Podcast Episodes

Back to Search
Bringing CISA's Secure by Design Principles to OT Systems - Matthew Rogers - ASW #334
Bringing CISA's Secure by Design Principles to OT Systems - Matthew Rogers - ASW #334

CISA has been championing Secure by Design principles. Many of the principles are universal, like adopting MFA and having opinionated defaults that r…

9 months, 1 week ago

Short Long
View Episode
AIs, MCPs, and the Acutal Work that LLMs Are Generating - ASW #333
AIs, MCPs, and the Acutal Work that LLMs Are Generating - ASW #333

The recent popularity of MCPs is surpassed only by the recent examples deficiencies of their secure design. The most obvious challenge is how MCPs, a…

9 months, 2 weeks ago

Short Long
View Episode
AI in AppSec: Agentic Tools, Vibe Coding Risks & Securing Non-Human Identities - Mo Aboul-Magd, Shahar Man, Brian Fox, Mark Lambert - ASW #332
AI in AppSec: Agentic Tools, Vibe Coding Risks & Securing Non-Human Identities - Mo Aboul-Magd, Shahar Man, Brian Fox, Mark Lambert - ASW #332

ArmorCode unveils Anya—the first agentic AI virtual security champion designed specifically for AppSec and product security teams. Anya brings togeth…

9 months, 2 weeks ago

Short Long
View Episode
Appsec News & Interviews from RSAC on Identity and AI - Rami Saas, Charlotte Wylie - ASW #331
Appsec News & Interviews from RSAC on Identity and AI - Rami Saas, Charlotte Wylie - ASW #331

In the news, Coinbase deals with bribes and insider threat, the NCSC notes the cross-cutting problem of incentivizing secure design, we cover some re…

9 months, 3 weeks ago

Short Long
View Episode
Secure Code Reviews, LLM Coding Assistants, and Trusting Code - Rey Bango, Karim Toubba, Gal Elbaz - ASW #330
Secure Code Reviews, LLM Coding Assistants, and Trusting Code - Rey Bango, Karim Toubba, Gal Elbaz - ASW #330

Developers are relying on LLMs as coding assistants, so where are the LLM assistants for appsec? The principles behind secure code reviews don't real…

10 months ago

Short Long
View Episode
AI Era, New Risks: How Data-Centric Security Reduces Emerging AppSec Threats - Vishal Gupta, Idan Plotnik - ASW #329
AI Era, New Risks: How Data-Centric Security Reduces Emerging AppSec Threats - Vishal Gupta, Idan Plotnik - ASW #329

We catch up on news after a week of BSidesSF and RSAC Conference. Unsurprisingly, AI in all its flavors, from agentic to gen, was inescapable. But pe…

10 months, 1 week ago

Short Long
View Episode
Secure Designs, UX Dragons, Vuln Dungeons - Jack Cable - ASW #328
Secure Designs, UX Dragons, Vuln Dungeons - Jack Cable - ASW #328

In this live recording from BSidesSF we explore the factors that influence a secure design, talk about how to avoid the bite of UX dragons, and why d…

10 months, 2 weeks ago

Short Long
View Episode
Managing Secrets - Vlad Matsiiako - ASW #327
Managing Secrets - Vlad Matsiiako - ASW #327

Secrets end up everywhere, from dev systems to CI/CD pipelines to services, certificates, and cloud environments. Vlad Matsiiako shares some of the t…

10 months, 3 weeks ago

Short Long
View Episode
More WAFs in Blocking Mode and More Security Headaches from LLMs - Sandy Carielli, Janet Worthington - ASW #326
More WAFs in Blocking Mode and More Security Headaches from LLMs - Sandy Carielli, Janet Worthington - ASW #326

The breaches will continue until appsec improves. Janet Worthington and Sandy Carielli share their latest research on breaches from 2024, WAFs in 202…

11 months ago

Short Long
View Episode
In Search of Secure Design - ASW #325
In Search of Secure Design - ASW #325

We have a top ten list entry for Insecure Design, pledges to CISA's Secure by Design principles, and tons of CVEs that fall into familiar categories …

11 months, 1 week ago

Short Long
View Episode

Love PodBriefly?

If you like Podbriefly.com, please consider donating to support the ongoing development.

Support Us