Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

OWASP APPSEC Cali 2018, Davi Ottenheimer's 'Unpoisoned Fruit: Seeding Trust Into A Growing World of Algorithmic Warfare' →

April 14, 2018 by Marc Handelman in OWASP, Application Security, Artificial Intelligence, Machine Learning, Information Security
April 14, 2018 /Marc Handelman
OWASP, Application Security, Artificial Intelligence, Machine Learning, Information Security

OWASP APPSEC Cali 2018, Omer Levi Hevroni's 'Authentication Without Authentication' →

April 14, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security
April 14, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security

OWASP APPSEC Cali 2018, Matt Austin's 'MarkDoom: How I Hacked Every Major IDE in 2 Weeks' →

April 13, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security
April 13, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security

OWASP APPSEC Cali 2018, Izar Tarandach's 'The Best Flaw Didn't Make Into Production' →

April 12, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security
April 12, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security

OWASP APPSEC Cali 2018, Swapnil Deshmukh's 'Pack your Android: Everything You Need To Know About Android Boxing' →

April 11, 2018 by Marc Handelman in Android, Android Data Leakage, Application Security, Conferences, Education, Information Security, OWASP
April 11, 2018 /Marc Handelman
Android, Android Data Leakage, Application Security, Conferences, Education, Information Security, OWASP

OWASP APPSEC Cali 2018, Clint Gibler's 'SecDevOps: Current Research and Best Practices' →

April 10, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security, DevSecOps, DevOps, SecOps, SecDevOps, Infosec Coding
April 10, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security, DevSecOps, DevOps, SecOps, SecDevOps, Infosec Coding

The Noggin Tales: Flaws of EEG →

April 10, 2018 by Marc Handelman in Medicine, Medical Device Security, Information Security, Application Security

News, via Sean Gallagher - writing at Ars Technica, details at least five critical flaws in a multi-vender software package shipped under the moniker 'Natus Xltek NeuroWorks 8'. Give’s one pause, before hooking up to the machines at your local body shop, eh?

"While attacking an EEG system won't necessarily harm a patient directly, the vulnerabilities described by Talos could be used to create a persistent presence on hospital networks for a number of malicious purposes, or to execute code that could install malware if the Internet is reachable from the system." via Sean Gallagher writing at Ars Technica

April 10, 2018 /Marc Handelman
Medicine, Medical Device Security, Information Security, Application Security

OWASP APPSEC Cali 2018, James Wickett's 'The Path Of DevOps Enlightenment For InfoSec' →

April 09, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, DevOps, DevSecOps, SecDevOps, SecOps, Information Security
April 09, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, DevOps, DevSecOps, SecDevOps, SecOps, Information Security

OWASP APPSEC Cali 2018, Josh Sokol's 'Architecting for Security in the Cloud' →

April 08, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education
April 08, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education

OWASP APPSEC Cali 2018 - Mike Shema's 'DevOps Is Automation, DevSecOps Is People' →

April 07, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security, Risk Management, Risk
April 07, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security, Risk Management, Risk

OWASP APPSEC Cali 2018, Skip Hovsmith's 'A Tour of API Underprotection' →

April 06, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, API, API Security Management
April 06, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, API, API Security Management

OWASP APPSEC Cali 2018, Caroline Wong's 'The Only Reason Security Really Matters for DevOps' →

April 05, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security, SecDevOps, SecOps, DevSecOps
April 05, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security, SecDevOps, SecOps, DevSecOps

OWASP APPSEC Cali 2018 - Eric Baize's 'Opening Keynote - Flipping the script: Fighting Advanced Threats at their Software Roots' →

April 04, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security
April 04, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security

OWASP APPSEC Cali 2018, 'Threat Modeling Panel' →

April 03, 2018 by Marc Handelman in OWASP, Application Security, Conferences, Education, Information Security
April 03, 2018 /Marc Handelman
OWASP, Application Security, Conferences, Education, Information Security

OWASP APPSEC Cali 2018, Jonathan Marcil's 'Threat Modeling Toolkit'

April 02, 2018 by Marc Handelman in Application Security, Conferences, OWASP, Information Security
April 02, 2018 /Marc Handelman
Application Security, Conferences, OWASP, Information Security

OWASP APPSEC Cali 2018, Andrew van der Stock's 'OWASP Top 10' →

April 01, 2018 by Marc Handelman in Application Security, Conferences, Education, Information Security, OWASP
April 01, 2018 /Marc Handelman
Application Security, Conferences, Education, Information Security, OWASP

OWASP APPSEC Cali 2018 - Women In Security, The Panel →

March 31, 2018 by Marc Handelman in Application Security, OWASP, Information Security, Cybersecurity, Women In Infosec
March 31, 2018 /Marc Handelman
Application Security, OWASP, Information Security, Cybersecurity, Women In Infosec

OWASP APPSEC Cali 2018, Richard Seiersen's 'Opening Keynote: Prove It! Confronting Security With Data' →

March 30, 2018 by Marc Handelman in OWASP, Application Security, Information Security, Conferences, Education
March 30, 2018 /Marc Handelman
OWASP, Application Security, Information Security, Conferences, Education
steth-on-phone.jpg

Adam Shostack's 'Building An Application Security Team' →

October 25, 2017 by Marc Handelman in Application Security, Information Security

Certainly the most ereudite take on the Application Security realm we now may find ourselves in. Adam nails the team building aspect (within the Application Security space) quite nicely, indeed... Today's Must Read.

October 25, 2017 /Marc Handelman
Application Security, Information Security

USENIX Enigma 2017 — Julien Vehen's 'Test Driven Security in Continuous Integration' →

August 21, 2017 by Marc Handelman in Conferences, Education, Information Security, Application Security, USENIX
August 21, 2017 /Marc Handelman
Conferences, Education, Information Security, Application Security, USENIX
  • Newer
  • Older