Security Weekly Podcast Network (Audio) Broadcom, Direct Send, N0auth, UNFI, Cisco, Oneclik, Russ Beauchemin, and more... - SWN #489
Jun 27, 2025
In this engaging discussion, Russ Beauchemin, a security professional from Rhode Island College, dives into the complexities of peripheral security, particularly focusing on printer vulnerabilities. He discusses the implications of Broadcom's initiatives and highlights messaging vulnerabilities tied to cloud applications. Beauchemin also shares insights on the significant risks of AI-generated misinformation affecting democracy and emphasizes the need for robust security practices, including strong password management for printers and cloud services.
AI Snips
Chapters
Books
Transcript
Episode notes
Mitigate Direct Send Risks
- Disable the Direct Send feature or properly lock down the smart host in Microsoft 365 to prevent phishing risks.
- Educate users to avoid scanning QR codes in untrusted messages to reduce credential theft risks.
Supply Chain Attack Insight
- Supply chain attacks can propagate through connected systems of third-party providers.
- Knowing your entire data flow is essential to preventing vulnerabilities inherited from partners.
Defend Against NoAuth SaaS Attacks
- Use multi-factor authentication and promote strong password hygiene to defend against NoAuth SaaS compromises.
- Treat email addresses as publicly guessable intel to strengthen account defenses.
