loader from loading.io

Episode 111 - OWASP Top 10 - A5 - Security Misconfigurations

Security In Five Podcast

Release Date: 11/14/2017

Episode 1201 - When You Expose Servers Online, Pay Attention To All The Ports As Well show art Episode 1201 - When You Expose Servers Online, Pay Attention To All The Ports As Well

Security In Five Podcast

Exposing services to the open Internet is a necessity if you have an Internet business. However, there are components of a service/server that you don't want open. This episode talks about how benign ports/protocols that are unused but open can lead to an attack. Source - API Report - Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1200 - Google Releases Service To Help Secure Open Source Software show art Episode 1200 - Google Releases Service To Help Secure Open Source Software

Security In Five Podcast

Google announced at the annual Security Summit a new service to help secure open source software. Calles Assured Open Source Software, Google plans to manage, scan and monitor open source packages making it easier for enterprises to trust the software supply chain. Source - Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1199 - Microsoft Releases Broken Patch, Trust But Verify show art Episode 1199 - Microsoft Releases Broken Patch, Trust But Verify

Security In Five Podcast

Patches are released frequently for many reasons. Patches are meant to be added to your software/systems but they are new changes and should be verified. This week Microsoft released a patch that caused an unintended bug with domain controllers, this episode talked about a trust but verify approach to your patch process. Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1198 - If You Use A Crypto Exchange You May Not Own Your Coins show art Episode 1198 - If You Use A Crypto Exchange You May Not Own Your Coins

Security In Five Podcast

Coinbase, one of the most popular cryptocurrency exchange, release a statement about the state of your holdings with them. This episode talks about the risks of using an exchange to manage your coins on your behalf and what they now means in the event of a bankruptcy or another impact to the company that has your wallets. Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1197 - GitHub Requiring Multi-Factor Authentication For Code Contributors show art Episode 1197 - GitHub Requiring Multi-Factor Authentication For Code Contributors

Security In Five Podcast

GitHub, the most popular code-sharing site, will be making two-factor authentication mandatory for code supplies by the end of 2023. This episode talks about this and why would shouldn't wait until their deadlines to improve your accounts. Source - /   Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1196 - Passwordlesss Authentication Is One Step Closer, Major Announcement show art Episode 1196 - Passwordlesss Authentication Is One Step Closer, Major Announcement

Security In Five Podcast

Passwordless authentication is the future of the industry and it's taken one step closer to being widespread. This episode talks about an announcement Apple, Microsoft, Google had in partnership with the FIDO Alliance. Source - Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1195 - Today Is World Password Day show art Episode 1195 - Today Is World Password Day

Security In Five Podcast

Today is World Password Day. A security 'holiday' observed the first Thursday of May since 2013. This episode talks about World Password Day and what Passwordless Authentication looks like and the challenges to integrate into a business. Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1194 - The Myth Of Blockchain Anonymity show art Episode 1194 - The Myth Of Blockchain Anonymity

Security In Five Podcast

Blockchain is the anonymous ledger driving the cryptocurrency revolution. This episode talks about the myth that blockchain is 100% anonymous. Upcoming Book - Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1193 - Google Expanding Removal Requests Of Personal Data From Searches show art Episode 1193 - Google Expanding Removal Requests Of Personal Data From Searches

Security In Five Podcast

Google allows users to request to remove personal information from their search results. They are expanding that policy and allowing more personal information to be requested to be removed such as email addresses, phone numbers and so on. This episode talks about this expansion and what it means and what it doesn't mean for your data on the Internet. Be aware, be safe. Google Removal Request - Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline Episode 1192 - Microsoft Edge Is Getting A VPN show art Episode 1192 - Microsoft Edge Is Getting A VPN

Security In Five Podcast

Microsoft Edge appears to be getting a built-in VPN. This episode talks about the new feature called Secure Network and the details around this and when you can expect it. Be aware, be safe. Become A Patron! *** Support the podcast with a cup of coffee *** - —————— Where you can find Security In Five —————— - , , , , , Email - 

info_outline
 
More Episodes

Halfway through the OWASP Top 10 mini-series we reached number 5, Security Misconfigurations. This item in the top 10 shows that the OWASP covers more than the code. Security Misconfigurations deals with the entire application stack and that means more than the developers need to be involved in the development cycle. This episode goes over the control and the partnership of developers and IT.

OWASP Top 10 - A5 - Security Misconfigurations

Be aware, be safe.

------------------------------------

Website - https://www.binaryblogger.com

Podcast RSS - http://securityinfive.libsyn.com/rss

Twitter @binaryblogger - https://www.twitter.com/binaryblogger

iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2

YouTube - https://www.youtube.com/binaryblogger

TuneIn Radio - Security In Five Channel

iHeartRadio - Security In Five Channel

Email - [email protected]