Risky Business

Risky Business #415 -- Lauri Love talks extradition

June 10, 2016 -- On this week's show we're chatting with Lauri Love. Lauri is an activist facing extradition to the United States where prosecutors hope to charge him with a raft of offences relating to attacks against US government computers... he'll tell us about what's going on with his extradition hearing and why he really, really doesn't want to go to the USA.

This week's show is sponsored by Tenable Network Security, big thanks to them. If you're looking for some vulnerability scanning and management software you really should talk to Tenable!

Risky Business #414 -- Trading on OSINT for fun and profit

June 3, 2016 -- On this week's show we're chatting with Australian security researcher Nik Cubrilovic. He's been doing some fascinating research into using OSINT techniques to obtain market-sensitive information. It's OSINT for fun and profit! That's this week's feature.

Risky Business #413 -- Matthew Green: The case against backdoors

May 27, 2016 -- In this week's feature slot we're joined by cryptographer Matthew Green of Johns Hopkins University. He'll be arguing against the subversion of encryption technologies this week. Consider it a counterpoint to last week's discussion with Stewart A Baker, former NSA general counsel. This week we get the other side of the argument!

This week's sponsor interview is also a cracker. We're chatting with Bromium's co-founder and CTO Simon Crosby. He's been spending a fair bit of time lately trolling rival CTOs on Twitter, which has been somewhat hilarious to watch.

Risky Business #412 -- Former NSA general counsel Stewart A Baker

May 20, 2016 -- On this week's show we're chatting with former NSA general counsel and Steptoe & Johnson law partner Stewart A Baker about the cryptowars! Stewart was NSA general counsel during the Clipper Chip period at NSA, and he joins us this week to talk about the second cryptowar, Apple versus the FBI and more.

Risky Business #411 -- Ruining the ImageMagick party

May 13, 2016 -- On this week's show we're taking a look at the backstory to the ImageMagick bug. There's a fair bit more to that one than has been reported so far and we'll chat with Ryan Huber about that.

This week's show is sponsored by BugCrowd, so in this week's sponsor interview we're joined by Casey Ellis, BugCrowd's CEO. We're also joined by Katie Moussouris, former chief policy officer from HackerOne. She's now a freelance bug bounty consultant working across the whole industry and she's got some interesting stuff to say about where all this bounty madness is headed.

Risky Business #410 -- Mainframe security: Too big to fail?

May 6, 2016 -- On this week's show we're chatting with Chad Rikansrud about mainframe security. Yes, they're old school, but there are many, many reasons why large organisations still use these hunks of big iron. And as you'll hear, because they're so important to the companies they basically run, management can get a bit twitchy when you want to do crazy stuff to them, like, you know, pentest them. We'll find out what mainframe security issues look like with Chad Rikansrud, after this week's news.

Risky Business #409 -- Talking SWIFT hacks, news, with Adam Boileau

April 28, 2016 -- On this week's show Adam Boileau and Patrick Gray talk about the week's information security news before diving into a detailed look at multiple recent attacks against banks' SWIFT infrastructure.

It's the Metlstorm hour of power!

Risky Business #408 -- Advertising ecosystem security with Dan Kaminsky, news with Grugq

April 21, 2016 -- On this week's show, as promised, we'll be checking in with Dan Kaminsky of WhiteOps to discuss their bread and butter -- click fraud prevention. We also get his thoughts on what the ad industry could do to stamp out malvertising. As you'll hear, he thinks the only way forward is to actually fix browsers. Seems sensible to us!

Adam Boileau is taking a well-deserved week off, so The Grugq pops in to fill in. We'll chat to him about all the infosec news of the last week.

Links to everything are in this week's show notes.

Risky Business #407 -- Guests HD Moore, Dan Kaminsky, Grugq and Space Rogue

April 14, 2016 -- On this week's show we chat with HD Moore about the woeful state of security at Panamanian law firms. Mossack Fonseca isn't the only one that truly, truly sucks at security.

We also check in with Dan Kaminsky to get his reaction to the BadLock bug. Tenable Network Security's Cris "Space Rogue" Thomas joins us to talk about what we could expect this year when it comes to security startups. He's expecting quite a few of them to fold.

The Grugq joins the show this week to discuss the week's security news. He's filling in for Adam Boileau who's travelling in Australia.

Risky Business #406 -- Making a killing from bug bounty programs

March 31, 2016 -- On this week's show we're chatting with Nathaniel Wakelam, a professional bug bounty participant who, distressingly, at age 20, earns shitloads more money than I do! We'll talk to him about how he got into bug bounties, and how he manages to take down a massive paycheck in such a competitive space.