AI, Red Teaming, and Post-Quantum Cryptography: Key Insights from RSA 2025
Join Aubrey and Byron at RSA Conference 2025 as they dive into transformative topics like artificial intelligence, red teaming strategies, and post-quantum cryptography. From exploring groundbreaking OWASP sessions to analyzing emerging AI threats, this episode highlights key insights that shape the future of cybersecurity. Discover the challenges in red team AI testing, the implications of APIs in multi-cloud environments, and how quantum-resistant cryptography is rising to meet AI-driven threats. Don't miss this exciting recap of RSA 2025!
00:00 Introduction
00:47 Personal Conference Highlights
03:07 PQC Meanderings
05:44 AI Red Teaming
11:21 OWASP Compass / CISO Checklist
13:03 A Prompt Injection Tale
14:03 Protect Your System Prompts
15:00 Beyond The Hype Cycle?
17:17 From The Show Floor
19:03 Dreadnode Dyana Sandbox
21:35 More From The Floor
22:53 Deepfakes
25:38 The Allure Of Using Obvious AI
26:22 Gonna Take Crucible For A Spin
27:12 Final Conference Thoughts
30:45 Outro
--------
31:36
Tackling CVE Chaos, Parquet Tool Insights, and EU Cyber Resilience Act Unpacked
🔒 Welcome to this week’s episode of AppSecNow, the DevCentral podcast dedicated to all things application security! 🚨 This week, we unpack critical updates including:
💥 A zero-day SAP CVE with a CVSS score of 10—what it means, how it's being exploited, and what you can do to defend against it.
🛠️ A groundbreaking Parquet tool from F5 Labs that simplifies vulnerability testing for critical supply chain security issues.
Link: https://github.com/F5-Labs/parquet-canary-exploit-rce-poc-CVE-2025-30065
🌍 The EU Cyber Resilience Act—what it means for manufacturers, open-source stewards, and secure-by-design initiatives.
Learn how AppSec professionals leverage cutting-edge tools and protocols to tackle some of the biggest challenges in software security today. Whether you're prepping for RSA or managing zero trust architectures, this episode is packed with actionable insights!
✅ Like, subscribe, and follow to keep up with the latest in application security.
00:00 Introduction
02:20 Parquet Tool
06:30 VulnCon 2025
09:09 EU Cyber Resilience Act
16:45 CVE Program Chaos
20:29 Pay Your Tolls!
27:17 SAP Critical Vulnerability
29:18 Outro
--------
30:46
LLMs And Trust, Google A2A Protocol And The Cost Of Politeness In AI: AI Friday
It's AI Friday and we're diving into the world of artificial intelligence like never before! 🎩 On this Hat Day edition (featuring NFL draft banter), we discuss fascinating topics like LLMs (Large Language Models) and their trust—or lack thereof—in humanity, Google's innovative Agent-to-Agent (A2A) protocol, and how politeness towards AI incurs millions in operational costs. We also touch on pivotal AI conversations around zero trust, agentic AI, and the dynamic collapse of traditional control and data planes.
Join us as we dissect how AI shapes the future of human interaction, enterprise-level security, and even animal communication. Don't miss out on this engaging, informative, and slightly chaotic conversation about cutting-edge advancements in AI. Remember to like, subscribe, and share with your community to ensure you never miss an episode of AI Friday!
00:00 Introduction
02:23 What Do LLMs Think Of Us?
15:26 At What Cost, Politeness?
25:33 Google Agent2Agent Protocol
35:57 Outro
--------
37:12
EV Car Hacking, AI-Generated Passports, & Japan’s Active Cyber Defense Bill
Join Merlyn Chase, MegaZone, and Aubrey on this week’s AppSec Now podcast as they dive into the latest topics in application security! 🚀
From the recent B-Sides Seattle conference to critical discussions on EV car hacking, cybersecurity quandaries, AI-generated passports bypassing KYC, and Japan’s groundbreaking Active Cyber Defense Bill—you don’t want to miss this one. Plus, learn how AppSecNow is keeping you ahead with insights by F5 Labs and the F5 Security Incident Response Team.
Stay informed, stay secure—like, subscribe, and follow for all things AppSec!
00:00 Introduction
03:10 EV Car Hacking
12:25 AI Generated Passports
21:35 LLMs Do Not Trust Humans
28:31 Japan's Active Cyber Defense Bill
34:19 Outro
--------
36:06
2025 Top AI Use Cases, AI For Nuclear Safety & CaMeL Prompt Injection Fixes
It's AI Friday! This week, we unpack the latest AI news and trends, including the top AI use cases for 2025, intriguing new developments from OpenAI, AI in nuclear safety with PG&E (what could possibly go wrong?), novel defenses against prompt injection attacks with CaMeL, and even LLM-powered conversations with dolphins. Join Aubrey, Joel, Ken, and Byron as they blend in-depth insights with good-natured humor. Don't miss out—like and subscribe for your weekly infusion of AI amazement!
00:00 Introduction
01:37 2025 Top AI Use Cases
09:55 Models Thinking With Images
10:47 Break Glass In Case Of SkyNet
15:14 PG&E - AI In Nuclear Reactor
21:48 Can A CaMeL Fix Prompt Injection?
29:16 DolphinGemma LLM??
35:39 Outro
DevCentral is F5's online Community of Technical Peers dedicated to learning, exchanging ideas, and solving problems – Together.
We host audio podcasts created by our Community, for our Community.
Netherlands