Security Weekly Podcast Network (Audio) Tastovision, Trufflepig, Cisco, Windows, VSCode, OT, SQL Server, Android, Josh Marpet - SWN #456
Mar 4, 2025
In this discussion, cybersecurity specialist Josh Marpet tackles the talent shortage myth in the industry, shedding light on the realities of hiring automation and the prevalence of 'ghost jobs'. He also humorously navigates the latest security vulnerabilities in Cisco and Windows systems. Alongside this, Marpet reflects on inventive yet absurd technologies, such as remote flavor tasting, questioning their real-world necessity. His insights mix critical industry observations with entertaining anecdotes, creating a captivating conversation for listeners.
AI Snips
Chapters
Transcript
Episode notes
Check LLM-Generated Code
- Carefully check code generated by LLMs for hardcoded secrets.
- LLMs may learn bad coding practices from training data.
Patch Cisco and Windows Vulnerabilities
- Secure your systems against exploits targeting Cisco RV series VPN routers and Windows Win32k.
- CISA warns these vulnerabilities are actively exploited, so patch immediately.
Scrutinize VS Code Extensions
- Evaluate VS Code extensions carefully for obfuscated code and unreasonable dependencies.
- A popular theme extension with millions of installs was removed due to security concerns.