In this episode of the podcast, host Paul Roberts welcomes Tanya Janca of She Hacks Purple back into the studio. Tanya talks about her newly released book: Alice and Bob Learn Secure Coding, published by Wiley and the larger problem of how to promote the teaching of secure coding practices to developers.
A now-patched flaw in Subaru’s STARLINK connected vehicle service exposed location information and driver data for millions of vehicles with nothing more than the vehicle’s license plate number – the latest jaw dropping smart vehicle security flaw discovered by the researcher Sam Curry.
Researcher Sam Curry revealed a flaw in a KIA website that gave anyone with the license plate number of a KIA vehicle access to vehicle controls and driver data – highlighting the dire state of smart vehicle cyber security.
Amid a spike in attacks on software supply chains, GitGuardian launched HasMySecretLeaked.com, a site that allows developers and appsec teams to search for exposed secrets.
In this Spotlight episode of the Security Ledger podcast, I interview Richard Bird, the CSO of the firm Traceable AI about the challenge of securing application programming interfaces (APIs), which are increasingly being abused to steal sensitive data.
