Risky Business-logo

Risky Business

Technology Podcasts >

The Risky Business podcast has been published weekly since 2007. It covers information/cyber security.

The Risky Business podcast has been published weekly since 2007. It covers information/cyber security.
More Information

Location:

United States

Description:

The Risky Business podcast has been published weekly since 2007. It covers information/cyber security.

Language:

English


Episodes

Risky Business #548 -- Zoom RCE details and all the week's news

7/16/2019
More
Adam Boileau is along this week to discuss the week’s security news. We cover: Assetnote’s Shubham Shah also joins the news segment to dish on the Zoom RCE bug he and his team found back in March. This week’s sponsor is Kasada, an Australian company that runs a bot filtering service. Kasada is a relatively new company but they’re kicking some pretty serious goals here in Australia and are now pushing into other markets like the USA. But instead of supplying us with one of their people,...

Duration:01:04:26

Risky Business #547 -- Zoom-gate, massive GDPR fines, ship hack warnings and more

7/9/2019
More
Adam Boileau is along this week to discuss the week’s security news. We cover: This week’s show is brought to you by our lovely friends at Signal Sciences. I guess you’d call them a next generation WAF. Signal Sciences co-founder and CTO Zane Lackey will be along in this week’s sponsor interview to plug their new cloud-based WAF product, and also to have a chat about a trend he’s seeing at non-security conferences – more high quality security content. Links to everything that we discussed...

Duration:01:00:42

Risky Biz Soap Box: Cylance talks Persona

7/3/2019
More
As regular listeners know, this isn’t the weekly Risky Biz news and current affairs show, if you want that, scroll back in the podcast feed to the previous podcast. This is a Soap Box edition, a solely sponsored podcast series we do here at Risky Biz where vendors pay us to come on to the show to talk about, well, whatever they want, really. We’ve heard Duo Security talking about WebAuthn, we’ve got one with Proofpoint coming up that’s about insights they’ve gleaned from filtering such...

Duration:00:27:51

Risky Business #546 -- The fifth domain sees some action

7/2/2019
More
Adam Boileau is along this week to discuss the week’s security news. We cover: This week’s edition of Risky Business is brought to you by Senetas. They make layer 2 encryption tech, but they’ve also got a content disarm and reconstruction play now, Votiro, as well as their safe file sharing platform SureDrop. But we’re sticking with encryption in this week’s sponsor interview. Senetas CTO Julian Fay will be along a bit later to talk about his trip to the International Crypto Module...

Duration:00:58:32

Feature podcast: An interview with Jim Baker, former general counsel, FBI

6/14/2019
More
This is the first edition of a new series of podcasts we’re doing here at Risky.Biz that will focus on cyber policy issues. The Hewlett Foundation approached us a while back to see if we’d be interested in doing this series we jumped at the opportunity. The Foundation funds a lot of interesting people and work in the cybersecurity space. So the idea is pretty simple: we can talk to some of Hewlett’s grant recipients or experts in its network about pressing policy issues and turn those...

Duration:00:45:50

Risky Business #545 -- US Government loses control of customs mugshot database

6/11/2019
More
On this week’s show Adam Boileau and Patrick Gray discuss the week’s news, including: This week’s show is brought to you by Remediant! Remediant CEO Tim Keeler will be along this week to have a chinwag. We’ll talk about how simple security tech is really en vogue these days and how that’s a good thing. Links to everything are below, and you can follow Patrick or Adam on Twitter if that’s your thing. Show notes CBP says hackers stole license plate and travelers' photos | ZDNetHackers...

Duration:01:05:46

Risky Business #544 -- NYTimes Baltimore report falls over

6/4/2019
More
On this week’s show Patrick and Adam talk through all the week’s security news, including: This week’s sponsor interview is with Marco Slaviero of Thinkst Canary. Marco is joining us this week to talk about how he thinks web application-based deception techniques are kind of a waste of time right now. We talk about how deception approaches work best in privileged domains, then we talk about how security teams do better when they have a dedicated ops developer. Show notes Ruppersberger:...

Duration:01:00:25

Risky Business #543 -- NYTimes blames NSA for Baltimore hacks, Assange faces espionage charges

5/28/2019
More
Adam Boileau couldn’t make it this week, but that’s ok because we’ve got former Facebook CSO and current Stanford adjunct professor Alex Stamos filling in for him in today’s show. He’ll be talking through all the week’s security news, including: This week’s sponsor interview with David Warburton of F5 Networks. You know F5 as a blinky-light box manufacturer. Load balancers, SSL termination, that sort of stuff. Not exactly a growth industry at the moment, so they’re pivoting. They’ve...

Duration:01:07:59

Risky Biz Soap Box: VMRay CEO Carsten Willems talks sandbox tech

5/22/2019
More
This is not the regular Risky Business weekly show, the Soap Box series of podcasts that run on Risky.Biz are wholly sponsored. Everyone you hear in Soap Box paid to be here. With that disclaimer out of the way, this is actually a really interesting conversation. Carsten Willems is the co-founder and CEO of VMRay, a company that makes… well.. what do you call it? Is it an incident response tool? Is it a detection tool? Or is it just a good hypervisor-based sandbox that you can use to do...

Duration:00:33:31

Risky Business #542 -- Confusion reigns over Huawei ban

5/21/2019
More
On this week’s show Patrick and Adam talk through all the week’s security news, including: This week’s show is brought to you by CMD Security. They make security software for Linux that does two things – firstly it gives you visibility into what’s happening on your Linux workloads, which actions are being performed by which accounts, that sort of thing. The second thing it does is allow you to lock down accounts by action, rather than by traditional privilege. They’re funded by Google...

Duration:01:00:29

Risky Biz Soap Box: Signal Sciences on serverless, app-layer deception and more

5/15/2019
More
This isn’t our weekly news and current affairs show, this is a wholly sponsored podcast we do here at Risky Biz. The idea behind Soap Box is vendors pay to come on to the show and talk about the things they want to talk about. Today’s Soap Box is brought to you by Signal Sciences. If you’re not familiar with them, they make web security software. If you operate a website and you’re looking to auto-block a lot of the common attacks and attack techniques that are likely to be directed against...

Duration:00:37:21

Risky Business #541 -- NSO Group makes global headlines. What next?

5/14/2019
More
On this week’s show Patrick and Adam talk through all the week’s security news, including: This week’s sponsor interview with Ryan Kalember of Proofpoint. Ryan is a listener, and when he heard Adam talking about how password rotations actually result in crappy passwords, it hit a nerve with him. He says Proofpoint, via its CASBY product, is seeing a lot of targeted credential stuffing campaigns cycling through variations of passwords that have appeared in dumps. Apparently the bad guys are...

Duration:01:04:26

Risky Business #540 -- In depth: Hamas cyber unit destroyed in air strike

5/7/2019
More
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: This week’s sponsor interview is with Duo Security advisory CSO Richard Archdeacon and we’ll be talking about zero trust networks. Richard isn’t so worried about every vendor under the sun claiming to be a zero trust tech company. He doesn’t think that’s going to derail the move to zero trust architectures because the move towards them is too strong. Links to everything are below, and you can...

Duration:00:56:43

Snake Oilers 9 part 2: Rapid7 talks SOAR, Trend Micro on its API-based email security play

5/1/2019
More
This isn’t the regular weekly risky biz news and current affairs show, this is the special podcast series we do here at Risky Biz HQ where we take that dirty, dirty vendor cash and let security companies tell the audience all about what they do. Think of it as show and tell for security vendors! In this edition we’ve got three more vendors vying for your hard-earned bread. We’ll be hearing from Rapid7 on their InsightConnect product, that one used to be known as Komand. What can you...

Duration:00:37:47

Risky Business #539 -- Docker Hub owned, Cloudflare, Bloomberg under fire

4/30/2019
More
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: This week’s sponsor interview is with Casey Ellis, the CTO and co-founder of Bugcrowd. As most of you are probably aware, Bugcrowd announced its so-called “next generation penetration testing” product last year, a move followed some months later by its competitor HackerOne. With others in the bounty space already offering these types of penetration testing packages, it looks like these efforts...

Duration:00:52:15

Risky Business #538 -- Marcus Hutchins is a milkshake duck, Iranian APTs doxxed and more

4/24/2019
More
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: This week’s show is brought to you by Signal Sciences, their CEO Andrew Peterson will be along in this week’s sponsor interview to have a bit of a chat about how a lot of traditional enterprises are running serious business web app shops these days. Links to everything are below, and you can follow Patrick or Adam on Twitter if that’s your thing. Show notes Marcus “MalwareTech” Hutchins...

Duration:00:54:36

Snake Oilers 9 part 1: The best Snake Oilers edition we've ever run

4/22/2019
More
On this edition of Snake Oilers you’ll be hearing from three vendors offering what I believe to be excellent security technology. I haven’t personally used this tech, but conceptually everything featured in this edition is The Good Stuff. You’ll see. Or hear. You know what I mean. First up we’ll be hearing from CMD, they make killer software for Linux that lets you lock down account actions. Not permissions, actions. Do all the default and service accounts you have to run on your Linux...

Duration:00:47:30

Risky Business #537 -- Assange arrested, WordPress ecosystem on fire

4/16/2019
More
On this week’s show Adam Boileau and Patrick Gray discuss the week’s security news: This week’s show is brought to you by Thinkst Canary! Thinkst founder Haroon Meer will be along in this week’s show to talk about the effect venture capital is having on the security ecosystem. He thinks VC money often makes weak ideas look strong, and in a market where it’s quite difficult to make informed purchasing decisions, that’s not a good thing. Links to everything that we discussed are below and...

Duration:00:58:17

Risky Business #536 -- Mar-a-Lago arrest, ASUS supply chain attack and more

4/9/2019
More
In this week’s show Patrick Gray and Adam Boileau recap all the infosec news of the last three weeks, including: This week’s sponsor interview is with Kumud Kalia, the Chief Information and Technology Officer of Cylance. They actually dropped a really interesting product announcement at RSA a few weeks back and Kumud will be along later on to tell us about that. The tl;dr it’s an agent that models endpoint behaviour so when someone - or something - else starts using that endpoint to do...

Duration:00:58:57

Risky Biz Soap Box: All about WebAuthn with Duo Security

4/1/2019
More
This is a wholly sponsored podcast brought to you by Duo Security. WebAuthn is a new multifactor authentication standard for the web that is all rooted in very smart encryption tech. Some of you would already be using similar authentication standards in apps without even thinking about it, like doing biometric authentication in your banking apps. You want to log in via your app and it scans your face to auth you, that sort of thing. WebAuthn makes those types of authentication actions...

Duration:00:51:31