-
Listen Now
EPISODE 191
Broadcast Date:
December 8, 202115 minutes
Podcast Dec 08, 2021Root Causes 191: What Is Robotic Process Automation (RPA)?
An important trend sweeping enterprise IT is Robotic Process Automation. Our hosts define RPA and explain the importance of digital identity for RPA.
-
Listen Now
EPISODE 190
Broadcast Date:
November 29, 20219 minutes
Podcast Nov 29, 2021Root Causes 190: Phishing Coinbase
Our hosts describe a recently discovered exploit where attackers use weaknesses in one-time-password-based MFA to steal Coinbase accounts.
-
Listen Now
EPISODE 189
Broadcast Date:
November 17, 202117 minutes
Podcast Nov 17, 2021Root Causes 189: What Is CA Agnostic?
Certificate Lifecycle Management (CLM) platforms that can provision certificates of all types from all CAs, private and public, are "CA agnostic."
-
Listen Now
EPISODE 188
Broadcast Date:
November 11, 202120 minutes
Podcast Nov 11, 2021Root Causes 188: Introduction to Web Security
Malware and other web site attacks can result in reputational damage and site access being blocked or hindered by end user software and services.
-
Listen Now
EPISODE 187
Broadcast Date:
November 8, 202117 minutes
Podcast Nov 08, 2021Root Causes 187: Apple Limits Term for S/MIME Certificates
Apple recently announced that it would limit the allowable term for public S/MIME certificates to 825 days. We explain this declaration's implications.
-
Listen Now
EPISODE 186
Broadcast Date:
November 4, 202120 minutes
Podcast Nov 04, 2021Root Causes 186: Digital Signature SNAFU Costs 3 Billion Euro Contract
In this episode we explain how an esoteric digital signature error rendered a 3 billion Euro manufacturing contract with the Austrian government invalid.
-
Listen Now
EPISODE 185
Broadcast Date:
November 2, 202117 minutes
Podcast Nov 02, 2021Root Causes 185: EU Covid Passport Root Key Stolen
The root certificates of the EU's Covid Passport program have suffered a private key compromise and counterfeit passports are for sale on the black market.
-
Watch Now
Cloud or On-Premise: Updating Assumptions on Secure Certificate Management
Webinar from Sectigo
Webinar Oct 28, 2021Cloud or On-Premise: Updating Assumptions on Secure Certificate Manage
Join Tim Callan and Jason Soroko explain the difference between Cloud and On-Premise and which is better for secure certificate management.
-
Watch Now
Cloud or On-Premise: Updating Assumptions on Secure Certificate Management
Webinar from Sectigo
Webinar Oct 28, 2021Cloud or On-Premise: Updating Assumptions on Secure Certificate Manage
Join Tim Callan and Jason Soroko explain the difference between Cloud and On-Premise and which is better for secure certificate management.
-
Listen Now
EPISODE 184
Broadcast Date:
October 27, 202112 minutes
Podcast Oct 27, 2021Root Causes 184: Popular College WiFi Vulnerability Revealed
Certificate misconfiguration in commonly used college WiFi can expose logins. We discuss WiFi authentication, EAP, and how this vulnerability occurs.
-
Listen Now
EPISODE 183
Broadcast Date:
October 21, 202114 minutes
Podcast Oct 21, 2021Root Causes 183: New MSCA Attack Toolkits
A new white paper and set of toolkits illuminate MSCA root key attacks. We provide a clear action list for IT professionals in charge of Microsoft CA.
-
Learn More
A World Where SSL Certificates Do Not Allow Organizational Unit Fields
Blog Post from Sectigo
Blog Post Oct 19, 2021There’s a healthy discussion in the world of public SSL certificates: the OU field. Standing for Organizational Unit and currently unrestricted in its use, many IT professionals feel the data often placed in this field leads to confusion. It is an unauthenticated field that may soon be greatly restricted in usage — or even eliminated altogether.