Episode 26 - Hugging Pickle

🎙️ We’re back with another exciting episode of our podcast, where we dive into the latest trends and stories in the world of security! In this episode, Travis McPeak  and  Will Bengtson welcome our special guest, Misha Kuenstner, a Security Engineering Manager at Semgrep. 

We cover a range of topics, including:

•  🛌 A deep dive into a recent security vulnerability involving Eight Sleep covers, where researchers discovered alarming access issues.

• 🥒 The implications of Hugging Face models being susceptible to local execution due to the use of Python's Pickle serialization.

• 🛡️ Insights from the first-ever State of Detection Engineering report, highlighting the evolving skills needed in detection and response.

• ☁️ A discussion on the recent CVE related to unauthenticated username enumeration in AWS and its impact on cloud security.

• ✉️ Google's announcement to replace SMS authentication with QR codes for Gmail, aiming to enhance security.

Tune in to hear our thoughts, insights, and recommendations on these pressing security issues. Don't forget to like, subscribe, and hit the notification bell for more episodes!