P1 Security (and Qualys) founder Philippe Langlois talks SIM key haxx...
February 26th, 2015 --
On this week's show we're speaking with Philippe Langlois. You may remember him as the founder of Qualys in the 90s, but these days he's the CEO and founder of P1 Security, a telecommunications security firm. He'll be joining us to discuss the NSA and GCHQ operation against SIM card manufacturer Gemalto.
Dramatic fails FTW!
February 26th, 2015 --
Links to everything discussed in episode 355 of the Risky Business podcast.
New compile-time tricks, split TLB tricks and MOAR...
February 20th, 2015 --
On this week's show we're chatting with Assured Information Security senior research engineer Jacob Torrey about some work he's due to present at SysCAN and Infiltrate. It's called HARES, and it's basically a pretty impressive party trick that makes reverse engineering malware payloads a lot harder. He's also been following some work around some compile-time tricks that make software builds unique. This can make your 0day a lot less useful because exploit has to be custom built for each target... think of it as a compile-time ASLR trick, but better.
News, a keynote video and more!
February 20th, 2015 --
Links to this week's news!
PLUS Microsoft's MS15-011 is coming to eat your soul...
February 12th, 2015 --
This week's feature interview is with Andy Greenberg, senior writer with WIRED. He's covered Silk Road from the get go, even scoring an in depth interview with DPR before he was caught and unmasked as Ross Ulbricht. He attended every day of Ulbricht's trial and says he was there every minute the jury was. He joined me via Skype earlier this week to talk about the trial of Ross Ulbricht, the future of underground markets and the disconnect between Ross Ulbricht's real life and online personas.
News, music, Risky Business on YouTube and MOAR...
February 12th, 2015 --
It's been a cracker news week.
All your datas R belong to anyone who asks nicely, really...
February 11th, 2015 --
Despite Australian Attorney General George Brandis's stellar explanation, some people are still a tad confused about what proposed law changes mean. Funny, that.
Don't let the door hit you on your way out, pal...
February 5th, 2015 --
In this week's feature we're chatting with Dave Aitel of Immunity Inc. We chat to him about the Sony hack being a demonstration of North Korean capability as opposed to genuine revenge... we also talk about security conferences in 2015 and chat to him about his rage-inspiring musings on so-called junk hacking from last year. In this week's sponsor interview we speak with HackLabs big cheese Chris Gatford about the so-called Ghost vulnerability.
Superbowl weekend makes for a light news week...
February 5th, 2015 --
It's a pretty light news week, but DPR is done like a dinner.
PLUS! Marcus Ranum and Beardy McSweatybeard...
January 30th, 2015 --
In this week's feature interview we're chatting with Wired journalist Kim Zetter about her fantastic book Stuxnet: Countdown to Zero Day. As it turns out, the assumption that US and Israeli intelligence agencies had "boots on ground" intelligence to design the malicious code could very well be bunkum!
Hey Ross, flip us some Bitcoin pal? You won't be needing it!
January 30th, 2015 --
Links to news, videos and more! First ever Risky.Biz YouTube rant with Patrick Gray - YouTube https://www.youtube.com/watch?v=0o5PRIrQq48 Support Risky Business via our Patreon campaign! https://patreon.com/riskybusiness
Trying something new!
January 29th, 2015 --
Here it is, my first ever YouTube rant! I hope you enjoy it...
Catching up on the news we've missed!
January 22nd, 2015 --
Welcome back to Risky Business for another year. This is the ninth year of weekly Risky Business podcasts, we're stoked you're sticking around for more. In this week's show Patrick Gray and Adam Boileau discuss the last month's crazy CyberNews(tm) and Palo Alto CTO and founder Nir Zuk stops by for the sponsor interview. You can now support Risky Business by becoming a Patron.
All the news that's fit to Internet...
January 22nd, 2015 --
And we're back for another year of weekly infosec coverage! In this week's episode we look back at the news that we missed while we were on break. Also, you can now support the Risky Business podcast by becoming a patron! FBI Director: Sony's 'Sloppy' North Korean Hackers Revealed Their IP Addresses | WIRED http://www.wired.com/2015/01/fbi-director-says-north-korean-hackers-some... U.S. Spies Tapped North Korean Computers Before Sony Hack - Bloomberg
We'll be back in mid January 2015...
December 11th, 2014 --
In this special edition we take a look back over the big news items of 2014.
Truth can be stranger than fiction on those darned Internetz...
December 5th, 2014 --
On this week's show Adam and I establish that it's actually quite possible the disaster unfolding at Sony Pictures is, in fact, a North Korean government plot. I know, I know, there are sceptics, but any way you slice or dice it, it actually looks plausible. Tune in to find out why.
Don't forget to tune in to our year in review special next week!
December 5th, 2014 --
Links to items discussed in episode 348 of the Risky Business podcast...
PLUS: Sony gets popped, again, Regin and more...
November 28th, 2014 --
There's lots of fun news in this week's show. Sony Pictures got absolutely flattened, Regin is all the rage and the SEA has been enjoying some success.
All the news that's fit to read...
November 28th, 2014 --
Links to items discussed in episode 347 of the Risky Business podcast.
Encrypt smartphones = KILL the CHILDREN...
November 21st, 2014 --
On this week's show we're chatting with Peter Fillmore about payment card security. He was able to clone a contactless card and use it to do his shopping here in Australia -- this is something you shouldn't be able to do. So the question becomes, how can the USA, which is taking tentative steps towards chip cards, avoid some of the mistakes made in more advanced markets like ours? We also find out chip-enabled ATMs pass card data through the chip reader straight into a parser running on the main ATM OS... which, yeah... That's pretty bad.