Security Weekly Podcast Network (Video)

Meatbags, AI Soul Harvest, DNS, LastPass, GS7, OpenClaw, MYSQL, Aaran Leyland, and More on the Security Weekly News.
Show Notes: https://securityweekly.com/swn-556

A major premise of appsec is figuring out effective ways to answer the question, "What security flaws are in this code?" The nature of the question doesn't really change depending on who or what wrote the code. In other words, LLMs writing code really just means there's mode code to secure. So, what about using LLMs to find security flaws? Just how effective and efficient are they?
We talk with Adrian Sanabria and John Kinsella about the latest appsec articles that show a range of results from finding memory corruption bugs in open source software to spending an inordinate amount of manual effort validating persuasive, but ultimately incorrect, security findings from an LLM.
Show Notes: https://securityweekly.com/asw-370

Segment 1: Interview with Mathias Katz
What if you had enterprise-grade network security protections traveling with your users' laptops? What if it could be built into the laptop, but still stay safe even if the laptop OS and firmware were entirely compromised?
Mathias and his company, Byos have built such a thing, and BOY do we have some questions for him.
Segment 2: Interview with Wolfgang Goerlich
Addressing the nuanced, nefarious threats of AI
Sure, we need to worry about AI prompt injection and AI data leakage, but what about the threats to our BRAINS? Seriously, as we start to have daily conversations with this technology, how are they going to shape how we think? What inherent biases in the training, fine tuning, guardrails, or lack of guardrails are going to affect our decisions or how we work?
Wolfgang is concerned about this, so he performed a human/AI experiment. With almost 1000 people partaking in the experiment, the results are sure to be intriguing.
Segment 3: This week's enterprise security news
Finally, in the enterprise security news,
survey results on how folks are feeling about openclaw
some hidden drama discovered in KEV updates
some new KEV tools
is AI replacing traditional code scanning tools?
remote code execution in notepad
no, not notepad++, NOTEPAD.EXE
you know, the one that ships preinstalled on Windows
the RSAC innovation sandbox finalists
dealing with legacy vulnerabilities
Don't accept OpenClaw Mac Minis from strangers!
All that and more, on this episode of Enterprise Security Weekly.
Show Notes: https://securityweekly.com/esw-446

Cams, Gelbwurst, Chrome, SCCM, CVES, SSHStalker, RAM, TikTok, Josh Marpet, and More on this episode of the Security Weekly News.
Show Notes: https://securityweekly.com/swn-555

In the security news:
Viral AI prompts
Things to do in your home security lab
I can open your garage door
They call me DKnife
Beyondtrust RCE
Cool AI device
Robots need your body
Meta is just full of scams, phishing, and malware
Claude Opus 4.6 found more than 500 high-severity vulnerabilities
Arista next gen firewalls and command injection
Secure Boot updates
The RCE AMD won't fix and why the article went away
End of support means get it off the network
Accidentally giving away $44 billion of Bitcoin
Show Notes: https://securityweekly.com/psw-913