Paul's Security Weekly (Audio) No CVE and No Accountability - Ed Skoudis - PSW #851
5 snips
Nov 14, 2024 Ed Skoudis, a renowned cybersecurity expert and SANS instructor, joins the discussion, diving into fascinating topics like zip files within zip files that perplex antivirus software. He emphasizes the huge accountability gaps in CVE management, sparked by vendors ignoring vulnerabilities in end-of-life software. The conversation also highlights this year’s Holiday Hack Challenge, focusing on its engaging structure and innovative designs. Additionally, they discuss the evolution of cybersecurity, from legacy system challenges to the importance of proactive vulnerability research.
AI Snips
Chapters
Transcript
Episode notes
Showcase Your Skills
- Create a blog or YouTube channel to showcase your cybersecurity skills and voice.
- This helps potential employers assess your knowledge and contributions.
China, Taiwan, and Cybersecurity
- China's interest in Taiwan has cybersecurity implications due to Taiwan's tech industry.
- The film "Zero Day" explores a potential Chinese invasion and its consequences.
Linux Kernel Patch and Performance
- A small Linux kernel patch improves performance by changing user space copying.
- It replaces a speculative execution defense with pointer masking.