Professionally Evil Perspective
59 episodes - English - Latest episode: 8 months ago - ★★★★★ - 5 ratingsThis podcast contains security topics discussed by the Secure Ideas LLC. team.
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
Tik Tok: Swipe Right for Risk
August 21, 2023 11:00 - 24 minutes - 33.7 MBToday on The Professionally Evil Perspective, Kevin and Nathan assess the risk of Tik Tok and how they themselves use it. Majority of Americans Say TikTok is a Threat the US National Security US senators unveil bipartisan bill empowering Biden to ban TikTok and other services Jack the Whipper RESTRICT Act Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secur...
Take This Breach And Cover It
July 31, 2023 19:29 - 22 minutes - 31 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the challenging and vital role of CISO's and how the successes or failures of an organization's security program falls on them. The Reformed Analyst Joe Sullivan Uber CISO Sentenced SEC Sends Wells Notice to SolarWinds Executives Lawyers Behaving Badly Podcast Serious Trouble Podcast Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_ke...
Close Encounters of the Nerd Kind
July 10, 2023 00:15 - 24 minutes - 32 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss a whistleblower's claims that information about covert programs possessing intact crafts of non-human origin has been illegally withheld from Congress. INTELLIGENCE OFFICIALS SAY U.S. HAS RETRIEVED CRAFT OF NON-HUMAN ORIGIN The X-Files Close Encounters of the Third Kind Trailer Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @securei...
Byte-Size Expertise
June 26, 2023 10:00 - 19 minutes - 25.6 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the SEC's proposed rules on public company cybersecurity, including the expertise of its board. Cybersecurity Risks and Privacy Rules Add Pressure on Boards NYDFS Proposes Amendments to Cybersecurity Regulation Public Company Cybersecurity; Proposed Rules Fact Sheet Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or ...
The SSL Struggle Juggle
June 12, 2023 08:03 - 18 minutes - 24.3 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss SSL vulnerabilities and their challenges. The Silent Gaze of Braco The Art of Manliness Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities ar...
What's AI Got To Do, Got To Do With It?
May 25, 2023 18:51 - 23 minutes - 30.8 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the regulation of AI growth and development. OpenAI's Sam Altman Urges A.I. Regulation in Senate Hearing We Have No Moat, and Neither Does OpenAI Dark Web ChatGPT Unleashed: Meet DarkBERT Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team a...
Slashdot Roulette: Rants That Matter
May 07, 2023 20:37 - 29 minutes - 37.3 MBToday on The Professionally Evil Perspective, Kevin and Nathan throw it back to Slashdot. Get ready to be entertained by some rants about security stories plucked from the OG user-generated content and community-driven news website. Slashdot.org: News For Nerds, Stuff That Matters Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally E...
Artificially Intelligent or Naturally Dumb?
April 28, 2023 14:58 - 22 minutes - 29.1 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss AI and some of its caveats. Pause Giant AI Experiments: An Open Letter ChatGPT cooks up fake sexual harassment scandal Life of Dolly Professionally Evil Perspective: The Evolution of OWASP Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team ...
Take That to the Bank
March 28, 2023 12:45 - 33 minutes - 43.4 MB VideoToday on The Professionally Evil Perspective, Kevin and Nathan discuss the collapse of Silicon Valley Bank, the poor communication and decision-making that led to it, and Secure Ideas recent brush with banking mishaps.. Twitter Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our rea...
The Evolution of OWASP
March 13, 2023 11:00 - 36 minutes - 46.5 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the open letter to OWASP, the organization's future aspirations, and sustainability. OWASP needs to evolve OWASP Budget Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this,...
Who Let The Genie Out Of The Roomba?
February 27, 2023 11:00 - 21 minutes - 26.5 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss sensitive photos taken by a robot vacuum and then leaked online . Roomba photos recorded bathroom photos leaked from test units. Click here to see if you are old. Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team at www.professionallyevil...
My Cousin AI
February 13, 2023 13:10 - 22 minutes - 29.2 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss donotpay.com and AI lawyers. DoNotPay.com The Robot Lawyer Was a Super Dumb Idea Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around pe...
A lawyer walks into Radio City Music Hall...
January 17, 2023 15:32 - 23 minutes - 29.6 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the removal of an attorney attending a show with her daughter at Radio City Music Hall in December. The attorney was employed by a law firm involved in a persoanl injury claim against the operator of Radio City Music Hall. The attorney was recognized through a facial recognition system. facial-recognition-bars-lawyer-rockettes-show Got suggestions, complaints, or feedback? Tell us at [email protected] or rea...
Rainy Days for Drizly
December 04, 2022 14:33 - 23 minutes - 32.5 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the FTC actions on the Drizly breach and the responsibility of CEO's when security fails. Press Release: https://www.ftc.gov/news-events/news/press-releases/2022/10/ftc-takes-action-against-drizly-its-ceo-james-cory-rellas-security-failures-exposed-data-25-million Actual Ruling: https://www.ftc.gov/system/files/ftc_gov/pdf/202-3185-Drizly-Decision-and-Order.pdf Got suggestions, complaints, or feedback? Tell...
Are you there God? It's THE Kevin Johnson
November 11, 2022 00:25 - 24 minutes - 33 MBToday on The Professionally Evil Perspective, join Kevin and Nathan for discussion and questions surrounding identity and it's validation. Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas or find us on Mastadon: @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing...
The Ethical Hacker Label
October 24, 2022 09:29 - 25 minutes - 34.4 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the term "Ethical Hacker" and what it implies. Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you!
Reputational Harm
October 12, 2022 12:57 - 20 minutes - 27.9 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the risk of reputational damage and the long-term impact of a security breach. Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd lo...
Hey Kevin...how do I get into Infosec??
September 12, 2022 02:56 - 18 minutes - 25.6 MBToday on The Professionally Evil Perspective, Kevin and Nathan talk about different paths into Infosec. Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you!
Locked out of the right to repair
September 05, 2022 04:04 - 28 minutes - 38.6 MBToday on The Professionally Evil Perspective, Kevin and Nathan discuss the concept of "right to repair", or once you purchase something, should you be allowed to do whatever you want with it, and to it? And a controversy in Denver over a program that caused over 22,000 Xcel Energy customers to lose control of thier thermostats during an "energy emergency". Thousands of Xcel customers locked out of thermostats during energy emergency Got suggestions, complaints, or feedback? Tell us at ...
Professionally Evil Lunch & Learn - August 2022
August 29, 2022 01:21 - 56 minutes - 76.6 MBThis month we are joined by OpsHelm, Inc. Founding Security Engineer Lee Brotherston and Black Hills Information Security Content and Community Director Jason Blanchard to discuss current security news. From hacking John Deere combines to play Doom to Janet Jackson crashing laptops, this month was especially entertaining. Join us the last Friday of every month to discuss current events with a rotating list of security pros. Today's Guests: Lee Brotherston can be found on LinkedIn Jason...
Professionally Evil Lunch & Learn - July 2022
August 01, 2022 03:20 - 59 minutes - 81.8 MBThis month we are joined by Cybersecurity Strategist Heather Linn and Information Security Pro Giovanni Cofre to discuss current security news. From police being allowed to view private Ring camera footage to the distribution of an abortion-laced business card at a hacker conference, we covered a lot in one hour. Join us the last Friday of every month to discuss current events with a rotating list of security pros. Got suggestions, complaints, or feedback? Tell us at podcast@secureideas...
The Unexpected Consequences of Security Efforts
July 18, 2022 04:01 - 24 minutes - 33.9 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! Links: dhs-announces-new-cybersecurity-requirements-critical-pipeline-owners-and-oper...
Professionally Evil Lunch & Learn - June 2022
June 27, 2022 03:56 - 1 hour - 87.5 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @84d93r Our June guest @HackerHurricane @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! Links: iOS 16 and macOS Ventura will let users bypass CAPTCHA...
AI and sometimes Why?
June 20, 2022 03:20 - 31 minutes - 42.7 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! Links: is-lamda-sentient-an-interview stop-calling-everything-ai-machinelearning-p...
Head -v Cyber_Command.txt
June 06, 2022 06:15 - 25 minutes - 34.6 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: @sweaney @darth_kevin @secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! Links: Alex Martin Tweet us-military-hackers-conducting-offensive-operations-in-sup...
Professionally Evil Lunch & Learn - May 2022
May 30, 2022 11:00 - 1 hour - 82.2 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: https://twitter.com/sweaney https://twitter.com/secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! This months guests: Ray Davidson Luke Crouch Episode Links: Clearview ...
CFAA Policy Changes
May 23, 2022 03:33 - 26 minutes - 35.8 MBUS Prosecutors Won't Charge White Hat Hackers Under New Policy @JeffStone500 Got suggestions, complaints, or feedback? Tell us at [email protected] Or reach out on Twitter: Nathan Sweaney Kevin Johnson Secure Ideas Join our Professionally Evil Slack Team: Professionally Evil Slack Team Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you!
Professionally Evil Lunch & Learn - April 2022
May 02, 2022 15:07 - 56 minutes - 77.6 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: https://twitter.com/sweaney Cory Sabol Twitter https://twitter.com/kneppjon Aaron Moss Twitter https://twitter.com/secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! ...
Glory For Ukraine Botnet
April 25, 2022 10:00 - 23 minutes - 32.6 MBA group claims to be fighting Russia in the name of Ukraine using a botnet. And wants you to join them. Kevin and Nathan discuss what could possibly go wrong.
Professionally Evil Lunch & Learn - March 2022
April 04, 2022 10:00 - 56 minutes - 77.2 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: twitter.com/sweaney twitter.com/RonJonArod twitter.com/hotdogggitty twitter.com/secureideas Episode Links: FBI Warns Of Preliminary Russian Cyber Activity Against American Companies White House Says Reports of an American Cyberwar With Russia Are Greatly Exaggerated DIY Volunteers Are Repairing Ukraine’s Destroyed Internet Infrastructure War Is Calling Cry...
IAM OKTA. I am hacked?
March 28, 2022 10:00 - 28 minutes - 38.4 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: twitter.com/sweaney twitter.com/darth_kevin twitter.com/secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you!
SMS MFA Risk v. Risk
March 14, 2022 10:00 - 21 minutes - 28.7 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: twitter.com/sweaney twitter.com/darth_kevin twitter.com/secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you!
Professionally Evil Lunch & Learn - February 2022
March 07, 2022 22:21 - 58 minutes - 79.2 MBGot suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: twitter.com/sweaney twitter.com/darth_kevin twitter.com/secureideas Join our Professionally Evil Slack Team at www.professionallyevil.com Where can I find Carrie Randolph? twitter.com/karn3ia Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you! Epis...
Tag, You’re It! Privacy Concerns with Apple AirTags
February 28, 2022 11:00 - 25 minutes - 35 MBModders are selling "Silent AirTags" on Etsy and eBay Carjackers are using Apple AirTags to track high-end vehicles to steal them later BBC: Apple AirTags - 'A perfect tool for stalking' Most asked questions about AirTags Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: https://twitter.com/sweaney https://twitter.com/darth_kevin https://twitter.com/secureideas Join our Professionally Evil Slack Team...
Title: Tag, You’re It! Privacy Concerns with Apple AirTags
February 28, 2022 11:00 - 25 minutes - 35 MBModders are selling "Silent AirTags" on Etsy and eBay Carjackers are using Apple AirTags to track high-end vehicles to steal them later BBC: Apple AirTags - 'A perfect tool for stalking' Most asked questions about AirTags Got suggestions, complaints, or feedback? Tell us at [email protected] or reach out on Twitter: https://twitter.com/sweaney https://twitter.com/darth_kevin https://twitter.com/secureideas Join our Professionally Evil Slack Te...
Facial Recognition
February 14, 2022 11:00 - 21 minutes - 28.9 MBThe IRS Drops Facial Recognition Verification After Uproar https://www.wired.com/story/irs-drops-facial-recognition-verification/ https://www.bloomberg.com/news/articles/2022-01-28/treasury-weighing-id-me-alternatives-over-privacy-concerns ODIN - Homeless Management Information System https://www.vice.com/en/article/wxdp7x/tech-firm-facial-recognition-homeless-people-odin (This is vice, so take that into consideration...) Amazon Recognition moratorium to law enforcement https://ww...
Professionally Evil Lunch & Learn - January 2022
February 07, 2022 05:46 - 53 minutes - 73.7 MBLinks to today's topics: Liquor stores stuck with limited stock since Christmas cyber attack against Sask. liquor authority | CBC News microsoft-warns-disk-wiping-malware-targeting-ukraine white-house-instructs-agencies-cybersecurity-strategy-memo-cisa Moving the U.S. Government Toward Zero Trust Cybersecurity Principles mexican-cartels-recruit-drug-mules-on-grand-theft-auto-online senate-weighs-bill-to-protect-satellites-from-getting-hacked florida-considers-deepfake-ba...
The FTC's Ultimatum
January 31, 2022 11:00 - 24 minutes - 32.9 MBEpisode notes and links: FTC Log4j Warning https://www.ftc.gov/news-events/blogs/techftc/2022/01/ftc-warns-companies-remediate-log4j-security-vulnerability Federal Trade Commission Act https://www.ftc.gov/enforcement/statutes/federal-trade-commission-act FTC Equifax Fines https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlement Principle of Subsidiarity https://en.wikipedia.org/wiki/Subsidiarity Got suggestions, complaints or feedback? Tel...
Balancing Compensation with Value
January 17, 2022 11:00 - 23 minutes - 31.9 MBOpen source developer corrupts widely-used libraries, affecting tons of projects https://www.theverge.com/2022/1/9/22874949/developer-corrupts-open-source-libraries-projects-affected NPM libraries in question: https://github.com/Marak/colors.js https://github.com/marak/Faker.js/ Marek's post about no more free work: http://web.archive.org/web/20210704022108/https://github.com/Marak/faker.js/issues/1046 Leftpad issue from 2016 https://qz.com/646467/h...
Not another Log4j discussion...
January 10, 2022 21:09 - 19 minutes - 26.6 MBJump back into a discussion of current events with Kevin and Nathan after a long break. Packed with professional perspectives and opinions. This week we dive a little deeper into Log4j.
March 8th - Interview with Amanda Berlin
March 15, 2018 14:39 - 1 hour - 57.4 MBIn this episode, we discuss ethics, TLS 1.3, autonomous cars and replacements for multifactor authentication. We also interview Amanda Berlin and her experience writing the book Defensive Security Handbook: Best Practices for Securing Infrastructure.
Introduction to RTLAMR with Doug (Bemasher)
October 16, 2017 18:04 - 38 minutes - 52 MBThis episode of the Professionally Evil Perspective podcast is an interview-style discussing the project RTLAMR. We discuss the purpose of the code, how SDR is used and the information you can expect to find from your ERT devices floating in the airwaves.
Re-Inaugural Episode
July 12, 2017 19:50 - 39 minutes - 45.4 MB VideoIn this Professionally Evil Podcast PEPisode, we re-launch the podcast. 12 of us hang out and talk about what we are doing and whats coming up.
End of Year Wrap-Up
December 23, 2014 20:19 - 20 minutes - 19.1 MBJames and Kevin discuss a few of the events this year (breaches and otherwise), the release of Samuari 3.0 and some up-coming events.
Penetration Testing and Reporting
August 18, 2014 20:51 - 27 minutes - 25.2 MBIs the idea of penetration testing evolving or is it staying the same? What is the goal of a penetration test? Does it differ by client? James and Kevin discuss penetration testing and how it is changing. When it comes to reporting, what data do you include, how do you represent it, and who is your audience? These questions and more are discussed.
Data Breach Laws
July 11, 2014 19:52 - 31 minutes - 28.6 MBWe are not lawyers but want to make you aware of some of the laws that exist around data breaches. Sometimes these laws pop up with very little media coverage and you have no idea.
New Office!!
March 31, 2014 15:44 - 18 minutes - 17 MBJames and Kevin talk about the new office in Jacksonville, FL. Some rambling about setting it up and how we like it. Not so technical.. but exciting for us.
Pentesting methodology: Exploitation
February 11, 2014 22:32 - 29 minutes - 40 MBJames and Kevin discuss the idea of Exploitation and its importance in the testing methodology. Join them for a witty conversation about one of the favorite phases of the process.
Building Security In: Healthcare.gov
January 17, 2014 22:37 - 30 minutes - 27.5 MBKevin and James discuss not only the issues for Healthcare.gov regarding vulnerabilities, but the real issue of the lack of security being part of the process. This podcast covers a few different ways to build security in and reduce the risk exposure of your applications.
Pentesting Methodology: Discovery
October 22, 2013 17:46 - 27 minutes - 25.6 MBJames and Kevin discus the discovery aspect of the pentesting methodology as well as ramble about some other topics. They announce the Samurai Helmet winner and talk about some upcomming events.