Risky Business show

Risky Business

Summary: Risky Business primary podcast.

Podcasts:

 Risky Business #426 -- House Oversight Committee drops OPM breach report PLUS St Jude sues MedSec | File Type: audio/mpeg | Duration: Unknown

In this week's feature interview we chat with Stephen Ridley about all things IoT. Stephen is a researcher turned entrepreneur and he'll be along to talk about the platform consolidation we're going to see when it comes to "things". Once that settles, he argues, we'll get a better idea of the security risks we should really, actually be worried about. In this week's sponsor interview we're chatting with Simon Galbally at Senetas. read more [1] [1] http://risky.biz/RB426

 Risky Business #425 -- MedSec CEO Justine Bone on the Muddy Waters short | File Type: audio/mpeg | Duration: Unknown

On this week's show we've landed what looks to be a fairly exclusive interview -- at least as far as the tech press is concerned. Justine Bone will be joining us to explain why the company she works with, MedSec, decided to use vulnerability information on implantable medical devices to drive a short-selling scheme in partnership with Muddy Waters. This week's show is sponsored by Tenable Network Security. We're doing something a bit different in this week's sponsor interview -- we're chatting with one of Tenable's customers, City of San Diego CISO Gary Hayslip. read more [1] [1] http://risky.biz/RB425

 Risky Business #424 -- Jess Frazelle on Docker. So hot right now. | File Type: audio/mpeg | Duration: Unknown

On this week's show we chat with Jessie Frazelle. Jessie is a former Docker maintainer who now works at Google on all things "containery". So we talk to her about what's up with containers, basically, and where the security pitfalls are. Like it or not, containers are likely going to be used in your environment, so getting to know them is a must. That's this week's feature. read more [1] [1] http://risky.biz/RB424

 Risky Business #423 -- ShadowBrokers PLUS how2pwn Apple's Secure Enclave | File Type: audio/mpeg | Duration: Unknown

This week's feature interview is incredible. We're speaking with David Wang from Azimuth Security. He, his colleague Tarjei Mandt and Mat Solnik of OffCell Research delivered an absolutely blockbuster talk at Black Hat. I didn't see the talk at the time but I got a chance to review the slides and oh-my-god I can't believe this one got so little attention. read more [1] [1] http://risky.biz/RB423

 Risky Business #422 -- #CensusFail, news with Adam and MOAR | File Type: audio/mpeg | Duration: Unknown

On this week's show we talk about the week's security news with Adam Boileau and I spill on what my sources have told me about #censusfail. read more [1] [1] http://risky.biz/RB422

 Risky Business #421 -- Las Vegas edition with Dan Guido, Andy Greenberg and Zane Lackey | File Type: audio/mpeg | Duration: Unknown

On this week's show we speak with Signal Sciences' co-founder Zane Lackey about hackers building defensive tools and software companies. Dan Guido and Andy Greenberg talk about car hacking and the week's security news, and Wade Woolwine of Rapid7 is in the sponsor slot talking about EDR/IDR software. Links to everything are in this week's show notes .

 Risky Business #420 -- What we don't know about Watergate 2.0 | File Type: audio/mpeg | Duration: Unknown

On this week's show we're taking a look at the DNC leaks, but don't worry, we won't be getting bogged down in the same old angles. Instead, we're going to chat to Lorenzo Franceschi-Bicchierai from VICE motherboard about his experience in interviewing the Guccifer 2 persona. Then we'll hear from Kevin Poulsen about what these latest developments mean for Wikileaks. It's a topic you're probably sick of hearing about this week, but stick with us, we've got some new angles, and they're relevant. read more [1] [1] http://risky.biz/RB420

 Risky Business #419 -- Brian Krebs on future of bank cybercrime | File Type: audio/mpeg | Duration: Unknown

On this week's show we're catching up with Brian Krebs of Krebs On Security. He'll be talking to us about recent trends in cybercrime, and he's got a warning for security teams in the banking sector. He says things are going to get pretty sticky, and he's usually right on this stuff. read more [1] [1] http://risky.biz/RB419

 Risky Business #418 -- The rise of the crypto-Taliban | File Type: audio/mpeg | Duration: Unknown

On this week's show we're chatting with The Grugq about secure messaging. Facebook has announced it's rolling out an end-to-end encryption feature and the reaction to this wonderful announcement has been somewhat bizarre. We'll be talking to Grugq about why crypto absolutists are hating on companies that are rolling out non-default e2e features. We'll also talk about a couple of interesting case studies in which e2e encryption did absolutely nothing for the people using it. read more [1] [1] http://risky.biz/RB418

 Risky Business #417 -- PlayPen ruling to let FBI off leash? | File Type: audio/mpeg | Duration: Unknown

In this week's feature interview we're chatting with Stanford's very own Jennifer Granick about a recent ruling in a Virginia court that appears to give the FBI permission to hack into any computer it wants, sans warrant. Well that's what the headlines are screaming, anyway. But as you'll hear, it's not quite that black and white. read more [1] [1] http://risky.biz/RB417

 Risky Business #416 -- Post holiday carnage edition | File Type: audio/mpeg | Duration: Unknown

On this week's show we'll be catching up on the news of the last few weeks with Adam Boileau, then it's straight into the sponsor segment. read more [1] [1] http://risky.biz/RB416

 Risky Business #410 -- Mainframe security: Too big to fail? | File Type: audio/mpeg | Duration: Unknown

On this week's show we're chatting with Chad Rikansrud about mainframe security. Yes, they're old school, but there are many, many reasons why large organisations still use these hunks of big iron. And as you'll hear, because they're so important to the companies they basically run, management can get a bit twitchy when you want to do crazy stuff to them, like, you know, pentest them. We'll find out what mainframe security issues look like with Chad Rikansrud, after this week's news. read more [1] [1] http://risky.biz/RB410

 Risky Business #403 -- Inside Islamic State's doc leak | File Type: audio/mpeg | Duration: Unknown

On this week's show we're chatting with David Wells. He's ex GCHQ and ASD but these days he's a counterterrorism boffin with the Lowy Institute. He's joining us to discuss the IS document leak. Depending on which story you read its either the death of the organisation or it won't do anything at all to disrupt it. We get David's thoughts on what this leak will actually for the so-called Caliphate. In this week's sponsor interview we're doing something a bit different.. following on from last week's interview with Re/Code's Arik Hesseldahl we're chatting with Tenable's CFO, Steve Vintz. read more [1] [1] http://risky.biz/RB403

 Risky Business #401 -- Deserialisation attacks are kind of a big deal | File Type: audio/mpeg | Duration: Unknown

On this week's show we get into a serious technical discussion about deserialisation attacks with with one of Adam Boileau's colleagues, Brendan Jamieson about the biggest issue in infosec that no one is talking about -- deserialisation vulnerabilities and their exploitation. This attack class is a serious problem in enterprise environments thanks to the release of the YSoSerial tool about a year ago. Pen-testers who are across this bug class are finding issues everywhere they look, and hardly anyone is talking about it. But we do, this week. read more [1] [1] http://risky.biz/RB401

 Risky Business #396 -- Chris Wysopal on scanning for backdoors | File Type: audio/mpeg | Duration: Unknown

On this week's show we've got two feature interviews! We're talking to Chris Wysopal from Veracode about using static analysis techniques to find back doors in software. With Juniper, AMX, Fortinet and Cisco all experiencing either maliciously planted or accidental backdoors, this is a hot topic. Chris joins us to talk about how you go about finding this stuff and whether or not vendors are taking this issue seriously enough. read more [1] [1] http://risky.biz/RB396

Comments

Login or signup comment.