Risky Business #539 -- Docker Hub owned, Cloudflare, Bloomberg under fire
Published May 1, 2019
    Add to queue
    Copy URL
    Show notes
    On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: Docker Hub owned That Confluence bug we were talking about a couple of weeks ago got wormified Oracle WebLogic users also having a bad time Cloudflare faces investor pressure over providing services to Nazis Slack warns investors of possible nation-state attacks against it Norsk Hydro puts dollar value on ransomware incident Bloomberg publishes another ridiculous security story Much, much more! This week’s sponsor interview is with Casey Ellis, the CTO and co-founder of Bugcrowd. As most of you are probably aware, Bugcrowd announced its so-called “next generation penetration testing” product last year, a move followed some months later by its competitor HackerOne. With others in the bounty space already offering these types of penetration testing packages, it looks like these efforts are here to stay. But where do crowdsourced penetration tests sit in the wider penetration testing market? Are they coming after the Insomnia and Atredis Partners type firms? The NCCs? The shonky nessus-scan “penetration testers”? Well, not surprisingly Casey argues that this is a new sub-niche in the market and he makes a pretty compelling case to support that argument. Links to everything are below, and you can follow Patrick or Adam on Twitter if that’s your thing.
        0:00:00 / 0:00:00