Security Bash

Aymeric Lagier is a cyber-security expert, consultant and trainer. He has worked with a range of different organizations which includes small teams all the way through to large international companies such as Thalis. Aymeric explains the different steps developers and organizations alike need to take to secure their applications at each stage of the SDLC. Mackenzie and Aymeric discuss the pros and cons to each step and different tools you can use.

Identity as a service or IDaaS, allows developers to offload the authentication and access control to a third party.  In this episode, Mackenzie Jackson and Ben Dechrai (Developer Advocate Auth0) discuss IDaaS, why you should and shouldn't implement it, how scalable is it, and is it really more secure than building authentication yourself.

in this episode we look into 3 new data breaches reports from Blacklist alliance, KreditPlus and TrueFire. Microsoft has record bug bounty payouts and we outline reports from Cloudflare and Accurics.

Securitybash is a cybersecurity news podcast with regular short news content. https://thesecuritybash.com 

A security flaw in Chinese drone manufacturers mobile application could lead to malicious applications being force installed. Mandatory Chinese tax software included spyware potentially stealing sensitive information. Digital bank Dave admits a data breach and an Australian watchdog takes on Google.

Security Bash is a cybersecurity news podcast that takes the most important information from daily security headlines. 

In this episode: Twilio suffers major security incident, Microsoftoffice becomes most targeted platform for attacks, Garmin is knocked out by ransomware attack, news from North korea and the latest on the Twitter hack.

In this episode, more details emerge from the twitter hack. Cyber Crime continues to rise alongside Covid-19 cases. The US has charged two Chinese nationals with stealing Covid-19 research and Adobe has been left red-faced after 13 critical flaws are urgently patched one week after the last release.

In this episode
Hackers steal secrets from US nuclear missile contractor and hold data ransom using Maze ransomware.

A recent report from the US Cyberspace Solarium Commission recommends introducing new Technology & Standards to strengthen national cybersecurity defence.

Zoom has Restricted End-to-End Encryption to Paid Users Only

Google Faces Privacy Lawsuit Over Tracking Users in Incognito Mode

In this episode. 

Reports claiming hacktivist group anonymous hacked into the Minneapolis Police Department. 

There have been ongoing reports of multiple individual and coordinated attacks on the Minnesotas computer system amid civil unrest. 

Indian e-Payments App Exposes Millions of Users in Massive Data Breach. 

The NSA has warned against Russian based espionage and hacking organization Sandwarm will liking be attacking and exploiting a newly discovered vulnerability in e-mail servers. 

Open Source Content Management System Joom la Discloses Data Breach. 

Apple has paid $100,000k bug bounty to a security researcher who discovered a sign with apple feature which could have been abused by attackers to take over victims third-party applications.

In this episode:

• LiveJournal is refusing to acknowledge a data breach of 26 million emails and passwords.
• UK Government Launches Funding Program to Boost Security of IoT Market.
• The American government has passed legislation to award large cash prizes to cybersecurity researchers to improve the national cybersecurity defence.
• Bank Of America has reported a security incident involving Paycheck protection program applications.
• A new report from Wandear indicates that abandoned apps pose a high-security risk to mobile phones.

Coming soon a dedicated cybersecurity news podcast for the busy individuals