! Full Show Notes Subscribe to YouTube Channel

The post Danny Miller, Ericom Software – Paul’s Security Weekly #524 appeared first on Security Weekly.

Posted in Danny Miller, Enterprises, Ericom Software, Interview, isolate browsing, Product marketing, Security Weekly | Comments (0)

SambaCry, FBI Warnings, and Hacking Segways – Paul’s Security Weekly #523

July 27th, 2017

Exploiting SambaCry, a warning from the FBI, hacks versus hurricanes, hacking segways, and more security news! Paul’s Stories New Linux Malware Exploits SambaCry Flaw to Silently Backdoor NAS Devices Bad Code Library Triggers Devils Ivy Vulnerability in Millions of IoT Devices Oracle Releases Biggest Update Ever: 308 Vulnerabilities Patched Apple Patches BroadPwn Bug in iOS […]

The post SambaCry, FBI Warnings, and Hacking Segways – Paul’s Security Weekly #523 appeared first on Security Weekly.

Posted in Apple patches, AsTech, Counter-Strike Bug, FBI Warns about Security Risks, IoT Toys, New Linux Malware, oracle, security news, Security Weekly, vulnerabilities | Comments (0)