Podcasts

This week's show is brought to you by Tenable Network Security and hosted, as always, by Vigabyte Virtual Hosting.

There's no news segment in this week's news section -- Patrick Gray is on holiday in Japan, so this is a pre-recorded show. But it's still a good one!

This week's feature guest is New Zealand-based security researcher Paul Craig. He's just launched iKAT, the Interactive Kiosk Attack Tool.

Ever wondered how to pwn one of those Internet kiosks in various lobbies and airports? Tune in to find out! Paul's spent over a year working on iKAT and has just launched it at DEFCON.

This week's sponsor interview is with Tenable Network Security's Chief Security Officer Marcus Ranum. For those who haven't worked in the security industry very long, Marcus is kind of a big deal(tm).

This week we're talking to Marcus about the impact the Payment Card Industry Data Security Standard (PCI DSS) has had on industry practices.

This week's edition of Risky Business is brought to you by the fine folks at RSA Security.

In this week's podcast, Risky Business takes a look at an area that impacts the IT security business that surprisingly few infosec professionals know a great deal about: Money laundering.

With recent news of eGold directors agreeing to plead guilty to money laundering charges in the USA, we thought it would make sense to look at how money gets from A to B in the underground. And once it's there, how is it turned into cold, hard cash?

iDefense Senior Threat Analyst Kimberly Zenz joins us on the line from the USA to discuss. Don't worry, she's not one of those vendor people who just claims to know a lot about this stuff, she's the real deal.

Adam Boileau is this week's news guest, and Greg Singh from RSA Security drops in to discuss dodgy package and software update managers in this week's sponsor interview.

This week's Risky Business is sponsored by Microsoft and hosted by Vigabyte virtual hosting.

This week's feature guest on Risky Business is H D Moore. He's the creator of the Metasploit framework and considered by Those Who Know to be a very smart chappy indeed. He joins us this week to talk about the DNS bugs discovered by Dan Kaminsky.

H D, in conjunction with his good buddy |)ruid, has released exploit code for the bugs, but fails to see why they're considered such a big deal.

Considering we've seen similar bugs in the past, it's a fair position. Sure, it's a problem, but why the fuss now?

In this week's sponsor interview we chat to Microsoft's Virus Research and Response Coordinator, Jaukub Kaminsky. (No relation to Dan..) We go over the whitelist/blacklist thing again, as well as having a chat about what it's like being a malware guy at Microsoft.

The company got off to an inauspicious start with AV technologies in the early 90s (MSAV.EXE - remember that? Shudder\u2026), but Jakub says things have changed considerably since then.

Regular guest, ZDNet Australia editor Munir Kotadia, is away on holidays this week. Instead we'll chat to Adam "Metlstorm" Boileau

This week's feature interview is with Morgan Marquis-Boire, a pen tester and principal consultant with Security-Assessment.com in NZ. Morgan loves playing with SCADA systems, so much so that he's due to give a SCADA talk at DEFCON in Vegas this year.

In this Risky Business interview Morgan pops the hype bubble on the "China thing", talks about messing with non-IP wireless protocols (serial) used in SCADA deployments, and more.

This week's sponsor interview is a lot of fun, too. We've got our favourite industry cynic, Marcus J Ranum, coming on to the show to discuss deperimiterisation.

We also discuss the week's news with Munir Kotadia from ZDNet Australia.

This week's Risky Business was recorded in St Petersburg and edited in London. The gang at Kaspersky antivirus flew me to Russia for their 10th partner conference! Nice!

I got a chance to talk to a stack of AV guys about problems with whitelisting technology. It's showing a lot of promise, but you still can't throw out the blacklists just yet. The future of anti-malware is looking bloody complicated.

Kaspersky anti-virus CEO Eugene Kaspersky and virus analyst Magnus Kalkuhl are on the show to discuss the conundrum.

Also on this week's show we'll talk to our sponsor RSA Security about smart card authentication. With laptops shipping with smart card readers, PKI is looking tantalisingly practical. Who knew that'd ever happen?

No news this week, I'm still on the road.

On this week's show we're talking Web Application firewalls with Jeremiah Grossman. He's the founder and CTO of WhiteHat Security -- and he's also a semi regular guest on Risky Business.

On this week's podcast Jeremiah chats about WAFs, or Web Application firewalls, which he says come in quite handy. Admittedly he's biased, having done some work on WAFs that work with F5 kit, but he provides some pretty compelling arguments as to why these things are assets.

It takes typical organisations around 130 days to fix sequel injection bugs in code. But you can mitigate these sorts of things with a Web app firewall, and you won't even have to deal with the development team! Hooray!

Check Point Software's Steve MacDonald also drops by for this week's sponsor interview, which is about considering allowing staff to bring their own laptops to work.

ZDNet Australia's Munir Kotadia is sick this week, so Kiwicon organiser and Winlockpwn creator Adam Boileau steps in to fill his shoes.

On this week's Risky Business we're taking a look at firmware root kits with John Heasman from the US arm of NGS Software. Some time ago, John figured out how to plonk a root kit on to a PCI device [pdf]. As you can imagine, those sorts of root kits can be very difficult to detect and remove.

But it gets worse.

Newer research, due to be presented at BlackHat in Las Vegas, will show how the CPU on some PCI devices (like the chip on network devices designed to do TCP checksum calculations) can actually be used to run the root kits. That means they never gets loaded into main memory. Try detecting that!

Also on this week's show, Munir Kotadia from ZDNet Australia joins us to discuss the week's news.

Hey hey, Risky Business is up, sponsored this week by the fine folks at Tenable Network Security. On this week's show we speak to counter-surveillance guru Les Goldsmith from ESD Group Australia about extracting data from mobile phones. If you're someone in a sensitive job, you might want to think twice about taking your phone with you to the Beijing Olympics, Goldsmith says.

Risky Business 66 also features part two of our interview with wireless guru Neal Wise of Assurance.com.au. In this week's section Neal discusses 802.11n headaches, companies becoming complacent after implementing 802.1x, bad security in the name of compliance and more.

This week's sponsor guest is Marcus Ranum from Tenable Network Security, who argues penetration tests seldom represent true value.

During the podcast you'll hear Les Goldsmith mention a National Institute of Standard and Technology (NIST) paper on mobile phone forensics. It's here (pdf). You'll also hear Patrick Gray mention Federal Agent Nigel Phair's Pacific Islands Computer Crime and Security Survey. That one's here (pdf).

This week's show is sponsored by Check Point Software and hosted by Vigabyte. In Risky Business 65 we take a look at all things wireless with Assurance.com.au's Neal Wise.

The news of a gaping hole in Microsoft's Bluetooth stack has given the topic some currency, so we brought Neal on the show to talk to us about Bluetooth and 802.11 headaches. Neal conducted this year's wireless workshop at the AusCERT conference on the Gold Coast. (Highlight? Taking his class war driving in the War Bus... some of them were law enforcement types. Chortle.) He goes through some of the funky stuff you can do with Bluetooth in particular, before we have a chat about 802.11 shenanigans.

On this week's show:

• ZDNet Australia's Munir Kotadia discusses the week's news headlines with host Patrick Gray
• Neal Wise of Assurance.com.au talks wireless
• Check Point Software's Steve McDonald pops in for this week's sponsor interview: this one's all about always-on VPNs.

This week's edition of Risky Business is brought to you by RSA Security and hosted by Vigabyte virtual hosting.

There's no news segment in this week's show -- by the time you download this podcast, host Patrick Gray will be climbing a cliff somewhere in southern Thailand thanks to the marvelous wonder that is pre-recording and the time-stamp feature in WordPress.

Nevertheless, this week's show tills some fun ground, including the recent Flash-based exploit doing the rounds in the wild, Cisco rootkits, the hysteria over the potential reverse engineering of an IOS SSH patch, the return of Ruxcon and more.

Guests on this week's show:

• Juniper Networks security boffin Steve Manzuik
• Ruxcon lead organiser Chris Spencer
• RSA Security's Greg Singh pops by in this week's sponsor interview