All the News - Just Six Months Later - Application Security Weekly #265 - podcast episode cover

All the News - Just Six Months Later - Application Security Weekly #265

Application Security Weekly (Audio)
Dec 05, 20231 hr 10 min
--:--
--:--
Listen in podcast apps:
Metacast
Apple Podcasts
Spotify
Download
YouTube
Overcast
Pocket Casts
Episodes.fm
Download Metacast podcast app
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

We cover appsec news on a weekly basis, but sometimes that news is merely about the start of a new project, sometimes it's yet another example of a vuln class, and sometimes it's a topic we hope doesn't become a trend.

So, what themes have we seen and where do we see them going? Here are a few headline topics that have alternately generated yays and yawns.

  • CISA's Secure by Design and Secure by Default
  • CVSS 4.0
  • Generative AI
  • MFA mandates
  • Microsoft, Rust, and Memory Safety
  • New TLDs
  • OAuth
  • OpenSSF and OWASP

In the news, repetition extracts data from ChatGPT, more vulns in the software that surrounds AI, guidelines for secure AI, LogoFAIL trips a boot, BLUFFS attack on Bluetooth, CISA's first secure by design alert, Okta's updated breach disclosure, and more!

 

Visit https://securityweekly.com/asw for all the latest episodes!

Follow us on Twitter: https://www.twitter.com/secweekly

Like us on Facebook: https://www.facebook.com/secweekly

 

Show Notes: https://securityweekly.com/asw-265

For the best experience, listen in Metacast app for iOS or Android
Open in Metacast
All the News - Just Six Months Later - Application Security Weekly #265 | Application Security Weekly (Audio) podcast - Listen or read transcript on Metacast