Risky Business-logo

Risky Business

Technology Podcasts >

The Risky Business podcast has been published weekly since 2007. It covers information/cyber security.

The Risky Business podcast has been published weekly since 2007. It covers information/cyber security.
More Information

Location:

United States

Description:

The Risky Business podcast has been published weekly since 2007. It covers information/cyber security.

Language:

English


Episodes

Risky Business #535 -- Stop giving Cloudflare money

3/19/2019
More
In this week’s show Patrick Gray and Alex Stamos discuss the week’s news, as well as discussing the rise of white supremacist communities and propaganda on the Internet and what can be done about it. News: This week’s show is brought to you by Chronicle Security! We’ll be joined by Chronicle co-founders Shapor Naghibzadeh and Mike Wiacek. They had a tremendously successful launch at RSA and they’re going to pop in to tell us about some near future plans they have for their Backstory...

Duration:01:12:04

Risky Business #534 -- Manning back in clink, automotive industry under attack

3/12/2019
More
On this week’s show Adam Boileau and Patrick Gray discuss the week’s news: This week’s sponsor is Senetas. They make layer 2 encryption gear but recently made a US$8m investment into Votiro, a Content Disarm and Reconstruction (CDR) play. Votiro CEO Aviv Grafi is this week’s sponsor guest. He stops by to explain CDR tech. Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing. Show notes Chelsea Manning jailed after refusing...

Duration:00:56:22

Risky Business #533 -- Ghidra release, NSA discontinues metadata program and more

3/5/2019
More
On this week’s show Adam Boileau and Patrick Gray discuss the week’s news: This week’s sponsor interview is with Chris Kennedy, AttackIQ’s CISO and VP of customer success. And we’ll be talking about a few things really, like about how continuous validation of security controls like monitoring is a good thing. Everyone uses software like Tenable to verify patching, why not do the same for your monitoring? Links to everything that we discussed are below and you can follow Patrick or Adam on...

Duration:00:42:16

Risky Biz Soap Box: PRODUCT LAUNCH: Backstory by Alphabet's Chronicle

3/3/2019
More
In this edition of the show we’re playing a small part in Chronicle’s launch of its flagship product, Backstory. Chronicle is of course the security spinoff of Google’s parent company, Alphabet. The launch of Chronicle itself was announced about a year ago, but until now it’s only really had one product: Virus Total Enterprise. That all changed today when Chronicle launched Backstory at the RSA conference in the USA. I was lucky enough to see a demo of Backstory before we recorded this...

Duration:00:35:08

Risky Business #532 -- A big week of research and tech news

2/27/2019
More
On this week’s show Adam and Patrick discuss the week’s security news: This week’s show is brought to you by Remediant. Their CEO Tim Keeler will be along in this week’s sponsor segment to talk about how they’re doing “virtual directory binding” to make managing Linux accounts via Active Directory less traumatic. If you’re struggling with horrible, horrible PAM solutions in your devops environments have a listen to that one. *** NOTE FROM PAT: I made some mistakes in the recording phase of...

Duration:00:57:06

Risky Business #531 -- Australia's political parties targeted, the Witt indictment and more

2/19/2019
More
Adam Boileau is along this week to discuss the week’s security news, which also features comment from Dmitri Alperovitch, Klon Kitchen and The Grugq. We cover: This week’s sponsor interview is with Jason Haddix of Bugcrowd. He’ll be along to talk a little more about what Bugcrowd calls next-generation pentests. They claim one of their tests is sufficient for compliance purposes under PCI, ISO or NIST and they’ve had a third party auditor prove that for them. They also say the service has...

Duration:00:57:39

Risky Business #530 -- UAE's Project Raven, Bezosgate and more

2/11/2019
More
Adam Boileau is back in the news seat this week. We talk about: This week’s show is brought to you by AustCyber, a nonprofit funded by grants from the Australian government. Its goal is to promote Australia’s cybersecurity industry. AustCyber CEO Michelle Price will be along in this week’s sponsor interview to tell us all about what they’ve got planned for RSA. Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing. Show...

Duration:01:03:34

Risky Biz Soap Box: Polyswarm builds a marketplace for AV engines

2/6/2019
More
As regular listeners know, this isn’t the regular weekly Risky Business podcast, all Soap Box podcasts are paid promotions. We ran 10 of these last year, we’re running more of them this year – the total number is up to 14, but we’re running fewer of our other promotional podcast Snake Oilers. In this Soap Box podcast we’re chatting with a company with a legitimately fascinating origin story. You remember how in 2017 and 2018 people were running all these shonky initial coin offerings where...

Duration:00:31:08

Risky Business #529 -- Special guest Rob Joyce, NSA

2/4/2019
More
There’s no news segment in this week’s show. Instead, you’re going to hear a long-form feature interview I did with the NSA’s Rob Joyce. Rob is probably best known for his tenure as special assistant to the president on cybersecurity and for being the cybersecurity coordinator on the US National Security Council. He also served as acting homeland security advisor to Donald Trump for a short time following the departure of Tom Bossert from the Whitehouse. In May last year he went back to...

Duration:00:56:48

Risky Business #528 -- Huawei dinged, epic FaceTime and Exchange bugs

1/28/2019
More
Adam Boileau co-hosts this week’s Risky Business episode. We talk about: This week’s show is brought to you by Thinkst Canary – they make hardware honeypots and the tools you need to deploy canarytokens at scale. They also make virtual honeypots! This week Thinkst’s founder Haroon Meer will be along to wave his finger at basically all of us over what he sees as the security discipline’s tendency to not really learn anything from security conferences. It’s “contertainment,” he says, followed...

Duration:00:58:06

Risky Business #527 -- Featuring Alex Stamos, The Grugq, Susan Hennessey, Brian Krebs, Kelly Shortridge and Bobby Chesney

1/21/2019
More
Alex Stamos co-hosts this week’s episode. Topics discussed include: This week’s show is brought to you by Duo Security, which I guess is now Cisco Duo Security. Wendy Nather - Duo’s head of advisory CISOs - will be along in this week’s sponsor interview to talk about a topic near and dear to my heart: victim shaming. That’s a good one so please do stick around for that. Links to everything that we discussed are below and you can follow Patrick or Alex on Twitter if that’s your thing. Show...

Duration:01:01:37

Risky Business #526 -- Huawei arrest in Poland, DPRK SWIFT hack conviction, more from the El Chapo trial

1/14/2019
More
This week’s podcast features Patrick and Adam talking about the week’s security news, including: This week’s show is brought to you by Trail of Bits! Trail of Bits is a security engineering firm and consultancy based in New York. They aren’t a typical pen-testing firm, they build as well as break. In this week’s sponsor interview JP Smith from Trail of Bits joins us to talk about the work he put in to CSAW. Not the Centre for Sustainable Architecture with Wood, which is a thing, but the...

Duration:00:52:48

Risky Business #525 -- Back on deck for 2019!

1/8/2019
More
In this week’s show Adam Boileau and Patrick Gray discuss the security news of the last few weeks, including: This week’s show is brought to you by Cylance! BlackBerry announced that it’s acquiring Cylance for $1.4bn (I don’t know if that’s closed yet) which is great news for all the founders and early employees there – some of whom I know reasonably well. So congrats to team Cylance on that! But we’re not talking about that this week. Instead, Cylance’s very own Scott Scheferman joins us...

Duration:01:02:33

Risky Biz Soap Box: From 2 billion events to 350 alerts with Respond Software

12/13/2018
More
Soap Box is the podcast series we do here at Risky.Biz where we have detailed discussions with vendors about all sorts of stuff – sometimes it’s about their products, other times it’s about the landscape as they see it, other times it’s about research they’ve done that they want to promote. Soap Box is a wholly sponsored podcast series – just so you know – so everyone you hear on it, paid to be on it. And this Soap Box edition is brought to you by Respond Software. We’ll be joined by...

Duration:00:37:58

Risky Business #524 -- Huawei CFO arrested, US Government dumps on Equifax

12/11/2018
More
This is the last weekly Risky Business podcast for 2018. We’ll be posting a Soap Box edition early next week then going on break until January 9. In this week’s show Adam Boileau and Patrick Gray discuss the week’s security news: This week’s show is sponsored by Bugcrowd. In this week’s sponsor interview Bugcrowd’s CTO and founder Casey Ellis tells us why his company is launching “pay for effort” products to run alongside bounty programs. Links to everything that we discussed are below...

Duration:00:49:14

Snake Oilers 8 part 2: Forticode's Cipherise, device features from Exabeam and SentinelOne on "active EDR"

12/9/2018
More
Snake Oilers is the podcast where we get a bunch of vendors together to pitch their stuff – they all pay to participate, just so you know – and today we’re going to hear three pitches from tech companies: one from Forticode, one from Exabeam and one from SentinelOne. That’s right, we talk to vendors to get their best pitches so you don’t have to! Forticode joins us to pitch its Cipherise platform – applied PKI wrapped into a slick mobile platform that helps large organisations authenticate...

Duration:00:38:03

Risky Business #523 -- So many breaches

12/4/2018
More
This week’s show features Patrick Gray and Adam Boileau discussing the week’s security news, including: This week’s show is brought to you by Duo Security, big thanks to Duo for that! In this week’s sponsor interview we’ll be chatting with Duo Security’s very own Dave Lewis about some Beyond Corp stuff. Beyond Corp is the enterprise computing model of the future and Dave will be along after this week’s news to talk about some of its finer points. Links to everything that we discussed are...

Snake Oilers 8 part 1: Rapid7's InsightAppSec, WhiteSource and Virus Total Enterprise

12/2/2018
More
This is the first part of our final Snake Oilers edition for 2018. Snake OIlers, for people don’t know it, is the podcast where vendors pay to come on to the show to promote their wares. This series actually turned out to be way more popular than we expected. People quite like listening to security companies actually explaining what they do in clear terms. We have six vendors participating in this last round of Snake Oilers for the year – we’ve split the podcast into two podcasts...

Duration:00:39:06

Risky Business #522 -- Alex Stamos co-hosts the show, reflects on Snowden disclosures

11/27/2018
More
We’ve got a slightly different edition of the show this week – Alex Stamos is filling in for Adam Boileau this week in the news slot. Most of you know him as Facebook’s recently departed chief security officer. Alex also served as the CSO at Yahoo for a time, but his security career stretches back a long way. He co-founded iSEC Partners back in 2004, and before that he did some time with @Stake. The @Stake mafia is everywhere. These days Alex is an adjunct professor at Stanford...

Risky Biz Soap Box: MITRE ATT&CK Matrix, misconfigured security controls, attack sim and more!

11/24/2018
More
The Soap Box podcast series is a wholly sponsored podcast series we do here at Risky.Biz – vendors pay to participate. This Soap Box edition is brought to you by AttackIQ. AttackIQ is a five-year-old company that makes an attack simulation platform. The idea is you agitate a network with suspicious traffic and activities, then measure what the response looks like on the other side. As you’ll hear, Stephan argues this is a better way to test your controls than trying to do it after an...

Duration:00:35:01