-
Podcast Nov 08, 2022
Root Causes 254: Toyota Symmetric Key Exposed on GitHub
In a recently exposed error, key material for a popular automobile manufacturer's PKI has been discovered on GitHub, exposing sensitive information.
-
Podcast Nov 04, 2022
Root Causes 253: OpenSSL Vulnerability Explained
Last week the OpenSSL project announced an upcoming critical patch. We explain what the flaw was, what you should do, and why certificates are unaffected.
-
Podcast Oct 28, 2022
Root Causes 251: What's Next for the NIST PQC Primitives?
NIST has announced its new post-quantum cryptography primitives. We discuss the next steps required by industry and what the enterprise can do today.
-
Podcast Oct 26, 2022
Root Causes 250: 250 Episodes of Root Causes!
It's Root Causes episode 250! In this podcast about podcasting hear about choosing topics, why we have few guests, reacting to requests for media kits.
-
Podcast Oct 21, 2022
Root Causes 249: What Is MFA Exhaustion?
Recent high profile attacks that were enabled by defeating MFA. We explain the concept of MFA fatigue and why it is an enabler for these attacks.
-
Podcast Oct 18, 2022
Root Causes 248: Azure Code Signing Announced
Microsoft has announced the upcoming availability of a Microsoft-run code signing solution inside the Azure platform. We explain what to expect.
-
Podcast Oct 13, 2022
Root Causes 247: Uber Breach Unpacked
A recent high-profile breach of Uber's systems led to widespread data loss. Our experts unpack the specifics of this attack.
-
Podcast Oct 04, 2022
Root Causes 246: Google Chrome Root Program Announced
Google Chrome recently announced the formation of its trusted root program. We explain why Chrome is launching now and the program's implications.
-
Podcast Sep 29, 2022
Root Causes 245: One Time Passcode as a Liability
A recent article from Brian Krebs advances the idea that using OTP MFA may actually be a liability to security. We explain that reasoning.
-
Podcast Sep 26, 2022
Root Causes 244: PwC Survey Reports Cyber Security as Biggest Risk
A recent survey from PwC reports that cyber threats are no longer solely the domain on the CISO but instead have become every senior executive's concern.
-
Podcast Sep 20, 2022
Root Causes 243: Which Came First, the BRs or the EVGs?
Many don't realize that the CA/Browser Forum's Baseline Requirements actually came LATER THAN the Extended Validation Guidelines.
-
Podcast Sep 16, 2022
Root Causes 242: Let's Encrypt Founder Peter Eckersley Passes
EFF member and Let's Encrypt co-founder Peter Eckersley passed away recently. We honor Peter's memory and his contributions, including ACME and Certbot.