Anti Flashitism the new black...
July 16th, 2015 --
On this week's show we'll be checking in with Richard Forno on the fallout from the OPM breach. Richard has been kicking around in DC infosec circles for a long time now and he let's us know what the mood is like inside the beltway. In this week's sponsor interview we chat with Chris Gatford of HackLabs! HackLabs is an Australia-based pentesting and consulting firm and we're speaking to Chris about the changing nature of security consultancies. Adam Boileau, as usual, joins the show to discuss the week's news, which has been dominated by calls for the axing of the Flash plugin and the continued fallout from the Hacking Team breach.
The Hacking Team mirth continues...
July 16th, 2015 --
Links to items discussed in episode 374 of the Risky Business infosec podcast.
Good hackers. Horrible people.
July 9th, 2015 --
Obviously the Hacking Team breach is the big story of the week and we'll be jumping right into that. It's a jam packed podcast this week -- we check in with Dave Aitel of Immunity to talk about the impending Wassenaar Arrangement disaster about to hit America. We're also joined by Claudio Guarnieri. Claudio has spent years tracking Hacking Team's malware to the darkest regions of the planet. For a long time he's been claiming Hacking Team were up to no good, now we know he was right. We get him on to the show for a well-earned gloat.
Hacking Team exposed as terrible, terrible people...
July 9th, 2015 --
Links to items discussed in episode 373 of the Risky Business information security podcast.
How would a pilot respond to a hacked plane?
July 2nd, 2015 --
This week's feature interview is a bit left of field With all the talk about plane hacking flying around over the last couple of months (zing) I thought it might be an idea to talk to an actual airliner pilot. So this week we're joined by an Australian Airbus pilot. He works for an Asian airline but he was in Australia recently and I caught up with him to ask him for his thoughts on the topic.
News, wikis and salsa! (Music, not the kind with peas in it.)
July 2nd, 2015 --
Links to items discussed in episode 372 of the Risky Business information security podcast.
PLUS: Samsung doubles-down on its steamy, steamy pooch love...
June 25th, 2015 --
In this week's feature interview we chat with Richard Bejtlich. He serves as the chief security strategist at FireEye. He's a nonresident fellow with the Brookings Institute and he joins me this week to talk about the OPM breach, honeypots, China and Edward Snowden. This week's show is sponsored by Palo Alto Networks. This week's sponsor interview is with Ryan Olson of Palo's Threat Intelligence Unit 42 -- yes, that is a hitchhikers guide reference. He'll be joining us to discuss an APT campaign they uncovered in Asia -- it's called Lotus Blossom and it's yet another example of likely state sponsored APT activity targeting the region. Depressingly, it uses CVEs that start with 2012. Ugh.
News, opinion and more!
June 25th, 2015 --
Links to items discussed in episode 371 of the Risky Business podcast.
PLUS Dan Guido on the latest with DARPA's Cyber Grand Challenge...
June 18th, 2015 --
On this week's show we chat with Dan Guido of Trail of Bits about DARPA's Cyber Grand Challenge. There was a competition round last week and he tells us all about it.
For all your newsy needs...
June 18th, 2015 --
Links to items discussed in episode 370 of the Risky Business podcast...
PLUS Scanning for people-based threats...
June 11th, 2015 --
On this week's show we speak with Laura Bell about scanning people for vulnerabilities. Who in your organisation do you most need to worry about protecting? Well, it's not who you think. She'll be along soon to discuss that. This week's show is brought to you by Rapid7.
Kaspersky turns lemons into sweet, sweet marketing lemonade...
June 11th, 2015 --
Links to everything discussed in episode 369 of the Risky Business security podcast.
Is Brian Krebs really hated by his subjects?
June 5th, 2015 --
This week's edition of the show is a special edition recorded at AusCERT's 2015 conference on the Gold Coast, brought to you by Datacom TSS. In it, we speak with: * Brian Krebs, who talks about the weird symbiotic relationship he has with the criminal underworld * Eva Galperin of the EFF talks Wassenaar * David Litchfield who discusses his new database security tool * Datacom TSS practice manager Lou Robertson on outcomes-based security service contracts I hope you enjoy it!
Not many links this week...
June 5th, 2015 --
Links to items discussed in episode 368 of the Risky Business podcast. Only a few links this week because there's no news segment!
PLUS Haroon Meer with news!
May 28th, 2015 --
This week's show is a bit different. I've prepared it while in South Africa. I've been here for two weeks now, one week of holidays and another week at the ITWeb Security Summit in Johannesburg. While here I got a chance to meet and interview Roger Dingledine, the Tor Project leader, about the future of hidden services, the Anonabox controversy, and the possibility of major browser manufactures integrating Tor into their private browsing modes. That's this week's feature. This week's news guest is Haroon Meer of Thinkst.
I promise not to holiday for a while, ok?
May 28th, 2015 --
Links to items discussed in episode 367 of the Risky Business security podcast.
That's a mighty fancy network controller you've got there pal...
May 14th, 2015 --
On this week's show we're chatting with Dave Jorm of IIX -- International Internet Exchange. We're previewing his upcoming AusCERT talk all about software defined networking security. It's fancy tech, but there are some interesting little quirks CSOs should definitely be across. This week's show is sponsored by Senetas, big thanks to them. Senetas CTO Julian Fay is this week's sponsor guest. We talk about those horrible Open Smart Grid bugs and a few other things, that's coming up later. Adam Boileau, as usual, joins the show to discuss the week's news headlines.
Get yer weekly news 'here. Weekly news... right 'ere!
May 14th, 2015 --
Links to items discussed in episode 366 of the Risky Business podcast.
PLUS: Mad Max Fury Road, Elon Musk can be a dick.. oh, and deflategate...
May 13th, 2015 --
As usual for Serious Business I'm joined by AJ+ satirist, Australian comedian Dan Ilic, to discuss a few topical items of the last week, and boy, we've got some good stuff for you.. we're talking about journalist Seymour Hersh's latest investigative work -- is it pure fiction? We're talking about DeflateGate, we're talking Elon Musk being a douche and we're talking MAD MAX, Fury Road...
PLUS: No more patch Tuesday?
May 7th, 2015 --
This week's show is brought to you by BugCrowd -- crowdsourced security testing. Bugcrowd founder and CEO Casey Ellis will join us in this week's sponsor interview to tell us about the latest trends in bounties and crowdsourced security.