Network Computing Dark Reading

Advertise

Application Security

Attacking Developers Using 'Shadow Containers'

Get Link to this Video

Get HTML to Embed this Video

50%

BLACK HAT USA 2017 -- Aqua Security's Sagie Dulce visits the Dark Reading News Desk to describe why developers are such attractive targets and how one of developers' favorite tools - Docker - can be exploited and used against them in sneaky, obfuscated attacks.

Watch all 45 News Desk interviews at DarkReading.com/DRNewsDesk.

Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.

Comment |

Email This |

Print |

RSS

Comments

Newest First | Oldest First | Threaded View

[close this box]

50%

alphaa10,
User Rank: Strategist
2/1/2018 | 10:20:15 AM

Interviews Need Editing

Potential interest in every video segment. However, every interview needs editing-- video or audio-- because, without editing, it becomes a prisoner of its own format, laden with vague questions, obscure, hard to follow answers, and general tedium. With all due respect, the current video interview format rarely meets expectations.

A tighter delivery of information is accomplished with prerecorded video of text and graphics (where appropriate). Data professionals have learned to take in information at a much higher rate, and the exclusively text/graphics approach is likely to make the information flow "denser" or faster. As a prepared presentation, the information also can be more clearly focused and organized.

Another suggestion is to have the interviewer come from a background in the area under discussion. Unfocused questions like, "What are you fondest memories of the Black Hats of years past?" are innocently but agonizingly general, and serve only to open segments, as if trying to make conversation. DR should explore the utility of having veterans of the field as interviewers, with a general script to keep the line of questions integrated.

Potentially, of course, video interviews open something really fascinating, but we rarely find somebody with a good story just waiting to be interviewed, try as we might to prime interviewees with advance questions.

Let's face it-- in most situations, people have a tendency to make video resemble an exercise in filling a time slot. Truthfully, this is the first and last time I plan to watch a DR Black Hat video in the current format-- I simply don't have the time. In return for your having invested so much effort in production, not to mention actual interview time, you would serve your own cause by spendnig additional time editing the result.

You cannot afford to omit more intensive post-production, because only quality gathers an audience. Our time, like yours, is valuable-- please, make our investment even more engaging. That said, the UBM effort shows promise-- few other publishers take the trouble to cover these areas with such [potential) depth and detail.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

Microsoft Patches Wormable RCE Vulns in Remote Desktop Services

Kelly Sheridan, Staff Editor, Dark Reading, 8/13/2019

The Mainframe Is Seeing a Resurgence. Is Security Keeping Pace?

Ray Overby, Co-Founder & President at Key Resources, Inc., 8/15/2019

GitHub Named in Capital One Breach Lawsuit

Dark Reading Staff 8/14/2019

Live Events

Webinars

[Video] Shaping the Future of IT CIO Lightning Series - Interop19

[Video] An (Ir)rational Approach to Interoperability - Interop19

More Informa Tech Live Events

White Papers

Farewell Passwords? The Future of Identity and Authorization

7 Threats & Disruptive Forces Changing the Face of Cybersecurity

[eBook] It's Time to Embrace the Cloud

Darktrace Cloud Threat Report

SANS Top New Attacks & Threat Report

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: This comment is waiting for review by our moderators.

Cartoon Archive

Current Issue

7 Threats & Disruptive Forces Changing the Face of Cybersecurity

This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Developing Secure Applications

IT security and application development are disparate processes that are increasingly coming together. Here's a look at how that's happening.

Download Now!

How Enterprises Are Attacking the Cybersecurity Problem

0 comments

How Enterprises Are Using IT Threat Intelligence

0 comments

Online Malware and Threats: A Profile of Today's Security Posture

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2019-15150
PUBLISHED: 2019-08-19

In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.

CVE-2017-18550
PUBLISHED: 2019-08-19

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_get_hba_info does not initialize the hbainfo structure.

CVE-2017-18551
PUBLISHED: 2019-08-19

An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.

CVE-2017-18552
PUBLISHED: 2019-08-19

An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency.

CVE-2018-20976
PUBLISHED: 2019-08-19

An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.

Terms of Service
Privacy Statement
Legal Entities