Home | Resources | Videos

Cybersecurity Videos

Videos from VerSprite Cybersecurity Experts

Security Gaps Found in DeKalb County's Data Center

Video

ATL Channel 2 News Interviews VerSprite CEO on Security Gaps Found in DeKalb Data Center

Tony UcedaVélez, VerSprite CEO, is interviewed about recent report finding security gaps in DeKalb County’s data center: “Environments where you have too many people having access to sensitive areas is naturally a problem…”

Learn more

Georgia Tech Data Breach: Threat Motives

Video

Enterprise Data Security

Georgia Tech Data Breach: VerSprite Interviewed on Threat Motives

The recent Georgia Institute of Technology data breach exposed 1.3 million student and employee records. Tony UcedaVélez, VerSprite CEO, was interviewed by WSBTV about why such an elite university makes such an attractive target for hackers.

Learn more

POS-Case Study

Video

Point-of-Sale Security

Secure Development of Payment Applications

In this presentation, we share our Point-of-Sale security research which has revealed a multitude of concerns regarding the secure development of payment applications.

Learn more

Android's JIT

Video

JEA Just-Enough-Administration

Deep Dive into the Dalvik Virtual Machine’s JIT Implementation

VerSprite’s Director of Security Research, Ben Watson, takes a deep dive into the Dalvik Virtual Machine’s JIT implementation and how it can be used and abused to execute shellcode.

Learn more

wcf foundation

Video

Security Vulnerabilities

[Video] Abusing Insecure WCF Endpoints

Watch the video of VerSprite’s Security Research presentation at Ekoparty 2018 on Abusing Insecure WCF Endpoints. A trend that the VerSprite Research team noticed in .NET services is the exposure of dangerous methods through insecure WCF endpoints. Most of these services are started automatically as LocalSystem, which is the highest user privilege level available.

Learn more

Global organizations have been working off of broken or non-existent threat models. Learn why your organization should focus on fixing threat models.

Video

PASTA Threat Modeling

Fixing Threat Models with OWASP Efforts

Global organizations have been working off of broken or non-existent threat models. Learn why your organization should focus on fixing threat models. This talk exemplifies how key OWASP projects can truly bootstrap the smallest of *Sec groups to make a measurable impact to applying security through measurable technology in lieu of security smokescreens that plague our industry.

Learn more

Modeling Threats for Applications

Video

PASTA Threat Modeling

AppSec EU 2017: Modeling Threats for Applications

This video centers around the idea of modeling threats for applications based upon a higher propensity of threat intelligence, how to harvest and correlate threat patterns to your threat model and also how to correlate a threat model to defining preemptive controls and countermeasures to include in the overall design.

Learn more

Presentation

PASTA Threat Modeling

Risk-Centric Application Threat Models

The Process for Attack Simulation and Threat Analysis (PASTA) is a new process for the analysis of cyber threats by focusing on business impacts and with the ultimate objective of protecting the company digital assets such as data and critical business functions.

Learn more

threat modeling can provide exceptional adversarial exercises meant to emulate attack patterns that reflect realistic threat motives.

Video

PASTA Threat Modeling

CRESTCON 2019: Threat Modeling for Defense and Offense

Modeling for threats forces an adversarial lens for security operations team members. Via evidence backed attack simulations, security operations centers (SOC) can define a blueprint for defense that factors in motives, related attack patterns, and realistic targets.

Learn more

We are an international squad of professionals working as one.

Email

[email protected]

logos