A bad two weeks for BitCoin...
March 7th, 2014 --
In keeping with tradition, I take a week off and everything goes berserk. MtGox imploded, gotofail, dead BTC exchanges, more NTP mayhem. Here's a list of the stories discussed on this week's show.
A quick chat about a novel idea...
February 20th, 2014 --
This week we chat with a local consultant, Mark Brand of Datacom TSS, about the general topic of authentication. We've seen some interesting cases of things going wrong with auth on consumer sources lately. The @n Twitter username hijacking, the Matt Honan disaster of 2012. Now Google's run off and bought SlickLogin, a novel approach to mobile app auth. Will that get us anywhere? And what about NameCoin -- a BitCoin protocol-derived peer-to-peer authentication scheme? I'd never heard of it, but the concept is fascinating. Mark pops by to fill us in.
BitCoin has DogeCoin. Will NameCoin have NomCoin?
February 20th, 2014 --
Show notes for episode 311 of the Risky Business podcast!
COSEINC's Thomas Lim joins the show...
February 14th, 2014 --
On this week's show we're chatting with COSEINC's Thomas Lim about the Wassenaar Arrangement. It's basically a worldwide framework that restricts the sale of munitions and dual use technologies, and it has exploits in its sites. COSEINC is a security research company that engages in exploit development, and Lim thinks extending regulations to exploit sales is pointless. This week's show is brought to you by BugCrowd, a company that was founded in Australia but is now based in San Francisco thanks to VC investment.
Lots of cool stuff this week!
February 14th, 2014 --
Here are the stories discussed in episode 310 of the Risky Business podcast...
Meterpreter gets some new tricks...
February 7th, 2014 --
We're back after a nice long rest, and boy oh boy did a lot of stuff happen during the break. Adam Boileau joins the show to discuss the choicest selection of news items to emerge over the last six weeks. In this week's feature slot we chat to OJ Reeves about his work in upgrading Meterpreter, the Metasploit payload. There are some cool new features on the way, he'll clue us in on those. This week's show is brought to you by Tenable Network Security.
Lots of links for the first 2014 show!
February 7th, 2014 --
We're back from a long break and catching up on a whole bunch of news. And, umm. Here it is!
So what about that Snowden guy, huh?
December 13th, 2013 --
This is the final Risky Business podcast for 2013. The show will resume its weekly schedule in February 2014. Oh, and there are still three sponsor slots left between now and July. If you're interested, drop us a line with the contact form... This week's show looks back over the key events and trends of 2013; how media focus shifted from focussing on China's cyber-espionage to the scandalous revelations of the Snowden leaks.
A chat with Bromium co-founder and CTO Simon Crosby...
December 6th, 2013 --
On this week's show we speak to Bromium co-founder and CTO Simon Crosby all about its tech. We don't normally interview vendors about their technology in the feature slots, but Bromium is very interesting stuff. It's all about hardware-enabled task isolation with Xen-based micro VMs. The way they've implemented this makes it quite difficult for an attacker to gain persistence on a target machine. Simon is a very technical guy, it's a great interview and it's after the news.
What does one do with USD$100m in stolen Bitcoins?
December 6th, 2013 --
Here are links to the items discussed in this week's show, plus a couple of bonus links. In particular, check out the ABC's coverage of the Australian intelligence scandal involving ASIS and ASIO whistleblowers. Very interesting stuff!
$600 million buys you a lot of fail, apparently...
November 29th, 2013 --
In this week's show we speak with TrustedSec CEO Dave Kennedy about his testimony to the US congress about the Obama administration's healthcare.gov website. It cost over $600m and it's riddled with infosec 101 bugs. We find out just how bad it is and what can be done about it.
Get your fill of the week's news!
November 29th, 2013 --
Not a crazy news week for us. Americans are too busy eating turkeys.
The Grugq spitballs some secure IM ideas...
November 22nd, 2013 --
On this week's show, can you have your cake and eat it too? Is it possible to build a usable instant messenger platform that is secure and immune to traffic and metadata analysis? We speak with international man of mystery The Grugq all about creating a platform that ticks these boxes. As it turns out, it can be done. So goodbye Yahoo, MSN, AOL and Skype... hello to something completely new!
More news than we know what to do with...
November 22nd, 2013 --
Lots of news items here, not all made it to the final cut... and the show still ran over! To listen to this week's show, click here.
I guess corporations protect us from governments now. Weird.
November 15th, 2013 --
In this week's show Adam Boileau and I take a look at the technology industry's latest response to the Snowden revelations. The pushback is definitely gaining momentum. There's also plenty of bread-and-butter infosec news in this week's show, you can find links to the stories discussed in this week's show notes here. This week's show is brought to you by Tenable Network Security, big thanks to them. And this week's sponsor interview is with Tenable's very own Jack Daniel
We're baaaaaaaack...
November 15th, 2013 --
Here are links to the news items discussed on episode 304 of Risky Business.
D-Central isn't IP based. It's proprietary. Completely different.
November 1st, 2013 --
In this week's show we chat to McAfee antivirus founder John McAfee about his D-Central project and touch on the events of the last 12 months. Is he funny "ha ha" or funny "look out"? Have a listen, judge for yourself.
Show notes for ep' 303!
November 1st, 2013 --
Check out this week's show notes for links to the news stories discussed at the top of the show!
The BreakPoint edition...
October 25th, 2013 --
This week's show was recorded at the Ruxcon Breakpoint security conference at the Intercontinental Hotel in Melbourne. So this week's feature interview is a chat with Jonathan Brossard of Toucan Security, we're talking to him about his presentation on bypassing and generally messing with sandbox malware scanners. Poking the FireEye! That's a fun chat.
Knocked together in Melbourne!
October 25th, 2013 --
Here are links to the news items discussed in Risky Business 302, plus Brossard's slide deck.