To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Entendido!
Artwork

Tech News Tech News Hacking Hackingnews Security Securitynews Video Security Weekly Productions SecurityWeek
Contenido proporcionado por Security Weekly Productions. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Security Weekly Productions o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.

Similar a Security Weekly Podcast Network (Video)

Player FM : aplicación de podcast
¡Desconecta con la aplicación Player FM !
Get it on App Store Get it on Google Play

Security Weekly Podcast Network (Video) « »
How do we patch the right things? - PSW #840

1:02:37
 
Reproducir
Reproduciendo
Compartir
 

MP4Episodio en casa
Manage episode 435586577 series 2794675
Contenido proporcionado por Security Weekly Productions. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Security Weekly Productions o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.

Every week here on the show we talk about vulnerabilities and exploits. Typically we recommend that organizations remediate these vulnerabilities in some way. But how? And more importantly, which ones? Some tools we have to help us are actually not all that helpful at time, such as:

  • Mitre Att&ck - Don't get me wrong, this is a great project and Adam and team is doing a great job. However, its not a complete picture as we can't possibly know about every attack vector (or can we?). People seem to think if they cover everything in the framework they will be secure. You can't cover everything in the framework because each technique can be utilized by an attack in a hundred different ways.
  • CVSS - Anyone can apply a score, but who is correct? Good that we have a way to score things, but then people will just use this as a basis for what they patch and what they do not. Also, chaining vulnerabilities is a thing, but we seem to lack any way to assign a score to multiple vulnerabilities at once (different from a technique). Also, some things don't get a CVE, how are you tracking, assessing risk, and patching these?
  • CISA KEV - Again, love the project and Tod is doing amazing work. However, what about things that do not get a CVE? Also, how do you track every incident of an attacker doing something in the wild? Also, there is frequency, just because something got exploited once, does that mean you need to patch it right away? How are we tracking how often something is exploited as it is not just a binary "yes, its exploited" or "no, it is not".
  • EPSS - I do like the concept and Wade and Jay are doing amazing work. However, there seems to be a "gut reaction" thing going on where we do see things being exploited, but the EPSS score is low. How can we get better at predicting? We certainly have enough data, but are we collecting the right data to support a model that can tell us what the attackers will do next?

Show Notes: https://securityweekly.com/psw-840

  continue reading

4211 episodios

#Tech #News #Tech News #Hacking #Hackingnews #Security #Securitynews #Video #Security Weekly Productions #SecurityWeek
Artwork

How do we patch the right things? - PSW #840

Security Weekly Podcast Network (Video)

0-10 subscribers

published

Reproducir Reproduciendo
iconCompartir
 
MP4Episodio en casa
Manage episode 435586577 series 2794675
Contenido proporcionado por Security Weekly Productions. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Security Weekly Productions o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.

Every week here on the show we talk about vulnerabilities and exploits. Typically we recommend that organizations remediate these vulnerabilities in some way. But how? And more importantly, which ones? Some tools we have to help us are actually not all that helpful at time, such as:

  • Mitre Att&ck - Don't get me wrong, this is a great project and Adam and team is doing a great job. However, its not a complete picture as we can't possibly know about every attack vector (or can we?). People seem to think if they cover everything in the framework they will be secure. You can't cover everything in the framework because each technique can be utilized by an attack in a hundred different ways.
  • CVSS - Anyone can apply a score, but who is correct? Good that we have a way to score things, but then people will just use this as a basis for what they patch and what they do not. Also, chaining vulnerabilities is a thing, but we seem to lack any way to assign a score to multiple vulnerabilities at once (different from a technique). Also, some things don't get a CVE, how are you tracking, assessing risk, and patching these?
  • CISA KEV - Again, love the project and Tod is doing amazing work. However, what about things that do not get a CVE? Also, how do you track every incident of an attacker doing something in the wild? Also, there is frequency, just because something got exploited once, does that mean you need to patch it right away? How are we tracking how often something is exploited as it is not just a binary "yes, its exploited" or "no, it is not".
  • EPSS - I do like the concept and Wade and Jay are doing amazing work. However, there seems to be a "gut reaction" thing going on where we do see things being exploited, but the EPSS score is low. How can we get better at predicting? We certainly have enough data, but are we collecting the right data to support a model that can tell us what the attackers will do next?

Show Notes: https://securityweekly.com/psw-840

  continue reading

4211 episodios

#Tech #News #Tech News #Hacking #Hackingnews #Security #Securitynews #Video #Security Weekly Productions #SecurityWeek

すべてのエピソード

×
 
Loading …

Bienvenido a Player FM!

Player FM está escaneando la web en busca de podcasts de alta calidad para que los disfrutes en este momento. Es la mejor aplicación de podcast y funciona en Android, iPhone y la web. Regístrate para sincronizar suscripciones a través de dispositivos.

 

Similar a Security Weekly Podcast Network (Video)

Escucha más de 500 temas
Player FM : aplicación de podcast
¡Desconecta con la aplicación Player FM !
Get it on App Store Get it on Google Play

Guia de referencia rapida

Los mejores podcasts
El Larguero
Cronómetro
Deportes COPE
Libros para Emprendedores
Profesor Briceño
Nadie Sabe Nada
A Vivir Que Son Dos Días
Hora de cultura POP!
Economía directa
MarcianoCast
Contacto Sur
Hora 25
Aprendiendo GTD y productividad
Cienciaes.com
Hablando con Científicos - Cienciaes.com
La Tortulia Podcast: Episodios
Radio Ambulante
Dr. Muerte
Dr. Muerte (España)
Leyendas Legendarias
Player FM logo
Ayuda/Preguntas frecuentes | Mejorar | Anunciar
Arte|Finanzas|Comedia|Economía|Entretenimiento|Noticias|Política|Religión
Ciencias|Futbol|Deportes|Narración de historias|Tecnología|Crímenes reales
Copyright 2024 | Mapa del sitio | Política de privacidad | Términos de servicio | | Derechos de autor
Episode being played series thumbnail
icon icon
Velocidad
Ajustes de las series
1x
1x
Volume
100%
icon
icon icon
/

Ver Player FM en ...
Player FM
Browser
Chrome
Safari
Firefox