The Digital Underground Podcast

Ryan Naraine and Costin Raiu on Flashback and Mac Security

dennis@threatpost.com (Dennis Fisher ) — Tue, 10 Apr 2012 20:04:04 +0000

Podcast and Downloads

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Ryan Naraine and Costin Raiu about the Flashback Mac botnet, why Apple is reluctant to let third parties update software on Macs and the future outlook for the security of Macs.

Dan Guido on Attacker Math and Exploit Intelligence

dennis@threatpost.com (Dennis Fisher ) — Tue, 03 Apr 2012 15:43:02 +0000

Podcast and Downloads

digital_underground_97.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Dan Guido, security researcher and CEO of Trail of Bits, about the new company’s plan to help enterprises defend against targeted attacks, the way that attackers think and the value of exploits versus vulnerabilities. They also discuss a new initiative to help share security knowledge more broadly in the community.

Richard Boscovich on the Zeus Botnet Takedown

dennis@threatpost.com (Dennis Fisher ) — Tue, 27 Mar 2012 20:03:18 +0000

Podcast and Downloads

digital_underground_96.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Richard Boscovich of the Microsoft Digital Crimes Unit about the operation to take down the Zeus botnet, how the company works with partners and law enforcement on these operations and the importance of getting the word out to consumers about the danger of botnets.

Ryan Naraine on Exploit Mitigations and the MS12-020 RDP Bug

dennis@threatpost.com (Dennis Fisher ) — Thu, 15 Mar 2012 20:33:31 +0000

Podcast and Downloads

digital_underground_95.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Ryan Naraine about whether exploit mitigations such as ASLR and DEP really make any difference in preventing browser attacks and the seriousness of the MS12-020 RDP vulnerability that was patched during March’s Patch Tuesday release.

Paul Judge on Measuring the Hotness of Security

dennis@threatpost.com (Dennis Fisher ) — Mon, 05 Mar 2012 18:24:07 +0000

Podcast and Downloads

digital_underground_94.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Judge of Barracuda Labs about his new project, which uses data on the vendors and products on display at the RSA Conference to determine which topics and technologies are the hottest at the moment.

Bruce Schneier on Liars and Outliers

dennis@threatpost.com (Dennis Fisher ) — Mon, 27 Feb 2012 14:00:28 +0000

Podcast and Downloads

digital_underground_93.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with cryptographer and author Bruce Schneier about his new book, Liars and Outliers, the role of trust in society and security, the ways in which technology helps promote trust and how various groups and actors defect the norm and take advantage of that trust.

Ryan Naraine on the Koobface Expose and SCADA 0-Day Disclosures

dennis@threatpost.com (Dennis Fisher ) — Mon, 23 Jan 2012 16:49:18 +0000

Podcast and Downloads

digital_underground_92.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with long-lost Threatpost editor Ryan Naraine about the intricacies of the disclosure of the identities of the alleged Koobface gang members, whether we’ll see more of that kind of action and whether the recent trend toward disclosing 0-days in SCADA systems will continue.

Adam Shostack on Methods of Compromise, the New School and Learning

dennis@threatpost.com (Dennis Fisher ) — Mon, 12 Dec 2011 15:12:45 +0000

Podcast and Downloads

digital_underground_91.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Adam Shostack of Microsoft about the taxonomy he helped develop for classifying how PCs are compromised, what he would and wouldn’t change in The New School of Information Security and who he’s learned the most from.

Paul Judge on Clicks For Meals and Social Network Security

dennis@threatpost.com (Dennis Fisher ) — Thu, 08 Dec 2011 14:54:47 +0000

Podcast and Downloads

digital_underground_90.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Judge of Barracuda Networks about the company’s Clicks For Meals program, which is aiming to provide 10,000 meals during the holidays through the World Food Programme.

Costin Raiu on Duqu, Stuxnet and Targeted Attacks

dennis@threatpost.com (Dennis Fisher ) — Wed, 16 Nov 2011 17:09:33 +0000

Podcast and Downloads

digital_underground_89.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with malware researcher Costin Raiu about the investigation into Duqu, the likelihood that it was written by the same team as Stuxnet, whether a government is behind its development and what mistakes the authors made.

Ted Julian on Data Breach Response and Incident Analysis

dennis@threatpost.com (Dennis Fisher ) — Fri, 21 Oct 2011 15:40:22 +0000

Podcast and Downloads

digital_underground_88.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Ted Julian of CO3 about why even the more enlightened organizations still find themselves unprepared when hit with a data breach, the need for more public data to help analyze the nature and effects of breaches and how third-party breaches affect organizations.

Botnet Takedown: Researcher Describes How Kelihos Fell

dennis@threatpost.com (Dennis Fisher ) — Thu, 29 Sep 2011 16:46:50 +0000

Podcast and Downloads

digital_underground_87.mp3

Dennis Fisher talks with Kaspersky Lab Researcher Tillmann Werner about the takedown of the Kelihos botnet, the network’s unique multi-tiered architecture, its custom protocol and the ethics and legality of pushing updates to disable bots on users’ machines.

Gary McGraw on the BSIMM3 Data Release

dennis@threatpost.com (Dennis Fisher ) — Wed, 28 Sep 2011 15:15:07 +0000

Podcast and Downloads

digital_underground_86.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Gary McGraw of Cigital about the release of the data collected during the BSIMM 3 software security measurement project, the most pressing challenges facing companies involved in software security programs and the reasons that the US government is falling farther behind on this front.

Mark Russinovich on His Novel Zero Day and Coordinated Cyber Attacks

dennis@threatpost.com (Dennis Fisher ) — Mon, 26 Sep 2011 12:00:33 +0000

Podcast and Downloads

digital_underground_85.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Mark Russinovich of Microsoft about his novel Zero Day, the idea of a coordinated cyber attack by terrorists and the difficulty of writing a technical novel for a mainstream audience.

Katie Moussouris on the Microsoft Blue Hat Prize

dennis@threatpost.com (Dennis Fisher ) — Wed, 24 Aug 2011 11:45:50 +0000

Podcast and Downloads

digital_underground_84.mp3

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Katie Moussouris of Microsoft about the company’s new Blue Hat Prize for innovative defensive security technology, why Microsoft didn’t start a bug bounty program and whether this will become an annual contest.

Josh Shaul on Broken Security, Targeted Attacks and Database Security

dennis@threatpost.com (Dennis Fisher ) — Fri, 01 Jul 2011 13:00:00 +0000

Podcast and Downloads

digital_underground_83.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Josh Shaul of AppSec about the current run of targeted attacks and data breaches, the state of denial among some security and IT staffs about the extent of the problem and what can be done to address the issues.

Anup Ghosh on Targeted Attacks and the Need for Security Innovation

dennis@threatpost.com (Dennis Fisher ) — Thu, 16 Jun 2011 13:10:20 +0000

Podcast and Downloads

digital_underground_82.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Anup Ghosh of Invincea about the current wave of targeted attacks against high-profile companies such as RSA, the IMF and Citigroup and how the lack of innovation on the defensive side of the fence has made life easier for the attackers.

Dennis Fisher and Paul Roberts on the MacDefender Malware and Google Wallet

dennis@threatpost.com (Dennis Fisher ) — Fri, 27 May 2011 13:09:24 +0000

Podcast and Downloads

digital_underground_81.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher and Paul Roberts discuss the re-emergence of the MacDefender malware, Apple's decision to push out an OS X update to protect against and the release of Google Wallet and the security implications of the system.

Paul Roberts and Dennis Fisher on the Sony Data Breach and National Cybersecurity

dennis@threatpost.com (Dennis Fisher ) — Thu, 19 May 2011 13:00:00 +0000

Podcast and Downloads

digital_underground_80.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Threatpost editors Paul Roberts and Dennis Fisher talk about the data breach of the Sony PlayStation Network, Sony's response to the attack and whether the recent legislation proposed by the White House and its new cyberspace strategy will have any effect.

Alex Hutton on the 2011 Verizon Data Breach Investigations Report

dennis@threatpost.com (Dennis Fisher ) — Tue, 19 Apr 2011 13:28:34 +0000

Podcast and Downloads

digital_underground_79.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Alex Hutton of Verizon about the 2011 Data Breach Investigations Report, the massive decrease in the number of records breached, the increase in the number of incidents and the clues to the cover challenge that may or may not be embedded in the report.

Rich Mogull on the RSA Attack and the Epsilon Breach

dennis@threatpost.com (Dennis Fisher ) — Tue, 05 Apr 2011 13:39:54 +0000

Podcast and Downloads

digital_underground_77.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Rich Mogull of Securosis about the fallout from the RSA attack, the way that the communications with the public and customers are being handled and the effects of the email breach at Epsilon.

Paul Kocher on the RSA Attack

dennis@threatpost.com (Dennis Fisher ) — Tue, 22 Mar 2011 13:36:51 +0000

Podcast and Downloads

digital_underground_76.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Kocher of Cryptography Research about the details of the attack on RSA, what the attackers might have stolen and what the compromise of the seed file for the SecurID tokens would mean for customers.

Katie Moussouris on Microsoft, Trustworthy Computing and the Evolution of the Security Community

dennis@threatpost.com (Dennis Fisher ) — Wed, 16 Mar 2011 15:12:29 +0000

Podcast and Downloads

digital_underground_74.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Microsoft's Katie Moussouris about the way that the Trustworthy Computing effort at Microsoft has changed, how the security community has evolved since she got involved in the 1990s and the challenges--and fun--of being a woman in security.

Alex Howard on Government Security, Internet Freedom and Open Gov

dennis@threatpost.com (Dennis Fisher ) — Thu, 24 Feb 2011 18:33:50 +0000

Podcast and Downloads

digital_underground_73.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In the triumphant return of the Digital Underground podcast, Dennis Fisher talks with Alex Howard (@digiphile) of O'Reilly Media about the open government and open data movements, how they're affecting security and the ways in which Internet freedom and privacy play into the current climate online.

Gary McGraw on Cyber War, Cyber FUD and Rhetoric

dennis@threatpost.com (Dennis Fisher ) — Tue, 30 Nov 2010 18:28:36 +0000

Podcast and Downloads

digital_underground_72.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In this episode, Dennis Fisher talks with Gary McGraw of Cigital about the current climate of FUD and rhetoric surrounding cyber war and cyber espionage, the state of software security in the government and military and the potential need for a software Cash for Clunkers program.

Anup Ghosh on PDF Exploits and Sandboxes

dennis@threatpost.com (Dennis Fisher ) — Mon, 22 Nov 2010 17:39:09 +0000

Podcast and Downloads

digital_underground_71.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Anup Ghosh, founder and chief scientist of Invincea, about the rise of browser and PDF exploits, the company’s new virtualized PDF security product and whether the Reader X sandbox will make a difference in preventing widespread PDF attacks.

Alex Hutton on the VERIS Community App and Data Breaches

dennis@threatpost.com (Dennis Fisher ) — Wed, 17 Nov 2010 16:11:20 +0000

Podcast and Downloads

digital_underground_70.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Alex Hutton of Verizon Business about the company’s release of the VERIS Community Application and the need for better data in the security community on attacks and incidents.

Adam Shostack on User-Centric Privacy and the Need for Smarter Regulation

dennis@threatpost.com (Dennis Fisher ) — Mon, 20 Sep 2010 15:34:34 +0000

Podcast and Downloads

digital_underground_69.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with author Adam Shostack about the merits of the user-centric privacy model, why users don’t pay more attention to privacy and data collection and the need for smarter privacy regulations.

HD Moore on the Windows DLL Vulnerability

dennis@threatpost.com (Dennis Fisher ) — Mon, 23 Aug 2010 21:17:57 +0000

Podcast and Downloads

digital_underground_68.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with HD Moore about the newly discovered DLL load vulnerability in Windows, which affects several dozen applications and can be used by attackers to silently compromise remote machines, as well as the guidance and workarounds that Microsoft is offering for users and developers.

Alex Hutton on the Verizon Data Breach Investigations Report

dennis@threatpost.com (Dennis Fisher ) — Mon, 16 Aug 2010 17:14:16 +0000

Podcast and Downloads

digital_underground_67.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Alex Hutton of the Verizon Business RISK team about the new Data Breach Investigations Report, the involvement of the Secret Service in this year’s report and the need for more and better data on attacks and successful defenses.

Paul Judge and David Maynor on Twitter Crime and Searching for Malware

dennis@threatpost.com (Dennis Fisher ) — Mon, 26 Jul 2010 18:02:58 +0000

Podcast and Downloads

digital_underground_66.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Judge and David Maynor of Barracuda about new research the pair will be presenting at BSides Las Vegas and Defcon this week on the start of a reputation system for Twitter accounts, how attackers use search engines to spread malware and what kinds of sites are most likely to be serving you SEO-related malware.

Dino Dai Zovi on Return-Oriented Exploitation and Bug Bounties

dennis@threatpost.com (Dennis Fisher ) — Fri, 23 Jul 2010 15:44:26 +0000

Podcast and Downloads

digital_underground_65.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In this episode, Dennis Fisher talks with independent security researcher Dino Dai Zovi about his upcoming Black Hat talk on return-oriented exploitation, the value of exploit mitigations such as DEP and ASLR, the new crop of vendor bug bounties and why we don’t have any good data on zero-day attacks.

Caleb Sima on Armorize’s Black Hat Talk Being Pulled

dennis@threatpost.com (Dennis Fisher ) — Thu, 15 Jul 2010 18:16:02 +0000

Podcast and Downloads

digital_underground_64.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Caleb Sima of Armorize about the company’s scheduled talk at Black Hat on China’s cyber army being canceled under pressure from the governments of China and Taiwan.

Caleb Sima and Andy Chou on Software Security, Quality and Testing

dennis@threatpost.com (Dennis Fisher ) — Thu, 15 Jul 2010 17:54:01 +0000

Podcast and Downloads

digital_underground_63.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In this episode Dennis Fisher talks with Caleb Sima of Armorize and Andy Chou of Coverity about the companies’ new partnership designed to make security and quality code testing simpler and more efficient and the state of software security in general.

Rob Cheyne on Security Education and the Problem of People in Security

dennis@threatpost.com (Dennis Fisher ) — Thu, 08 Jul 2010 18:46:15 +0000

Podcast and Downloads

digital_underground_62.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In this episode, Dennis Fisher talks with Rob Cheyne of Safelight Security Advisors about the classical problem of user education, how much of an obstacle to security people are and the ways in which technology has made security more difficult.

Eddie Schwartz on Advanced Threats

dennis@threatpost.com (Dennis Fisher ) — Tue, 29 Jun 2010 18:51:47 +0000

Podcast and Downloads

digital_underground_61.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In this episode, Dennis Fisher talks with Eddie Schwartz, CSO of NetWitness, about a new study the company did on the level of awareness of advanced threats in the enterprise and what organizations are doing to respond to the latest targeted attacks.

Alex Horan on Penetration Testing and the Business of Security

dennis@threatpost.com (Dennis Fisher ) — Mon, 21 Jun 2010 14:55:51 +0000

Podcast and Downloads

digital_underground_60.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

In this episode, Dennis Fisher talks with Alex Horan of Core Security about penetration testing, the place of security within a business and Core’s new push to make security more accessible and understandable for business leaders.

Mike Mimoso on Targeted Attacks and the Google-Microsoft Controversy

dennis@threatpost.com (Dennis Fisher ) — Wed, 16 Jun 2010 17:21:13 +0000

Podcast and Downloads

digital_underground_59.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Mike Mimoso of SearchSecurity.com and Information Security magazine about the current spate of highly targeted attacks, the silliness of the term cyberwar and the controversy surrounding the disclosure of the Windows Help Center flaw.

Moxie Marlinspike on RedPhone, TextSecure and Internet Privacy

dennis@threatpost.com (Dennis Fisher ) — Thu, 27 May 2010 19:17:33 +0000

Podcast and Downloads

digital_underground_58.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with security researcher Moxie Marlinspike about his new startup, Whisper Systems, his RedPhone and TextSecure voice and data encryption software and the challenges of maintaining privacy in the Google Age.

Gary McGraw on BSIMM2, Software Security and Cargo Cult Science

dennis@threatpost.com (Dennis Fisher ) — Wed, 12 May 2010 13:56:17 +0000

Podcast and Downloads

digital_underground_57.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Gary McGraw of Cigital about the release of the BSIMM2 model, the continued maturing of software security programs and the similarities between computer security and cargo cult science.

Rich Mogull on Database Security and Encryption

dennis@threatpost.com (Dennis Fisher ) — Thu, 06 May 2010 20:23:20 +0000

Podcast and Downloads

digital_underground_56.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with analyst Rich Mogull of Securosis about his new report on database encryption, the value and danger of storing credit-card data and why more companies don’t get rid of sensitive data more quickly.

Didier Stevens on PDF Hacking and Security

dennis@threatpost.com (Dennis Fisher ) — Tue, 04 May 2010 18:30:22 +0000

Podcast and Downloads

digital_underground_55.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Didier Stevens, the security researcher who developed the innovative method for using the /launch command in PDF readers to execute code on remote machines. Stevens discusses the ramifications of the discovery, the security of PDFs in general and the user behavior that makes these attacks more effective.

Chris Hoff on Cloud Security and the HacKid Conference

dennis@threatpost.com (Dennis Fisher ) — Mon, 03 May 2010 13:56:12 +0000

Podcast and Downloads

digital_underground_54.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Chris Hoff of Cisco Systems about the state of cloud security and privacy, as well as Hoff's plan for a series of hacking and technology conferences aimed at kids: HacKid.

Don Bailey and Nick DePetrillo on GSM Hacking and Privacy

dennis@threatpost.com (Dennis Fisher ) — Thu, 29 Apr 2010 19:04:30 +0000

Podcast and Downloads

digital_underground_53.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Don Bailey of iSec Partners and Nick DePetrillo, an independent security researcher, about their recent work on geolocation and tracking of GSM mobile handsets and the privacy and security implications for users.

Gunter Ollmann on Opt-In Botnets and Targeted Attacks

dennis@threatpost.com (Dennis Fisher ) — Thu, 15 Apr 2010 19:30:54 +0000

Podcast and Downloads

digital_underground_52.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Gunter Ollmann, VP of research at Damballa, about the new generation of hacktivism and opt-in botnets, as well as the trend toward targeted attacks in corporate environments.

HD Moore on Metasploit, Exploitation and the Art of Pen Testing

dennis@threatpost.com (Dennis Fisher ) — Fri, 02 Apr 2010 18:17:24 +0000

Podcast and Downloads

digital_underground_51.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with HD Moore, the founder of the Metasploit Project and the chief security officer at Rapid7, about the evolution of Metasploit, the difficulty of client-side exploitation in the age of DEP and ASLR and the decision on when to publish an exploit.

Robert Hansen on Privacy and Google

dennis@threatpost.com (Dennis Fisher ) — Thu, 11 Mar 2010 19:35:28 +0000

Podcast and Downloads

digital_underground_50.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with security researcher Robert “Rsnake” Hansen about how online privacy became such a mess, Google’s effect on personal privacy and the virtual impossibility of using the Internet without using Google’s services.

Paul Judge on Twitter Crime and Web Security

dennis@threatpost.com (Dennis Fisher ) — Wed, 10 Mar 2010 20:08:37 +0000

Podcast and Downloads

digital_underground_49.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Judge of Barracuda Networks about the company’s new report on Twitter phishing trends, search engine poisoning, Web security and what can be done about the spam pandemic.

T.J. Campana on the Waledac Botnet Takedown

dennis@threatpost.com (Dennis Fisher ) — Fri, 26 Feb 2010 14:38:40 +0000

Podcast and Downloads

digital_underground_48.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher and Ryan Naraine talk with Microsoft’s T.J. Campana about the company’s work to disrupt and take down the Waledac botnet and the other work being done by Microsoft’s Digital Crimes Unit.

Tyler Shields on the BlackBerry Spyware and the Coming Wave of Smartphone Attacks

dennis@threatpost.com (Dennis Fisher ) — Tue, 09 Feb 2010 16:37:52 +0000

Podcast and Downloads

digital_underground_47.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Tyler Shields of Veracode about his BlackBerry spyware application, txsBBSPY, the coming wave of smartphone attacks and his lack of surprise about the Google Aurora attack.

Paul Roberts on Google Aurora, Advanced Attacks and the RSA Conference

dennis@threatpost.com (Dennis Fisher ) — Fri, 05 Feb 2010 17:59:25 +0000

Podcast and Downloads

digital_underground_46.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Roberts of the 451 Group about the implications of the Aurora attack on Google and Adobe, the need for better understanding of advanced threats and what to expect at the RSA Conference.

Tom Kellermann on Google and Howard Schmidt’s Priorities

dennis@threatpost.com (Dennis Fisher ) — Wed, 20 Jan 2010 16:42:21 +0000

Podcast and Downloads

digital_underground_45.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Tom Kellermann of Core Security about the Google attack, the priorities for new cyber coordinator Howard Schmidt and the economic and political realities of advanced persistent threats.

Rich Mogull and Mike Rothman on Security Research and Metrics

dennis@threatpost.com (Dennis Fisher ) — Mon, 04 Jan 2010 17:09:14 +0000

Podcast and Downloads

digital_underground_44.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Rich Mogull, Mike Rothman, David Mortman and Adrian Lane about the merger of Securosis and Security Incite, the need for better metrics in security and improving security research.

Paul Roberts on the Decade in Security

dennis@threatpost.com (Dennis Fisher ) — Tue, 29 Dec 2009 16:40:24 +0000

Podcast and Downloads

digital_underground_43.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Paul Roberts of The 451 Group about the changes that the last decade has brought in computer security, the biggest story of the ‘00s and what the Teens might hold.

Mike Mimoso on the Schmidt Appointment and the Top Security Stories of 2009

dennis@threatpost.com (Dennis Fisher ) — Tue, 22 Dec 2009 17:19:41 +0000

Podcast and Downloads

digital_underground_42.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Mike Mimoso, editorial director of the Security Media Group at TechTarget, about Howard Schmidt’s appointment, the top security stories of 2009 and the World Cup draw.

Howard Schmidt on the Cybersecurity Czar, Cybercrime and How to Fix Federal Cybersecurity

dennis@threatpost.com (Dennis Fisher ) — Tue, 22 Dec 2009 14:54:24 +0000

Podcast and Downloads

digital_underground_16.mp3

Digital Underground podcast with Dennis Fisher

President Obama on Tuesday appointed Howard Schmidt, the former CSO of Microsoft and Bush administration security adviser, to be the White House Cybersecurity Coordinator. In this podcast, recorded in May soon after Obama’s announcement that he would appoint a security czar, Dennis Fisher talks with Schmidt about the job, the cybercrime problem and what needs to be done to fix it.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Brad Arkin on Adobe Reader Zero-Day Flaws and Security Response

dennis@threatpost.com (Dennis Fisher ) — Thu, 17 Dec 2009 19:37:40 +0000

Podcast and Downloads

digital_underground_41.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher and Ryan Naraine talk with Brad Arkin, Adobe’s director of product security and privacy, about the new zero-day flaws in Acrobat and Reader, Adobe’s security response process and the challenges of getting updates to end users.

Marc Maiffret on Modern Malware, Code Red and the State of Security Research

dennis@threatpost.com (Dennis Fisher ) — Thu, 10 Dec 2009 19:49:25 +0000

Podcast and Downloads

digital_underground_40.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with researcher Marc Maiffret of FireEye about the evolution of modern malware, the discovery of the Code Red worm and how far security research has come in the last 10 years.

Robert Hansen on DNS Rebinding Attacks and Browser Security

dennis@threatpost.com (Dennis Fisher ) — Fri, 04 Dec 2009 15:12:06 +0000

Podcast and Downloads

digital_underground_39.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with security researcher Robert “Rsnake” Hansen about his recent work on DNS rebinding attacks, the poor state of browser security and his new book “Detecting Malice.”

Real World Security: Ed Bellis on Web-based Business and Software Security

dennis@threatpost.com (Dennis Fisher ) — Tue, 01 Dec 2009 21:36:55 +0000

Podcast and Downloads

cso_4.mp3

Dennis Fisher talks with Ed Bellis, CISO of Orbitz Worldwide, about the security challenges facing a Web-based business, the value of software security initiatives and the joys of compliance in today’s regulatory environment.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Jose Nazario on Botnets and the History of DDoS Attacks

dennis@threatpost.com (Dennis Fisher ) — Tue, 01 Dec 2009 21:34:41 +0000

Podcast and Downloads

digital_underground_38.mp3

Digital Underground podcast with Dennis Fisher

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dennis Fisher talks with Jose Nazario of Arbor Networks about the Mafiaboy attacks, the history of DDoS attacks and the botnet epidemic.

Steve Lipner on the Microsoft SDL and Windows 7 Security

dennis@threatpost.com (Dennis Fisher ) — Tue, 24 Nov 2009 19:41:04 +0000

Podcast and Downloads

digital_underground_37.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Steve Lipner of Microsoft about the Security Development Lifecycle, changes in the threat modeling process and the security of Windows 7.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Mike Bailey on Adobe Flash Vulnerabilities

dennis@threatpost.com (Dennis Fisher ) — Tue, 17 Nov 2009 18:46:51 +0000

Podcast and Downloads

digital_underground_36.mp3

Digital Underground podcast with Dennis Fisher

Mike Bailey of Foreground Security talks with Dennis Fisher about his research on Adobe Flash flaws, the same-origin policy and Web site security.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Gary McGraw on Software Security, the BSIMM Model and Critical Thinking

dennis@threatpost.com (Dennis Fisher ) — Fri, 06 Nov 2009 20:05:50 +0000

Podcast and Downloads

digital_underground_35.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Gary McGraw, CTO of Cigital, about the BSIMM security model, the maturation of software security and whether our universities are turning out critical thinkers.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Kevvie Fowler on SQL Injection Attacks and Securing Your Data

dennis@threatpost.com (Dennis Fisher ) — Mon, 02 Nov 2009 18:19:26 +0000

Podcast and Downloads

digital_underground_34.mp3

Digital Underground podcast with Dennis Fisher

In this episode, Dennis Fisher talks with Kevvie Fowler, director of security services at TELUS, about SQL injection attacks, the difficulty of identifying and recovering from database attacks and the value of locking down your data.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Dave Dittrich on Botnets, Conficker and the Evolution of Malware

dennis@threatpost.com (Dennis Fisher ) — Wed, 21 Oct 2009 13:31:01 +0000

Podcast and Downloads

digital_underground_33.mp3

Digital Underground podcast with Dennis Fisher

In this episode, Dennis Fisher talks with Dave Dittrich of the University of Washington, one of the top botnet and malware researchers in the industry, about the evolution of botnets and malware, the innovations of the Nugache botnet and the monetization of large-scale botnets.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Chris Hoff on Cloud Security, Disruptive Technologies and PCI DSS

dennis@threatpost.com (Dennis Fisher ) — Thu, 01 Oct 2009 18:43:27 +0000

Podcast and Downloads

digital_underground_32.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Chris Hoff of Cisco about the challenges of cloud deployment and security, cloud use cases and the effect that disruptive technologies can have on enterprises, vendors and standards organizations.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Stephen Toulouse on the MSRC, the Evolution of Security at Microsoft and Securing Xbox Live

dennis@threatpost.com (Dennis Fisher ) — Thu, 10 Sep 2009 19:45:50 +0000

Podcast and Downloads

digital_underground_30.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Stephen Toulouse, director of policy and enforcement for Xbox Live at Microsoft, about his years at the Microsoft Security Response Center, the evolution of security at Microsoft and the joy and pain of being the bad guy on Xbox Live.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Alex Howard on Compliance, Breach Notification and the Rockefeller Bill

dennis@threatpost.com (Dennis Fisher ) — Wed, 02 Sep 2009 15:55:13 +0000

Podcast and Downloads

digital_underground_29.mp3

Digital Underground podcast with Dennis Fisher

In this episode Dennis Fisher talks with Alex Howard, associate editor of Searchcompliance.com, about the burden compliance places on security staffs, the growing tide of breach notification laws and the misunderstandings surrounding the Rockefeller bill and the Internet kill switch.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Amit Yoran on Cyberwar, Federal Cybersecurity and the Evolution of Threats

dennis@threatpost.com (Dennis Fisher ) — Thu, 27 Aug 2009 18:45:15 +0000

Podcast and Downloads

digital_underground_28.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Amit Yoran, former director of the National Cyber Security Division at DHS and CEO of NetWitness, about state-sponsored attacks, federal cybersecurity and the changing nature of security threats.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

David Mortman and Alex Hutton on Exploit Code Use, Data Breaches and Reputation Damage

dennis@threatpost.com (Dennis Fisher ) — Wed, 19 Aug 2009 17:30:28 +0000

Podcast and Downloads

digital_underground_27_.mp3

Digital Underground podcast with Dennis Fisher

In this episode, Dennis Fisher talks with David Mortman and Alex Hutton of the New School of Information Security blog about the Mortman/Hutton model, data breaches and the effect of breaches on the reputation and viability of an organization.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Adam Shostack on Privacy and the PETS ’09 Workshop

dennis@threatpost.com (Dennis Fisher ) — Thu, 13 Aug 2009 20:34:53 +0000

Podcast and Downloads

digital_underground_26.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Microsoft’s Adam Shostack about the Privacy Enhancing Technologies Symposium, the definition of privacy in today’s world and the role of technology in helping to enhance and protect that privacy.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Moxie Marlinspike on SSL Attacks

dennis@threatpost.com (Dennis Fisher ) — Thu, 06 Aug 2009 17:26:02 +0000

Podcast and Downloads

digital_underground_25.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with researcher Moxie Marlinspike about the innovative research on attacking the inherent weaknesses in the SSL infrastructure that he presented at Black Hat, and the tools he has released to demonstrate the attacks, SSLSniff and SSLStrip.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Joe Grand on the DEFCON Badge, Hacking Parking Meters and the Hazards of Security Research

dennis@threatpost.com (Dennis Fisher ) — Wed, 05 Aug 2009 13:42:50 +0000

Podcast and Downloads

digital_underground_24.mp3

Digital Underground podcast with Dennis Fisher

In this episode Dennis Fisher talks with Joe Grand of Grand Idea Studio about the design for this year’s DEFCON badge, the secret feature he added that no one has uncovered yet and his research on hacking smart parking meters.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

The Nine-Ball Exploit Exposed

dennis@threatpost.com (Dennis Fisher ) — Mon, 03 Aug 2009 15:36:03 +0000

In this video, researcher Andrew Martin walks through an attack on a Web site involving the Nine-Ball exploit, which has been used to compromise tens of thousands of legitimate Web sites in the last few months.

Dino Dai Zovi on Mac OS X Rootkits, Mac Exploitation and Hacking Contests

dennis@threatpost.com (Dennis Fisher ) — Wed, 08 Jul 2009 18:54:44 +0000

Podcast and Downloads

digital_underground_23.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with security researcher Dino Dai Zovi about his upcoming Black Hat talk on Mac OS X rootkits, exploiting the Mac and the value of hacking contests and internal code reviews.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Robert “Rsnake” Hansen On Slowloris, DoS Attacks And RFC-1918 Networks

dennis@threatpost.com (Dennis Fisher ) — Mon, 29 Jun 2009 16:28:28 +0000

Podcast and Downloads

digital_underground_22.mp3

Digital Underground podcast with Dennis Fisher

In this episode, Dennis Fisher talks with Robert “Rsnake” Hansen about his Slowloris tool, low-bandwidth DoS attacks and the law of unintended consequences.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Jon Callas on PGP, Crypto History and Cloud Security

dennis@threatpost.com (Dennis Fisher ) — Wed, 17 Jun 2009 18:41:11 +0000

Podcast and Downloads

digital_underground_21.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Jon Callas, CTO of PGP, about the history of cryptography, the evolution of PGP itself and the future of cloud security.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Jeff Moss on the history of DEFCON, Black Hat and the security underground

dennis@threatpost.com (Dennis Fisher ) — Tue, 16 Jun 2009 17:21:43 +0000

Podcast and Downloads

digital_underground_20.mp3

Digital Underground podcast with Dennis Fisher

In this episode, Dennis Fisher talks with Jeff Moss, the founder of DEFCON and Black Hat, about the history of the shows, the Michael Lynn-Cisco incident and the evolution of the hacker culture.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Nate Lawson on crypto flaws, Web application security and selling hardware bugs

dennis@threatpost.com (Dennis Fisher ) — Mon, 15 Jun 2009 14:06:27 +0000

Podcast and Downloads

digital_underground_19.mp3

Digital Underground podcast with Dennis Fisher

In this episode Dennis Fisher talks with Nate Lawson of Root Labs about the proliferation of crypto flaws in Web applications and the market for hardware security bugs.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Cormac Herley on the underground economy, IRC economics and the externalities of cybercrime

dennis@threatpost.com (Dennis Fisher ) — Fri, 12 Jun 2009 19:11:46 +0000

Podcast and Downloads

digital_underground_18.mp3

Digital Underground podcast with Dennis Fisher

In this episode Dennis Fisher talks with Cormac Herley of Microsoft Research about the paper he co-authored on the realities of the underground economy, why sales of stolen credit cards resemble a market for lemons and how we can get better data on cybercrime activities.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Rich Mogull on Mac security, the cybersecurity czar and Project Quant

dennis@threatpost.com (Dennis Fisher ) — Wed, 03 Jun 2009 16:06:56 +0000

Podcast and Downloads

digital_underground_17.mp3

Digital Underground podcast with Dennis Fisher

For this episode, Dennis Fisher talks with Securosis founder Rich Mogull about Mac security, Obama’s cybersecurity plan and his Project Quant patch-management work with Microsoft.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Howard Schmidt on the cyber security czar, cybercrime and how to fix federal cyber security

dennis@threatpost.com (Dennis Fisher ) — Thu, 28 May 2009 20:06:25 +0000

Podcast and Downloads

digital_underground_16.mp3

Digital Underground podcast with Dennis Fisher

In this episode of the Digital Underground podcast, Dennis Fisher talks with former White House cyber security adviser Howard Schmidt about the need for a cyber security czar, the rise of cybercrime and how to fix federal cyber security.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Brad Arkin on Adobe’s quarterly patch updates, the JBIG2 flaw and secure software development

dennis@threatpost.com (Dennis Fisher ) — Thu, 21 May 2009 18:52:29 +0000

Podcast and Downloads

digital_underground_15.mp3

Digital Underground podcast with Dennis Fisher

This episode of the Digital Underground podcast Dennis Fisher talks with Brad Arkin, director of product security and privacy at Adobe, about the company’s new quarterly patch release program, its Secure Product Lifecycle and how the JBIG2 flaw spurred major changes at Adobe.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Jeremiah Grossman on Web app security, secure development and when Web security will improve

dennis@threatpost.com (Dennis Fisher ) — Tue, 19 May 2009 18:38:07 +0000

Podcast and Downloads

digital_underground_14.mp3

Digital Underground podcast with Dennis Fisher

In this episode of the Digital Underground podcast, Dennis Fisher talks with Jeremiah Grossman, CTO and founder of WhiteHat Security, about the company’s new Website Vulnerability Statistics report, why SQL injection is still such a problem and when Web application security may improve.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Charlie Miller on Mac security, Pwn2Own and selling vulnerabilities

dennis@threatpost.com (Dennis Fisher ) — Thu, 14 May 2009 19:40:02 +0000

Podcast and Downloads

digital_underground_13.mp3

Digital Underground podcast with Dennis Fisher

In this episode of the Digital Underground podcast, Charlie Miller of Independent Security Evaluators talks with Dennis Fisher about Mac OS X security, winning the Pwn2Own contest again and the real market for selling vulnerabilities. Read Miller’s paper on selling 0-day vulnerabilities (.pdf).

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Bruce Schneier on cryptography, security theater and the psychology of fear

dennis@threatpost.com (Dennis Fisher ) — Mon, 11 May 2009 13:44:48 +0000

Podcast and Downloads

digital_underground_12.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with security expert Bruce Schneier about the usefulness of cryptography, the psychology of security and fear and the war on the unexpected after 9/11.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Art Coviello on holistic security, the future of the security industry and the RSA Conference

dennis@threatpost.com (Dennis Fisher ) — Mon, 04 May 2009 18:16:47 +0000

Podcast and Downloads

digital_underground_10.mp3

Digital Underground podcast with Dennis Fisher

For the landmark 10th episode of the Digital Underground podcast, Dennis Fisher talks with Art Coviello, president of RSA, the security division of EMC, about the evolution of the RSA Conference, the future of the security industry and whether the compliance mentality is taking the focus off security in the enterprise.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Toney Jennings on application whitelisting, the history of the IDS and racing Ferraris

dennis@threatpost.com (Dennis Fisher ) — Thu, 30 Apr 2009 19:53:31 +0000

Podcast and Downloads

digital_underground_8.mp3

Digital Underground podcast with Dennis Fisher

For this episode, Dennis Fisher talks with Toney Jennings, CEO of Core Trace, about the history of the commercial IDS, the changes to the security industry in the last 15 years, the advantages of application white listing and the rush of racing a $300,000 Ferrari.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Mike Mimoso on the RSA Conference, security budgets and SMB security

dennis@threatpost.com (Dennis Fisher ) — Fri, 17 Apr 2009 18:22:23 +0000

Podcast and Downloads

digital_underground_6.mp3

Digital Underground podcast with Dennis Fisher

Dennis Fisher talks with Mike Mimoso, editor of Information Security magazine, about the story lines we’re likely to see at the RSA Conference, including virtualization and cloud security, as well as the effect of the economy on security budgets.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Chris Hoff on the Cloud Security Alliance, virtualization security and cage matches

dennis@threatpost.com (Dennis Fisher ) — Mon, 13 Apr 2009 13:25:29 +0000

Podcast and Downloads

digital_underground_5.mp3

Digital Underground podcast with Dennis Fisher

In this podcast Dennis Fisher talks to Chris Hoff, author of the Rational Survivability blog and well-known speaker on cloud security and virtualization security issues.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Adam Shostack on the science of security and value of thinking differently

dennis@threatpost.com (Dennis Fisher ) — Tue, 07 Apr 2009 13:43:08 +0000

Podcast and Downloads

digital_underground_4.mp3

Digital Underground podcast with Dennis Fisher

In this podcast, Dennis Fisher talks to Adam Shostack of Microsoft, about the evolution of thinking around “The New School of Information Security,” his new group blog and what surprised him most when he went to work at Microsoft.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Rich Mogull on the Conficker response and DLP adoption

dennis@threatpost.com (Dennis Fisher ) — Mon, 06 Apr 2009 13:15:29 +0000

Digital Underground podcast with Dennis Fisher

In this podcast, Dennis Fisher talks with Rich Mogull, founder of Securosis, about the behind-the-scenes effort by the Honeynet Project and others to identify Conficker-infected PCs, as well as the hype surrounding the DLP market and the level of DLP adoption.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Ori Eisen on credit card fraud and the need for a new Internet

dennis@threatpost.com (Dennis Fisher ) — Fri, 03 Apr 2009 19:00:57 +0000

Podcast and Downloads

digital_underground_3.mp3

Digital Underground podcast with Dennis Fisher

This podcast features a discussion with Ori Eisen, founder of 41st Parameter, about the roots of online fraud, how the credit card companies and banks could have done better and whether we need to start from scratch with a new Internet.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.

Paul Judge on cloud security and security as a service

dennis@threatpost.com (Dennis Fisher ) — Tue, 31 Mar 2009 00:43:06 +0000

Podcast and Downloads

digital_underground_1.mp3

Digital Underground podcast with Dennis Fisher

In the debut episode of the Digital Underground Podcast, Dennis Fisher talks to Paul Judge, founder and CTO of Purewire, about the security of cloud computing services, reputation systems and the growing threat of social networks.

You are missing some Flash content that should appear here! Perhaps your browser cannot display it, or maybe it did not initialize correctly.