Security Bash
By Mackenzie
Security BashDec 21, 2020
Securing your Software Development Lifecycle (SDLC) with Aymeric Lagier
Aymeric Lagier is a cyber-security expert, consultant and trainer. He has worked with a range of different organizations which includes small teams all the way through to large international companies such as Thalis. Aymeric explains the different steps developers and organizations alike need to take to secure their applications at each stage of the SDLC. Mackenzie and Aymeric discuss the pros and cons to each step and different tools you can use.
Understanding Identity as a Service (IDaaS): Why and how developers should leverage it
Identity as a service or IDaaS, allows developers to offload the authentication and access control to a third party. In this episode, Mackenzie Jackson and Ben Dechrai (Developer Advocate Auth0) discuss IDaaS, why you should and shouldn't implement it, how scalable is it, and is it really more secure than building authentication yourself.
August 5 - 3 new data breaches, Microsoft record bug bounty payouts, reports from Cloudflare & Accurics
in this episode we look into 3 new data breaches reports from Blacklist alliance, KreditPlus and TrueFire. Microsoft has record bug bounty payouts and we outline reports from Cloudflare and Accurics.
Securitybash is a cybersecurity news podcast with regular short news content. https://thesecuritybash.com
July 27 - Security vulnerabilities found in Chinese software, Dave.com has a breach and Australian ACCC takes on Google
A security flaw in Chinese drone manufacturers mobile application could lead to malicious applications being force installed. Mandatory Chinese tax software included spyware potentially stealing sensitive information. Digital bank Dave admits a data breach and an Australian watchdog takes on Google.
Security Bash is a cybersecurity news podcast that takes the most important information from daily security headlines.
July 24 - Twilio suffers major attack, Garman is knocked out by ransomware and more
In this episode: Twilio suffers major security incident, Microsoftoffice becomes most targeted platform for attacks, Garmin is knocked out by ransomware attack, news from North korea and the latest on the Twitter hack.
July 21 2020 - More details on Twitter hack, the US charges 2 Chinese hackers and more.
In this episode, more details emerge from the twitter hack. Cyber Crime continues to rise alongside Covid-19 cases. The US has charged two Chinese nationals with stealing Covid-19 research and Adobe has been left red-faced after 13 critical flaws are urgently patched one week after the last release.
June 4th 2020 - Russian hackers breach US Nuclear weapons contractor and more
In this episode
Hackers steal secrets from US nuclear missile contractor and hold data ransom using Maze ransomware.
A recent report from the US Cyberspace Solarium Commission recommends introducing new Technology & Standards to strengthen national cybersecurity defence.
Zoom has Restricted End-to-End Encryption to Paid Users Only
Google Faces Privacy Lawsuit Over Tracking Users in Incognito Mode
June 2nd 2020 - Cybersecurity Headlines
In this episode.
Reports claiming hacktivist group anonymous hacked into the Minneapolis Police Department.
There have been ongoing reports of multiple individual and coordinated attacks on the Minnesotas computer system amid civil unrest.
Indian e-Payments App Exposes Millions of Users in Massive Data Breach.
The NSA has warned against Russian based espionage and hacking organization Sandwarm will liking be attacking and exploiting a newly discovered vulnerability in e-mail servers.
Open Source Content Management System Joom la Discloses Data Breach.
Apple has paid $100,000k bug bounty to a security researcher who discovered a sign with apple feature which could have been abused by attackers to take over victims third-party applications.
June 1st 2020 - Cybersecurity Headlines
In this episode:
- LiveJournal is refusing to acknowledge a data breach of 26 million emails and passwords.
- UK Government Launches Funding Program to Boost Security of IoT Market.
- The American government has passed legislation to award large cash prizes to cybersecurity researchers to improve the national cybersecurity defence.
- Bank Of America has reported a security incident involving Paycheck protection program applications.
- A new report from Wandear indicates that abandoned apps pose a high-security risk to mobile phones.
Security Bash Trailer
Coming soon a dedicated cybersecurity news podcast for the busy individuals