Lessons That The XZ Utils Backdoor Spells Out - Farshad Abasi - ASW #280 Image

Lessons That The XZ Utils Backdoor Spells Out - Farshad Abasi - ASW #280

Podcast Series Security Weekly Podcast Network (Audio)

We look into the supply chain saga of the XZ Utils backdoor. It's a wild story of a carefully planned long con to add malicious code to a commonly used package that many SSH connections rely on. It hits themes from social engineering and abuse of trust to obscuring the changes and suppressing warnings. It also has a few lessons about software development, the social and economic dynamics of open source, and strategies for patching software.

It's an exciting topic partially because so much other appsec is boring. And that boring stuff is important to get right first. We also talk about what parts of this that orgs should be worried about and what types of threats they should be prioritizing...

1 hour

Series Episodes

Edge, Safari, CISO Pay and Loathing, Fake AI, ASUS, OneDrive, Manus, Aaran Leyland... - SWN #481

Edge, Safari, CISO Pay and Loathing, Fake AI, ASUS, OneDrive, Manus, Aaran Leyland... - SWN #481

33 mins

30 May Finished

It's A Trap! - PSW #876

It's A Trap! - PSW #876

2 hours 2 mins

29 May Finished

Quantum Readiness & Zero Trust: Strategies to Strengthen Digital Resilience - Jordan Avnaim, Chris Hickman, Amit Sinha, Albert Estevez Polo - BSW #397

Quantum Readiness & Zero Trust: Strategies to Strengthen Digital Resilience - Jordan Avnaim, Chris Hickman, Amit Sinha, Albert Estevez Polo - BSW #397

1 hour 7 mins

28 May Finished

AP Tests, Hyper-V, Notepad, Google, Nova Scotia, NHI, Bond, Josh Marpet, and more... - SWN #480

AP Tests, Hyper-V, Notepad, Google, Nova Scotia, NHI, Bond, Josh Marpet, and more... - SWN #480

35 mins

27 May Finished

AI in AppSec: Agentic Tools, Vibe Coding Risks & Securing Non-Human Identities - Mo Aboul-Magd, Shahar Man, Brian Fox, Mark Lambert - ASW #332

AI in AppSec: Agentic Tools, Vibe Coding Risks & Securing Non-Human Identities - Mo Aboul-Magd, Shahar Man, Brian Fox, Mark Lambert - ASW #332

1 hour 4 mins

27 May Finished

Recommended

View more

Your Vote Matters - A Beat News Referendum Special

Your Vote Matters - A Beat News Referendum Special

Podcast Series

Voice of the Future

Voice of the Future

Podcast Series

The Road To Who Knows Where

The Road To Who Knows Where

Podcast Series

The Afters

Podcast Series

Medicinal or Hurtful? A Beat News Documentary on Drug Regulation in Ireland

Medicinal or Hurtful? A Beat News Documentary on Drug Regulation in Ireland

Podcast Series

Living Your Best Life

Living Your Best Life

Podcast Series

From Conflict to Safety: Ukrainian Refugees Living in Wexford

From Conflict to Safety: Ukrainian Refugees Living in Wexford

Podcast Series

Fees Degrees but No Keys

Fees Degrees but No Keys

Podcast Series

On The Run: The Inside Story

On The Run: The Inside Story

Podcast Series

Cillian chats to Protein Bor Papi on The Takeover

Cillian chats to Protein Bor Papi on The Takeover

Podcast Series

Do You Remember?

Do You Remember?

Podcast Series

The Weekly Show with Jon Stewart

The Weekly Show with Jon Stewart

Podcast Series

Brothers In Arms

Brothers In Arms

Podcast Series

Home or Away - Living the Irish Australian Dream with Aisling Moloney

Home or Away - Living the Irish Australian Dream with Aisling Moloney

Podcast Series

Eoin Sheahan's Diverted

Eoin Sheahan's Diverted

Podcast Series

Wexford Soccer: The Heart Of The Community

Wexford Soccer: The Heart Of The Community

Podcast Series

On The Move

Podcast Series

Nobody Told Me

Podcast Series

Now Playing
Queue

Now Playing

The Pat Kenny Show

Live Now: 9AM - 12PM

9AM

12AM

Now Playing

The Pat Kenny Show

The Pat Kenny Show

Of The Ball

1 hour left

Today Finished

Next Up

Search

Find a show, podcast or music playlists

No Account

Subscriptions to podcast series are only available to users with an account. Sign in or register to subscribe and access your subscriptions.

Register Sign in

Woops!

Error text.