Appsec lessons from the Okta breach, directory traversal (and appsec) lessons from SolarWinds, how CISOs and Boards rank factors around vulns and patching, revisiting cryptocurrency attacks for lessons in business logic and threat modeling, CISA and friends update guidance on Secure Design, and more!
Visit www.securityweekly.com/asw for all the latest episodes!
Show Notes: securityweekly.com/asw-260
00:00 - Introduction: Okta breach, SolarWinds RCEs, and business logic vulnerabilities discussed.
00:32 - Point 1: Prioritizing secure by design and secure by default for CISOs and Boards.
02:15 - Point 2: Importance of addressing vulnerabilities and improving application security.
03:48 - Point 3: Challenges in patching and maintaining vulnerabilities in legacy software.
05:20 - Point 4: Release of Secure by Design guidance from CISA and international partners.
06:45 - Point 5: Analyzing the BlackHole token exploit and lessons learned about business logic vulnerabilities.
08:10 - Point 6: [Add Content Here]
09:30 - Point 7: [Add Content Here]
10:55 - Conclusion: Summarizing the key takeaways and next steps.
Негізгі бет Ғылым және технология Okta Breach, SolarWinds RCEs, CISOs and Boards, Crypto Business Logic, Secure Design - ASW
Пікірлер