Sign up to save your podcasts
Or
Share BadHost, Dead CTFs, Exploding NPMs, and the Verizon DBIR - ASW #385
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
BadHost, Dead CTFs, Exploding NPMs, and the Verizon DBIR - ASW #385
We dedicate an episode to catching up on appsec news with Kalyani Pawar. We see parsing problems that led to the BadHost vuln, which exposed lots of LLMs, MCPs, and agents to potential compromise. We wonder where to look for security education and practice as the camaraderie of the CTF community becomes infiltrated by LLMs. We talk about the tradeoffs in trust between using public packages vs. having agents write replacements from scratch. And we examine some of the appsec details that the Verizon DBIR reveals about how orgs are being attacked -- and how orgs might use that information to protect themselves.
Show Notes: https://securityweekly.com/asw-385
View all episodes
By Mike Shema
4.8
44 ratings
We dedicate an episode to catching up on appsec news with Kalyani Pawar. We see parsing problems that led to the BadHost vuln, which exposed lots of LLMs, MCPs, and agents to potential compromise. We wonder where to look for security education and practice as the camaraderie of the CTF community becomes infiltrated by LLMs. We talk about the tradeoffs in trust between using public packages vs. having agents write replacements from scratch. And we examine some of the appsec details that the Verizon DBIR reveals about how orgs are being attacked -- and how orgs might use that information to protect themselves.
Show Notes: https://securityweekly.com/asw-385
More shows like Application Security Weekly (Video)
View all
Security Now (Audio)
2,007 Listeners
CyberWire Daily
1,026 Listeners
Pod Save America
87,558 Listeners
Darknet Diaries
8,051 Listeners
Hacking Humans
314 Listeners
Cloud Security Podcast
58 Listeners
Cybersecurity Headlines
136 Listeners