Network Security Podcast

What?!? We’re already at Episode 99?!?!? That’s right, due to some completely random timing it looks like we’ll be recording episode 100 out at RSA. Martin is on the road next week and Rich is cramming for RSA, so it looks like this will be our last episode before the impending insanity. We talk about a few issues this week, from Apple’s bundling of Safari in a “software update” to Rich’s usual rants against PCI, this time thanks to Rapid7. We were actually so busy we forgot to cover a few stories we meant to discuss, but we still managed to fill the usual half hour. We hope you enjoy it, and now we’re off to go buy new toys to record and stream live from the big event…

Show Notes

• Reminder about the RSA Security Blogger’s Meetup
• Rapid7 responds to Hannaford breach by blaming their customer. Sure, it’s Hannaford’s fault, but how about supporting your clients guys?
• Apple bundles Safari web browser with software updates. Really bad move guys.
• One Securosis reader fights back against fraud and catches the bad guy.
• Tonight’s Music: Martin forgot to tell me (It’s the Crabs, with End of the World. -Martin)

Network Security Podcast, Episode 99, March 25, 2008

Time: 31:06

Do you smell that? No, not the fresh air of spring, that other smell. You know, conference season. This week we’re joined by the mediaphyter herself, Jennifer Leggio. Jennifer is one of the main coordinators for this year’s Security Blogger Meetup at RSA, and she and I were both at SOURCE in Boston. We spend a fair bit of time this week talking about the security blogging community, review SOURCE, prep for RSA, and squeeze in a few security news items. Oh, Jennifer, the reason we can blog so much? It’s because we don’t think about it, we just spew the words on the screen. Show Notes

• Talking about the RSA Security Blogger’s Meetup
• Reviewing SOURCE Boston, where Hoff and Mogull faced off on stage.
• Major retailer breached and 4.2 M credit cards exposed.
• Rich tells Mac users they probably don’t need antivirus.
• Tonight’s Music: Tom Smith – Blog like it’s the end of the world

Network Security Podcast, Episode 98, March 18, 2008

Time: 41:42

Rich and Martin are joined tonight by Tim Krabec, author of the Security and Technology for SMB’s and SOHO’s blog. Tim’s a fellow Security Catalyst member and just happened to be around when we were recording tonight. We invited him on to get a slightly different view of security, mainly from someone who’s still in the trenches. Tim is working with small businesses and has to fight the good fight, something Rich and Martin sometimes forget about. Thanks for joining us tonight, Tim.

Show Notes:

• Security and Technology for SMB’s and SOHO’s
• New Telecom whistleblower describes possible gateway for massive surveillance of wireless communications
• Chinese hackers: No site is safe
• A question of programming ethics
• They grow up so quickly: Club Penguin
• Tonight’s Music: Rattle of my chains by Tom Yarbrough

Network Security Podcast, Episode 97, March 11, 2008

Time: 37:04

We’re both at home this week, so we had a pretty good show tonight. Martin will be on the road for the next few weeks and Rich will be in Boston at the SOURCE conference, so we’ll be recording a day or two early for a change. We’ll probably still release the podcast on Tuesday, so there won’t be much of a difference as far as your concerned. Rich will be presenting at SOURCE with Christofer Hoff, which may be one of the signs of the Apocolypse. There’s been a few interesting developments in hacking into systems, so make sure you keep a hand on your laptop when you’re out at the coffee shop. Visit Securosis.com and tell your identity theft stories to win a chance for a year’s worth of protection from Debix.

Show Notes:

• Judge Backtracks: WikiLeaks Resumes U.S. Operations
• Banks, telephone companies top identity theft study
• msramdmp: McGrew Security RAM dumper
• Hack into a Window PC – no password needed
• PCI Compliance without costly consultants
• Tonight’s Music: Angel on my shoulder by Melvern Taylor

Network Security Podcast, Episode 96, March 4, 2008

Time: 34:23