Episode 81: Cryptographic Failures
When encryption fails, the consequences can be catastrophic. In this episode, we explore cryptographic failures—formerly called "Sensitive Data Exposure" in the OWASP Top Ten—and why they continue to affect even high-profile organizations. You’ll learn how weak encryption algorithms, improper key management, and poor implementation practices expose data at rest and in transit.
We’ll also walk through common examples, including hardcoded credentials, expired certificates, missing HTTPS, and misconfigured TLS settings. You’ll hear how to detect cryptographic failures during vulnerability scans, and how to communicate these findings in a way that resonates with stakeholders. This episode prepares you for CySA+ questions on encryption hygiene and gives you the confidence to identify real-world weaknesses in crypto implementations. Brought to you by BareMetalCyber.com
