Network Security Podcast

We’ve got a long show to night, but well worth it.  Rich was able to talk Dino Dai Zovi into appearing on the show after his recent talks at both SOURCE Boston and CanSecWest, despite Dino’s feeling the effects of so much travel.  We talked about his new book, about his post “No More Free Bugs” and general dealings with vendors about vulnerabilities.  Rich also succumbs to the darkside and let’s his fanboi roots show more than a little.  We finish by talking about the impending doom that is (or isn’t) Conficker and the GhostNet.  We had a lot more to talk about, but in honor of your time and our energy, we ended it before we really got rolling.  Still not as long as a Pauldotcom show though.  Speaking of which, congratulations to Paul on his new role over at Tenable!

Network Security Podcast, Episode 144, March 31, 2009
Time:  53:31

Show Notes:

• Dino Dai Zovi – Trail of Bits
• The Mac Hacker’s Handbook
• Easily Detect Conficker infections – over the network
• Electronic spy network focused on Dalai Lama and embassy computers
• Tracking GhostNet:  Investigating a Cyber espionage network

With the CanSecWest conference last week, right on the heels of Black Hat Europe, there’s been a lot of happenings in the security world. On top of that, our favorite investigative reporter managed to take down yet another group of bad guys by shining his flashlight in the right direction.

But before we delve into the week’s security news, we spend a little time talking about my shiny new Mac Pro, as Martin gives me a few parenting tips (don’t worry, we try not to bore you too much). I rant a bit on Apple’s stupidity with their cord-length on the new 24″ Cinema Display. Seriously, only 3.5 feet? With *no* extension available anywhere?!?

Sigh. And now, on to the show.

Network Security Podcast, Episode 143, March 24, 2009

Show Notes:

• Brian Krebs reveals the evilness that is TrafficConverter.
• TrafficConverter is shut down. Coincidence? Nope.
• Is Conficker just a big April’s Fools day joke? Yeah, right.
• Jeremiah Grossman is seeking quick hits in web application security.
• Core Security researchers reveal BIOS attack.
• All browsers go down at CanSecWest. Except Chrome, but no one really targeted it.

Rich and I were joined by a special guest tonight, Bill Brenner, Senior Editor at CSO Online.  We wanted to talk to Bill because there was an interesting story about the BBC buying a botnet and we wanted his take on this, as well as our other stories.  Bill’s a journalist who’s been in the security space for about five years and has a slightly different perspective than that of someone who’s down at the ground level doing security.  Which is also slightly different than the perspective Rich and I have.  We also wanted to bring Bill on because he has a new podcast of his own.

This ended up being one of the longer podcasts we’ve done in a while, but I think it was worth it. 

Network Security Podcast, Episode 142, March 17, 2009
Time:  43:24

Show Notes:

• EFF:  Google begins behavioral targeting ad program
• Bribery case creates possible IT security nightmare in DC
• Passwords of 8,000 Comcast customers explosed
• New DNS trojan taints entire LAN from a single box
• BBC Click paid cybercrooks to buy botnet
• CSO Podcasts
• Tonight’s music:  Headache by Boo Boo Davis

It seems that not even my new adventures in parenthood can keep me away from the show. After a much-appreciated 2 week break, it’s good to be back.

This week Martin and I roll through another series of articles covering the week’s security events, after a small divergence to talk about my new daughter (man, is it weird to say that). We start by discussing the resignation of cybersecurity chief Rod Beckstrom over concerns that the NSA is taking over the show. No folks, the NSA isn’t evil, and I don’t think they have a single black helicopter, but it’s probably too orthagonal a mission considering their current mandate. We also discuss the effectiveness of data breach laws, advances in botnets, and the earliest signs of some accountability in PCI. Martin closes the show with a close-call and micro-scare involving his parents and malware.

Note:  The proper name for the malware I mention at the end of the podcast is Spyware Remover 2009.  (Martin)

Network Security Podcast, episode 141, March 10, 2009
Time: 38:21

Show Notes:

• Rod Beckstrom resigns over concerns the NSA is power hungry for cybersecurity.
• NSA chief bids to take a larger role in cybersecurity. Huh, I guess even paranoids have GS ratings.
• Do breach disclosure laws work? Um… yes. Next question.
• Rich (me) releases a new whitepaper on web application security. Shameless self promotion ensues.
• Conficker gets more aggresive in defending itself.
• PCI Council sends a couple QSAs to rehab.
• The bootable antivirus CD Martin used to scan his parent’s computer.
• Tonight’s Music:  Some Strange Feeling by Davis Coen
  

Rich luckily couldn’t make the show tonight.  I say luckily because that means he has a brand new baby girl to bring home and he’d rather spend time with his wife and new daughter than us.  Go figure.  I found someone to fill in for Rich this week however, Joel Esler, Sourcefire security consultant, fellow blogger and handler at the SANS Internet Storm Center.  Joel is the guy you want to talk to if you have any questions about Snort and Sourcefire.  He is also someone who’s on the front lines of dealing with malware, something that’s highlighted by our conversation about the recent Acrobat 0-day.

I’m glad Joel was able to come on tonight with relatively short notice and maybe I’ll return the favor some day and be on the Internet Storm Center podcast.  I only hope I’ll be able to contribute something intelligent when the time comes.

Network Security Podcast, Episode 140, March 3, 2009
Time:  37:58 

Show Notes:

• Adobe Acrobat pdf 0-day exploit, No JavaScript needed!
• Skype, is it right for you? – Well written posts never get old
• Blueprints of Obama’s Marine One helicopter leaked on P2P 
• The Cowtown Computer Congress opens this week!
• I’ll be podcasting and speaking at the 21st Annual FIRST Conference in Kyoto, Japan this year!
• Tonight’s music:  Gerry Joe Weise with Blueswalker