Does DNS Fit Into A Secure Architecture – Paul’s Security Weekly #605

[embedded content] In our second segment, we welcome Justin Murphy, Cloud Security Engineer at Cisco, to talk about DNS in the Security Architecture! Full Show Notes Follow us on Twitter: https://www.twitter.com/securityweekly Jeff Man – Sr. InfoSec Consultant, Online Business Systems. Patrick Laverty – Security Consultant, Rapid 7. Doug White – Professor, Roger Williams University. Lee Neely – Senior Cyber Analyst , Lawrence Livermore National Laboratory. http://traffic.libsyn.com/sw-all/Does_DNS_Fit_Into_A_Secure_Architecture_-_Pauls_Security_Weekly_605_converted.mp3 Share this:

May 24, 2019
Read More >>

Google, Huawei, & Windows 0-Day – Paul’s Security Weekly #605

[embedded content] In our final segment, Doug, Jeff, Patrick, and Lee give you the latest security news to talk about a Zero Day for Windows, the battle over Huawei with the US and Google, & unpatched hardware and companies tripping themselves up! Doug’s Stories https://nakedsecurity.sophos.com/2019/05/23/the-city-of-baltimore-is-being-held-hostage-by-ransomware/ https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-bug-in-windows-10-task-scheduler/ https://vulmon.com/vendoradvisory?qidtp=huawei_security_advisories&qid=00906a438725b28e1fe0958213b604e9 //discussion about Google and Huawei// https://theweek.com/articles/842837/googles-huawei-ban-exposes-alarming-app-store-duopoly https://theweek.com/speedreads/841493/report-trump-expected-sign-executive-order-that-block-huawei-from https://www.xda-developers.com/google-revoke-huawei-android-ban-blacklist/ Lee’s Stories Sensitive Data for 2.25 Million Russians exposed online Unsecured Survey Databases exposes infor…

May 24, 2019
Read More >>

Join us at AWS re:Inforce for the Builders Fair!

AWS is launching its first conference dedicated to cloud security, AWS re:Inforce, which will take place June 25-26, 2019 at the Boston Convention and Exhibition Center. At AWS, we encourage everyone to be a builder, to learn and be curious, and to use AWS products and services to explore the Art of the Possible. At re:Inforce, you’ll have an opportunity to see our “culture of building” at the AWS re:Inforce…

May 24, 2019
Read More >>

GitHub Adds New Tools to Help Developers Secure Code

Microsoft-owned GitHub on Thursday announced the introduction of several new security tools and features designed to help developers secure their code. The code hosting service in 2017 launched a new security feature designed to warn developers if the software libraries used by their projects contain any known vulnerabilities. Since the introduction of the security alerts has resulted in significantly fewer vulnerable code libraries on the platform, GitHub has continued to…

May 24, 2019
Read More >>

One Year on, EU’s GDPR Sets Global Standard for Data Protection

The EU’s strict data laws have set the global benchmark for protecting personal information online since coming into force a year ago, but some worry that many users have barely noticed the change. The “General Data Protection Regulation” (GDPR), launched on May 25 last year, enhances the rights of internet users and imposes a wide range of obligations on companies, including that they request explicit consent to use personal data…

May 24, 2019
Read More >>

New York Department of Financial Services Launches Cybersecurity Unit

The New York State Department of Financial Services (DFS) this week announced that it has launched a new cybersecurity division whose role is to protect consumers and financial services organizations from cyber threats. According to the DFS, this is the first time a banking or insurance regulator launches such a division. The new unit will be responsible for enforcing the DFS’s cybersecurity regulations, advising on cybersecurity examinations, issuing guidance for…

May 24, 2019
Read More >>

Microsoft Brings Hardware-Based Isolation to Chrome, Firefox

Microsoft this week made the Windows Defender Application Guard extensions generally available, which now provides hardware-based isolation to all Chrome and Firefox users on Windows 10. First introduced in 2017 and designed to isolate browser-based attacks, the container technology has been available only to Microsoft Edge until earlier this year, when Microsoft released the Windows Defender Application Guard extensions to Windows Insiders.  The extensions leverage a native application that handles…

May 24, 2019
Read More >>