AppSec Now
AppSec Now is a podcast aimed at delivering the top stories from the latest (mosttly application) security news and interesting guests from the application security community.
Episodes
🔒 Welcome to this week’s episode of AppSecNow, the DevCentral podcast dedicated to all things application security! 🚨 This week, we unpack critical updates including:
💥 A zero-day SAP CVE with a CVSS score of 10—what it means, how it's being exploited, and what you can do to defend against it.
🛠️ A groundbreaking Parquet tool from F5 Labs that simplifies vulnerability testing for critical supply chain security issues.
...
Join Merlyn Chase, MegaZone, and Aubrey on this week’s AppSec Now podcast as they dive into the latest topics in application security! 🚀 From the recent B-Sides Seattle conference to critical discussions on EV car hacking, cybersecurity quandaries, AI-generated passports bypassing KYC, and Japan’s groundbreaking Active Cyber Defense Bill—you don’t want to miss this one. Plus, learn how AppSecNow is keeping you ahead with insights ...
Join our AppSec experts—Merlyn, Malcolm, MegaZone, and host Chase Abbott—as they dig into some of the latest stories shaking up the cybersecurity world. This week's AppSec Now explores an active campaign targeting Amazon EC2 instance metadata via SSRF vulnerabilities, and why that's a wider-reaching problem than you might think. We discuss Oracle's controversial handling of their cloud breach and the impact of trust in the disclosu...
Dive into the latest episode of AppSecNow, where we break down the Ingress Nightmare vulnerability impacting NGINX and Kubernetes environments, plus the implications of a critical CVE in Next.js, one of the most widely-used JavaScript frameworks with 9 million weekly downloads.
Join Aubrey, Chase, and Merlyn for expert analysis on the security landscape, from Chromium Zero Day concerns to ransomware gangs getting pwned. Stay informe...
Welcome to the 31st episode of AppSec Now! This week, our hosts Aubrey, David Warburton, Chase Abbott, and MegaZone get into some hot topics in the world of application security. Our focus is on the latest F5 Labs Advanced Persistent Bots report, highlighting the ever-evolving landscape of bot attacks and the importance of robust mitigation strategies. We analyze Google's hefty $32 million acquisition of Wiz, exploring what thi...
Join us for the thirtieth episode of AppSecNow, a DevCentral podcast dedicated to the latest trends and threats in the application security (AppSec) world. In this episode, host Aubrey King is joined by Malcolm Heath, Chase Abbott, and MegaZone to dive into recent security incidents and developments, including a detailed analysis of the Coinbase phishing scam, the resurgence of user-mode rootkits with OBSCURE#BAT, the BRUTED brute ...
Welcome to the latest episode of AppSec Now, a DevCentral podcast dedicated to the ever-evolving world of application security. In this episode, Chase takes the reins while Aubrey is away, joined by Malcolm Heath, a principal researcher at F5 Labs, and the illustrious MegaZone, a principal security engineer on the SIRT team.
We dive deep into the recent Apache Camel remote code execution vulnerability, discussing the initial panic a...
Join Aubrey, MegaZone, and Merlyn in this week's episode of AppSec Now as they dive into the latest in application security. This week, we discuss Microsoft's groundbreaking Majorana One chip, capable of scaling up to a million qubits and its potential impact on quantum computing. We also explore the recent critical vulnerabilities in MongoDB libraries and OpenSSH, analyzing their implications and mitigations. We dig into t...
In this episode of AppSec Monthly, join our host, MegaZone, joined by Malcolm Heath, Merlyn Albery-Speyer and Aubrey King, as they dive into the latest cybersecurity news. We explore the complexities of the TikTok ban, the impact of geopolitical decisions on internet freedom, and the nuances of data sovereignty. Our experts also discuss the implications of recent breaches by Chinese state actors and the importance of using end-to-e...
Welcome to our special year-end episode of AppSec Monthly, a DevCentral podcast! In this exciting edition, we join forces with the experts at F5 Labs to bring you our highly anticipated cybersecurity predictions for the year ahead. Our panel, including David Warburton, Aubrey King, and Megazone, dives deep into the trends and emerging threats that are set to shape the cybersecurity landscape in 2025. Whether you're an IT profession...
Welcome to the latest episode of AppSec Monthly! In this episode, we delve into IT policies, recent cybersecurity trends, and sophisticated attack detection with industry experts David Warburton, Malcolm Heath, and MegaZone.
Special guests Adeolu and Shuang from F5 Labs share their latest research on Black Friday shopping trends, automation, and bot attacks, providing insights into the types of bots targeting retailers and their im...
Welcome to another exciting episode of AppSec Monthly, brought to you by DevCentral! This month, we dive deep into various aspects of application security with contributions from Aaron Brailsford, Malcolm Heath, and MegaZone! We discuss the importance of integrating security early in the development process, the critical role of trust in cybersecurity, and the recent buzz around CUPS vulnerabilities. Hear about the latest exploit...
After a small summer break, the gang's back and talking DDoS with F5 Labs' new DDoS Report. David Warburton lays it all out for us after a healthy dose of news with Aaron Brailsford, Malcolm Heath and, for the first time, MegaZone! Tune in for this action packed episode 23 for July of 2024!
In May of 2024, Aubrey King, from DevCentral, went to #RSAC. While there, he got a chance to hook up with Steve Wilson and Ken Huang to talk about security authoring - 'how to get going' and 'what's the process like?' - before catching up with Akira Brand, who talks about speaking at RSA and more!
It's an action packed Episode 22 before we even get to our roundtable, where F5 Labs' David Warburton and A...
In Episode 21, we change our name! Welcome AppSec Monthly, goodbye This Month In Security. In addition to that new in April of 2024, DevCentral's Aubrey King catches up with Semgrep's Jonathan Werrett to talk about how the AI phenomenon changes the game for Red and Blue Teamers out there in the security world. Also, Aubrey catches up with DevCentral OG, Peter Silva, to talk about 5g security and app isolation for security. ...
DevCentral's Aubrey King is joined by Dave Warburton, Malcolm Heath and Aaron Brailsford this month for the roundtable and he shares a conversation with Dan Barahona about the APISec University 2024 API Security Market Review they just published and shares the news about APISec Con, coming up on May 22. There's also a teaser of an #AppWorld2024 AI API Security panel conversation between Aubrey, Dan, Corey Ball and Cameron D...
In Episode 19 of This Month In Security, Aubrey King catches back up with Tashaffi Samin Yeasar to talk about her daily grind and an IoT coder who's using AI at the edge and some of the security implications of Edge AI. Also, Byron McNaught jumps into the monthly roundtable with Aaron Brailsford and David Warburton, where they talked a bit about AI and deepfakes, as well as some of the latest Ransomware news out there.
This Month In Security, Aubrey King gets to talk to DevCentral MVP Daniel Wolf about how he recommends customers build WAF policy from SBOM. Aaron Brailsford shares the roundtable with Malcolm Heath and Sander Vinberg. Also, we get a sample from This Week In Security.
This week in security, our editor is AaronJB, who brings news of a VMWare exploit that might be older than Aubrey! Also, countless exploits and some amazing videos from The 37th Chaos Communication Congress.
Read the full article here: https://community.f5.com/t5/technical-articles/time-to-exploit-and-large-scale-breaches-jan-15th-21st-2024-f5/ta-p/327201
This Week In Security is a contribution to DevCentral by the F5 Security Inci...
This Week In Security, our editor is Jordan_Zebor, who shows the community about Github's Runner Poisoning, a cloud threat called F-Bot and an attack on Hadoop!
Read the full article here:
https://community.f5.com/t5/technical-articles/compromised-ci-cd-fbot-and-hadoop-attacks-jan-7th-14th-2023-f5/ta-p/326973
This Week In Security is a contribution to DevCentral by the F5 Security Incident Response Team and you can fi...
Popular Podcasts
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
I’m Jay Shetty host of On Purpose the worlds #1 Mental Health podcast and I’m so grateful you found us. I started this podcast 5 years ago to invite you into conversations and workshops that are designed to help make you happier, healthier and more healed. I believe that when you (yes you) feel seen, heard and understood you’re able to deal with relationship struggles, work challenges and life’s ups and downs with more ease and grace. I interview experts, celebrities, thought leaders and athletes so that we can grow our mindset, build better habits and uncover a side of them we’ve never seen before. New episodes every Monday and Friday. Your support means the world to me and I don’t take it for granted — click the follow button and leave a review to help us spread the love with On Purpose. I can’t wait for you to listen to your first or 500th episode!
Listen to 'The Bobby Bones Show' by downloading the daily full replay.
The Clay Travis and Buck Sexton Show. Clay Travis and Buck Sexton tackle the biggest stories in news, politics and current events with intelligence and humor. From the border crisis, to the madness of cancel culture and far-left missteps, Clay and Buck guide listeners through the latest headlines and hot topics with fun and entertaining conversations and opinions.