Risky Business Podcast
December 06, 2013
Risky Business #307 -- So, what about that Bromium stuff?
Presented by
CEO and Publisher
Technology Editor
On this week's show we speak to Bromium co-founder and CTO Simon Crosby all about its tech. We don't normally interview vendors about their technology in the feature slots, but Bromium is very interesting stuff. It's all about hardware-enabled task isolation with Xen-based micro VMs. The way they've implemented this makes it quite difficult for an attacker to gain persistence on a target machine. Simon is a very technical guy, it's a great interview and it's after the news.
This week's show is brought to you by Tenable Network Security, makers of fine, fine, vulnerability scanning tools like Nessus. And in this week's sponsor interview we chat with Tenable's chief architect for the Asia Pacific region Dick Bussiere. Dick is based in Singapore, and surprisingly enough the infosec agenda there isn't being set by the Snowden leaks. So what's driving the infosec narrative in .sg? Dick joins the show with his view.
Show notes
$100 Million Worth of Bitcoins Stolen | Threatpost | The First Stop For Security News
http://threatpost.com/thieves-covering-tracks-following-100m-bitcoin-hei...
Malware jumps 'air gap' between non-networked devices | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57614442-83/malware-jumps-air-gap-betwe...
Huawei reportedly decides to abandon the US market | Mobile - CNET News
http://news.cnet.com/8301-1035_3-57614292-94/huawei-reportedly-decides-t...
Farsnews
http://english.farsnews.com/newstext.aspx?nn=13920909000362
Phone records of Australians may have been offered to foreign spy agencies
http://www.smh.com.au/federal-politics/political-news/phone-records-of-a...
A Few Thoughts on Cryptographic Engineering: How does the NSA break SSL?
http://blog.cryptographyengineering.com/2013/12/how-does-nsa-break-ssl.html
SkyJack - autonomous drone hacking
http://samy.pl/skyjack/
JPMorgan warns 465,000 card users on data loss after cyber attack | Reuters
http://www.reuters.com/article/2013/12/05/us-jpmorgan-dataexposed-idUSBR...
Researchers discover database with 2M stolen login credentials | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57614479-83/researchers-discover-databa...
New Dexter Point-of-Sale Malware Campaigns Discovered | Threatpost | The First Stop For Security News
http://threatpost.com/new-dexter-point-of-sale-malware-campaigns-discove...
Google Nexus phones reportedly susceptible to SMS attacks | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57614074-83/google-nexus-phones-reporte...
Bad apps bypasses Android locks - Applications - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/366459,bad-apps-bypasses-android-locks...
IE Reflective Cross-Site Scripting Filter Bypass Discovered | Threatpost | The First Stop For Security News
http://threatpost.com/bypass-of-internet-explorer-cross-site-scripting-f...
TIFF Zero Day Patch Among December 2013 Microsoft updates | Threatpost | The First Stop For Security News
http://threatpost.com/microsoft-to-patch-tiff-zero-day-wait-til-next-yea...
VMware Patches Fix Privilege Escalation Vulnerability | Threatpost | The First Stop For Security News
http://threatpost.com/vmware-patches-privilege-escalation-vulnerability/...
PM - Discovery of more than one whistleblower in East Timor bugging case 05/12/2013
http://www.abc.net.au/pm/content/2013/s3905928.htm
Fact Sheet- Online news sites to be placed on a more consistent licensing framework
http://www.mda.gov.sg/NewsAndEvents/PressRelease/2013/Pages/28052013.aspx