PLUS all your regular news...
August 27th, 2015 --
On this week's show we look at the fallout from the Ashley Madison attack. Did Brian Krebs just dox the Impact Team ringleader? Is he Australian? Adam Boileau and I talk about all the AshMad fallout and other infosec news.
There's news that doesn't involve AshMad, I swear!
August 27th, 2015 --
Links to items discussed in episode 380 of the Risky Business information security podcast.
This week's show features surprise guest: Cold and flu!
August 20th, 2015 --
In this week's podcast we check in with Troy Hunt from Troy has done the responsible thing in adding the Ashley Madison dataset to his service -- you can only search for email addresses in the dump after you've verified that you control them. We'll talk to him about why he did that.
So how about that data breach no one is talking about?
August 20th, 2015 --
Links to items discussed in episode 379 of the Risky Business infosec podcast.
The plans. They change.
August 19th, 2015 --
Hey to all you Patreon people! First up, a big thanks to you for helping out the show. It's been really heartening to see so many of you value Risky Business enough to put your hands in your pockets and make a contribution. The original idea behind the Patreon campaign was that if I hit the target I could take that money and throw it at an industrial unit here in Byron Bay and turn it into a proper studio. After 11.5 years working from home full time, I've been feeling a bit cooped up.
PLUS: "Islamic State publishes hacked kill list"
August 13th, 2015 --
On this week's show we're chatting with Mark Dowd and Brian Krebs about Oracle CSO Mary Ann Davidson's somewhat odd blog post from earlier this week. In the post she laid into security researchers for violating Oracle's EULA when reverse engineering their products. The post got pulled, much drama, we sift through the ashes of that. Plus we chat to Brian about the daring $46.7m online heist against Ubiquiti Networks.
Islamic State cyber hackers are coming to eat your face off...
August 13th, 2015 --
Links to items discussed in episode 378 of the Risky Business security podcast.
You're drunk, Wassenaar. Go home.
August 6th, 2015 --
On this week's show we discuss the BIS decision to ditch its car-a-zay plans for Wassenaar regulation, the latest car hacking news and more. We also check in with Trey Ford in this week's feature slot. Trey was the General Manager of the BlackHat conference, these days he works at Rapid7, and he joins us to talk about the vibe in Vegas at this year's conference.
Everything is under control...
August 6th, 2015 --
Links to items discussed in episode 377 of the Risky Business infosec podcast.
Are 950m devices really at risk? Joshua Drake talks Stagefright bugs...
July 30th, 2015 --
This week we're checking in with Josh Drake of Zimperium. With exploitation of Stagefright via Josh's sweet, sweet exploit you'd think the mother of all worms is coming. Well, probably not. Later versions of Android are tricky to exploit, and the diversity of hardware in earlier versions means coming up with one exploit to rule them all isn't really feasible. We'll drill down into that with Josh in a little while.
Pwnage and carnage. You know, business as usual...
July 30th, 2015 --
Links to items discussed in episode 376 of the Risky Business information security podcast.
PLUS: Lame duck Obama goes YOLO...
July 24th, 2015 --
This is the podcast I do for shiggles with Australian comedian, radio and TV personality Dan Ilic. This week we're talking about the nationalist, anti-Islam rallies held across Australia over the last week or so. We also chat about Donald Trump being a douche and Barack Obama's new lease of life as a lame duck president. Oh, and we also talk about the Ashley Madison hack because, hey, who isn't...
PLUS Dave Jorm talks Red Star OS...
July 23rd, 2015 --
In this week's feature interview we're chatting with Dave Jorm, our resident North Korea watcher. Some of you might remember Dave, he was on the show a couple of years ago talking about his OSINT satellite data analysis of North Korea and more recently he popped by to talk about software defined networking security.
Infidelity and automotive, the gifts that keep on giving!
July 23rd, 2015 --
Links to items discussed in episode 375 of the Risky Business infosec podcast.
Anti Flashitism the new black...
July 16th, 2015 --
On this week's show we'll be checking in with Richard Forno on the fallout from the OPM breach. Richard has been kicking around in DC infosec circles for a long time now and he let's us know what the mood is like inside the beltway. In this week's sponsor interview we chat with Chris Gatford of HackLabs! HackLabs is an Australia-based pentesting and consulting firm and we're speaking to Chris about the changing nature of security consultancies. Adam Boileau, as usual, joins the show to discuss the week's news, which has been dominated by calls for the axing of the Flash plugin and the continued fallout from the Hacking Team breach.
The Hacking Team mirth continues...
July 16th, 2015 --
Links to items discussed in episode 374 of the Risky Business infosec podcast.
Good hackers. Horrible people.
July 9th, 2015 --
Obviously the Hacking Team breach is the big story of the week and we'll be jumping right into that. It's a jam packed podcast this week -- we check in with Dave Aitel of Immunity to talk about the impending Wassenaar Arrangement disaster about to hit America. We're also joined by Claudio Guarnieri. Claudio has spent years tracking Hacking Team's malware to the darkest regions of the planet. For a long time he's been claiming Hacking Team were up to no good, now we know he was right. We get him on to the show for a well-earned gloat.
Hacking Team exposed as terrible, terrible people...
July 9th, 2015 --
Links to items discussed in episode 373 of the Risky Business information security podcast.
How would a pilot respond to a hacked plane?
July 2nd, 2015 --
This week's feature interview is a bit left of field With all the talk about plane hacking flying around over the last couple of months (zing) I thought it might be an idea to talk to an actual airliner pilot. So this week we're joined by an Australian Airbus pilot. He works for an Asian airline but he was in Australia recently and I caught up with him to ask him for his thoughts on the topic.
News, wikis and salsa! (Music, not the kind with peas in it.)
July 2nd, 2015 --
Links to items discussed in episode 372 of the Risky Business information security podcast.