Risky Business #166 -- Bad guys find more ways to mess with Authenticode

0 Comments

September 3, 2010 --

On this week's show we're chatting with F-Secure's Jarno Niemela about some of the issues with Authenticode. He'll tell us about one fascinating case where a piece of malware actually carried a valid signature from a real company... stolen keys, right? As it turned out, that company didn't make software and had no idea what an Authenticode cert actually was. Jarno got to the bottom of that little mystery and tells us all about it after the news with Adam Boileau.

In this week's sponsor interview we're chatting with Tenable Network Security's CSO Marcus Ranum about a new project being run by DARPA, the US Defence Advanced Research Projects Agency.

The project is called CINDER and it's all about detecting rogue insider behaviour. It has potential to be a VERY interesting project, and Marcus shares his thoughts on it.

Here's a link to Jarno's CARO conference slides [pdf].

| Play in Popup | Download

User login

Recent podcasts

Risky Business #224 -- Lost source and open relays: 2012 is here

Symantec and McAfee kick off the year of the Dragon with some decent lulz…
Risky Business #223 -- Summer edition: Drones pwned?

Russians owned our pumps. Persians pwned our drones.
Risky Business #222 -- Never pay for roaming data again

How to turn your Kindle into a free, global SSH and IRC modem...
Risky Business #221 -- Browser GFX security with Ben Hawkes

Does the hype match the reality?
Risky Business #220 -- All your Macs are belong to Snare

Rootkitting OS X, fun with EFI bootloaders and more...

Risky Business #166 -- Bad guys find more ways to mess with Authenticode

User login

Recent podcasts

Recent comments