On this week's show we're talking Web Application firewalls with Jeremiah Grossman. He's the founder and CTO of WhiteHat Security -- and he's also a semi regular guest on Risky Business.
On this week's Risky Business we're taking a look at firmware root kits with John Heasman from the US arm of NGS Software. Some time ago, John figured out how to plonk a root kit on to a PCI device [pdf]. As you can imagine, those sorts of root kits can be very difficult to detect and remove.
Hey hey, Risky Business is up, sponsored this week by the fine folks at Tenable Network Security. On this week's show we speak to counter-surveillance guru Les Goldsmith from ESD Group Australia about extracting data from mobile phones. If you're someone in a sensitive job, you might want to think twice about taking your phone with you to the Beijing Olympics, Goldsmith says.
This week's show is sponsored by Check Point Software and hosted by Vigabyte. In Risky Business 65 we take a look at all things wireless with Assurance.com.au's Neal Wise.
This week's edition of Risky Business is brought to you by RSA Security and hosted by Vigabyte virtual hosting.
This week's edition of Risky Business is sponsored by Tenable Network Security and hosted by Vigabyte virtual hosting.
In this AusCERT talk self-described security geek Daniel Klein paints a disturbingly bleak picture of the state of IT security.
In this AusCERT presentation, Independent Security Evaluators' Charles Miller discusses the bug marketplace.
In this quick AusCERT presentation, the Australian Attorney General Department's Steve Stroud talks about Cyberstorm II -- the global cyber war game. Cyberstorm is a full-scale war game involving governments and private sector organisations from Canada, USA, Australia, Britain and New Zealand. It's designed to test the resilience of our infrastructure under a full blown cyber attack.
In this interview Risky Business spoke to Arbor Networks' Chief Research Officer, Danny McPherson. Danny also serves on the MPLScon Advisory Board, the FCC's Network Reliability and Interoperability Council (NRIC) and is active in the network and security operations and research communities. He's a bizarre hybrid -- a twisted split between a security guy and a network guy!
In this interview, with Australian Law Reform Commission President David Weisbrot talks privacy law. The ALRC has been asked to recommend changes to existing privacy laws in Australia, and its report is due to be handed to the Attorney General next week.
We've added more coverage from AusCERT's 2008 conference. You can download it here.
In this AusCERT presentation, iDefense's Kimberly Zenz talks about Russian cyber crime.
Welcome to this special audio presentation from AusCERT. In the following presentation you'll hear Colin Whittaker, the head of security for APACS, the UK payments association, trying to determine whether biometrics are really ready for use in banking and payments.
Here Risky Business host Patrick Gray talks to Kimberly Zenz, iDefense's Russia expert. You can hear her full AusCERT presentation here. In this interview we find out how Zenz, based in the USA, became a recognised expert on Russian cybercrime, and where she sees malware hosting providers like the Russian Business Network heading.
In this interview database security legend David Litchfield from NGS Software talks about his latest research and development efforts. We caught up with Litchfield at the last AusCERT conference as well. When we interviewed him back in 2007, he told us about his plans to launch FEDS -- the forensic examiner's database scalpel. Well, Litchfield says it should be released in the next few months.
Day one of ITRadio's AusCERT conference coverage is up and ready! You can go to our special AusCERT sub-site to download interviews and presentations. We've already got heaps on the site (www.itradio.com.au/AusCERT08/) for you to go and grab, including an interview with the former technical director of the NSA, Brian Snow.
In this AusCERT presentation by AT&T staffer and security legend Bill Cheswick says passwords, as they exist today, are dead. While it might not be the most original topic, Cheswick's presentation is a lot of fun.
You may or may not have heard of the Shadowserver foundation. It's a volunteer run organisation designed to track malware, botnet activity and electronic fraud. Richard Perlotto runs the technology and operational side of the organisation, but his day job is as a security advisor to Cisco Systems.
This presentation is by the former Director of Information Assurance for America's National Security Agency, Brian Snow. He joined the NSA in 1971 after founding the computer science department at Ohio University in the 60s. He spent his first 20 years at the NSA directing research and development into cryptographic and secure systems. He also created and managed NSA's secure systems design division in the 80s.
