podcast | Vince in the Bay | Page 2

Tag Archives: podcast

Leave a comment

Amazon Web Services, AWS, bug bounties, Cyber Security, hacking, infosec, pen-testing, privilege escalation vulnerabilities, technology

PODCAST: Ben & Spencer from Rhino Security Labs

Ben-Spencer-tiled

Benjamin Caudill and Spencer Gietzen of Rhino Security Labs

Benjamin Caudill and Spencer Gietzen of Rhino Security Labs join me to discuss their research on Amazon Web Services privilege escalation vulnerabilities. Spencer recently revealed their AWS research on the Rhino Security Labs blog. Rhino is also rolling out a new open source AWS post-exploitation framework, designed for offensive security testing against AWS environments called Pacu. We also discuss how Ben and Spencer both found their way into the information security industry, pet peeves and more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!

Tagged Amazon Key, Amazon Web Services, AWS, Benjamin Caudill, computers, hacking, Information Security, infosec, Internet, Pacu, podcast, Privacy, privilege escalation vulnerabilities, Rhino Security Labs, security, Spencer Gietzen, tech, technology

Leave a comment

Cyber Security, infosec, Old Lady Gangs, Privacy, RSA Conference, Social Engineering

PODCAST: RSAC 2018 – Jessy Irwin

Guest Jessy Irwin

This episode’s guest is Jessy Irwin, Head of Security at Tendermint. We spoke at RSAC 2018 in San Francisco where she presented Cracking the Security Communications Code: Talk about Security without FUD. She also did a talk at OURSA entitled Defense in Depth: Building An Old Lady Gang. Check out Jessy’s website!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!

Tagged Cyber Security, hacking, Information Security, Jessy Irwin, Old Lady Gangs, OURSA, podcast, RSA Conference 2018, RSAC18, security, Tendermint

Leave a comment

Cyber Security, hacking, infosec, OSINT, pen-testing, RSA Conference, SECTF, Social Engineering, vishing

PODCAST: RSAC 2018 – Joe Gray

My guest this episode is social engineering guru Joe Gray. Joe is a Senior Security Architect at IBM and has his own blog and podcast called Advanced Persistent Security. Joe presented a talk at RSA this year with friend of the show Rachel Tobac on social engineering and OSINT which I posted the full audio of here. Joe spoke with me about Social Engineering, OSINT, vishing, SECTFs, password inspections and more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!!

Tagged ADVANCED PERSISTENT SECURITY, Cyber, Cyber Security, cybersecurity, hacking, Information Security, infosec, Internet, Joe Gray, OSINT, pen-testing, podcast, RSA Conference 2018, SECTF, security, Security Research, Social Engineering, tech, technology, vishing

Leave a comment

Cyber Security, infosec, Internet Of Things, Privacy, RSA Conference, Social Engineering, technology

PODCAST: RSAC 2018 – Mark Nunnikhoven

Guest Mark Nunnikhoven

Mark is Vice President of Cloud Research at Trend Micro. He joined me at RSAC 2018 to discuss developing new email security gateway tools, operational technology in IoT, the new Cybersecurity Tech Accord, information security buzzwords and more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!!

Tagged computers, Cyber Security, Cybersecurity Tech Accord, hacking, Internet, Internet Of Things, IoT, Mark Nunnikoven, operational technology, Phishing, podcast, security, technology, The Cyber, Trend Micro, VITB, Writing Style DNA

Leave a comment

bug bounties, Cyber Security, Disclosure, Hackers, hacking, infosec, pen-testing, RSA Conference

PODCAST: RSAC 2018 – Katie Moussouris

Katie-M-RSAC2018

Guest Katie Moussouris

Katie is the founder and CEO of Luta Security. She presented a talk on bug bounties, penetration testing and vulnerability disclosure entitled “Bug Bounty Buzzword Bingo—Deep Dive under a Jumped Shark” at the RSA Conference last week in San Francisco. Check out her slides here.

After her talk she spoke with me about the evolution of bug bounty programs, her work in developing ISO standards for vulnerability disclosure, her path to a career in information security and much more.

This episode is the 1st in a series dedicated to RSA Conference 2018. Stay tuned for more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!!

Tagged bug bounties, Cyber Security, hacking, Information Security, infosec, Internet, Katie Moussouris, Luta Security, podcast, RSA Conference 2018, security, tech, technology, vulnerability disclosure

infosec, OSINT, pen-testing, RSA Conference, SECTF, Social Engineering, social media, vishing

RSAC 2018 – Rachel Tobac & Joe Gray

Compromising a Fortune 500 Business without Hacking a Thing!

DbKQ9cCVQAAgdhA

DbKQ-n_U8AA4xcm

Rachel Tobac and Joe Gray present at RSAC2018!!

A simulated compromise of a Fortune 500 company as part of a social engineering competition will lead to discussion about how data was collected using open source intelligence (OSINT) beyond that of social media and tools. It will identify places to find data, providing insight for more valuable data sources. This will include a demo of OSINT techniques, phishing and a pretexting discussion.

Learning Objectives:
1: Learn how to defend against social engineering.
2: Understand the relative ease in collecting open source intelligence (OSINT).
3: Learn more about the tools and techniques used in social engineering.

CLICK HERE FOR THE SLIDES FROM PRESENTATION

CLICK HERE TO DOWNLOAD MP3 FILE

Tagged hacking, Information Security, Internet, Joe Gray, OSINT, podcast, Rachel Tobac, RSA Conference 2018, security, Social Engineering, tech, technology

Leave a comment

Cyber Security, DefCon, DEFCON 25, hacking, infosec, Instagram, OSINT, pen-testing, SECTF, Social Engineering, technology, vishing

PODCAST: Rachel Tobac

Guest – Rachel Tobac

Rachel is co-founder and CEO of Social Proof Security and Chair of the Board of Women In Security and Privacy.

Rachel discusses (and demonstrates) the art of “vishing” and social engineering. She placed 2^nd twice in the Social Engineering Capture the Flag competition at DEFCON 24 and DEFCON 25 and has become a popular speaker and advocate for personal and organizational safety through social engineering awareness.

Subscribe via iTunes, GooglePlay and/or Stitcher!

DIRECT DOWNLOAD MP3 OF PODCAST

Tagged business, computers, Cyber Security, DefCon, DEFCON 25, hacking, Information Security, infosec, Instagram, Internet, podcast, Privacy, Rachel Tobac, SECTF, security, SEVilliage, Social Engineering, tech, technology, vishing

Black Hat, DefCon, DEFCON 25, Electronics, Hackers, hacking, Ham Radio, infosec, Internet Of Things, Radio, SDR, Software Defined Radio, technology

PODCAST: Richard Henderson

nOvUZyKi_400x400

Guest Richard Henderson talks about his workshop on SDR in Las Vegas at DEFCON25!

Slides from Richard’s SDR workshop at DEFCON 25: DEFCON-25-Scanning-The-Airwaves

Richard Henderson is global security strategist at Absolute Software. We recorded this interview in July 2017 during the Black Hat 2017 security conference in Las Vegas, NV. Podcast available on iTunes, Google Play and Stitcher. Subscribe!

Tagged Black Hat, computers, DefCon, DEFCON 25, hacking, Ham Radio, Information Security, infosec, Internet, Internet Of Things, IoT, podcast, Radio, SDR, security, Software Defined Radio, tech, technology

%d bloggers like this: