This week, we welcome Mark Dufresne, VP of Threat Research at Endgame for an interview, to talk about how MITRE created their tool and what the MITRE attack framework is! In our second feature interview, we welcome John Walsh, DevOps Evangelist at CyberArk to talk about Kubernetes, DevSecOps, and how to strengthen your container authentication with CyberArk! In the security news, how to use the Shodan search engine to secure an enterprise's internet presence, Apache access vulnerability could affect thousands of applications, vulnerable controllers could allow attackers to manipulate marine diesel engines, & ICS Security Plagued with basic, and avoidable mistakes! All that and more, on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode579 Visit https://www.securityweekly.com/psw for all the latest episodes! Sponsor Landing Page: www.endgame.com Sponsor Landing Page: www.conjure.org/asw Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly
|
This week, John Strand and Paul discuss some companies Paul got a chance to catch up with! They discuss GuardiCore and their Application Segmentation, Cyxtera and their Network Security and Software Defined Perimeters, PreVeil’s Encrypted Email and File Sharing, and more! In the Enterprise News this week, Avast launches AI-based software for phishing attacks, Carbon Black and Secureworks apply Red Cloak Analytics to Carbon Blacks Cloud, ShieldX integrates intention engine into Elastic Security Platform, and we have updates from Imperva, WhiteSource, BlackBerry, and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode111 Visit https://www.securityweekly.com/esw for all the latest episodes! Visit https://www.activecountermeasures/esw to sign up for a demo or buy our AI Hunter! →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
This week, Keith and Paul interview Garrett Gross, Senior Solutions Engineer at Rapid7! They talk about catching bugs earlier in the process of development, what can lead to certain successes in development, and more! In the Application Security News, Git Project patches Remote Code Execution Vulnerability, Google is shutting down Google+ after 500k accounts potentially affected by a data breach, Facebook wants people to Invite its cameras into their homes, GitHub introduces user blocking notifications, DevOps producing more insecure apps than ever, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode35 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter! →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
This week, we welcome Lee Neely, Senior Cyber Analyst at Lawrence Livermore National Lab for an interview! In the Technical Segment, Omer Yair from Javelin Networks brings us through his talk he presented at DerbyCon entitled: “Goodbye Obfuscation, Hello Invisi-Shell”! In the security news, new Apple and Microsoft security flaws at Black Hat Europe, CCTV makers leaves at least 9 million cameras public, upset Google+ users are suing Google, US weapons systems apparently can be easily hacked, not all multifactor authentication is created equal, and Kanye's '000000' password makes iPhone security Great again! All that and more, on this episode of Paul's Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode578 Visit https://www.securityweekly.com/psw for all the latest episodes! →Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter! →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
|
|
So many times we get asked how can you become a professional social engineer. This month we talk to two amazing women who where never in the industry, took a huge risk and it paid off. Join us in this fascinating conversation with Whitney Maxwell and Rachel Tobac. These two wonderful personify doing things ethically, honestly and with empathy. They are an amazing example to our community and we had a great opportunity to talk about: - How did you get into the SECTF?
- How did winning change your life?
- Did you get into SE because of it?
- Does Whitney really have relatives with everyone's name?
- Why is Rachel so scary?
- So much more.....
Whitney Maxwell can be found on Twitter at https://twitter.com/whitneynmaxwell/ and her book recommendations are: Rachel Tobac can be found on Twitter at https://twitter.com/racheltobac and her book recommendations are:
|
This week, Paul and John Strand interview Mike Gordover, iSenior Solutions Architect at ObserveIT! They discuss the current perception in the market of DLP, how ObserveIT’s solutions differ from traditional DLP, what challenges he faces when combating insider threats, and much more! In the Enterprise Security News, Mimecast offers free training kit as part of Cybersecurity Awareness Month, Microsoft will finally kill off the old Skype client (for real this time), LogRhythm receives patent for data monitoring tech, Tufin launches first of its kind program for MSSPs, three reasons why BlackBerry stock is potentially about to soar, and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode109 ObserveIT Landing Page: www.observeit.com/securityweekly Visit https://www.securityweekly.com/esw for all the latest episodes! Visit https://www.activecountermeasures/esw to sign up for a demo or buy our AI Hunter! →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
This week, Keith and Paul talk about landing a job in Application Security! They discuss attending local meetups and conferences, practicing your coding skills, getting educated by World Class security researchers, doing your homework, and much more! In the Application Security News, Facebook discloses the loss of at least 50 millions access tokens, Google admits to allowing hundreds of companies to read your email, FireFox Monitor will alert you when your accounts have been Pwned, Microsoft releases MS-DOS v1.25 and v2.0 as Open Source, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode34 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter! →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
This week, Paul interviews Mike Nichols of Endgame, Keith McCammon of Red Canary, & Shawn Smith of Panhandle Educators Federal Credit Union! Carlos Perez deliver the Technical Segment on How to Operate Offensively Against SysMon, and the crew will wrap the show with the Security News! Full Show Notes: https://wiki.securityweekly.com/Episode577 Visit https://www.securityweekly.com/psw for all the latest episodes!
|
|
|
This week, Keith and special guest host April Wright interview Ron Gula, Founder of Tenable and Gula Tech Adventures! They discuss security in the upcoming elections, how to maintain separation of duties, attack simulation, and more! In the Application Security News, Hackers stole customer credit cards in Newegg data breach, John Hancock now requires monitoring bracelets to buy insurance, the man who broke Ticketmaster, new security settings available in iOS 12, State Department confirms data breach exposed employee data, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode33 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter! →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
|
|
|
|
|
|
|
|
Drone assassins are cheap, deadly, and at your local store, State Department shamed, MS-ISAC releases advisory advisory PHP vulnerabilities, a nasty piece of CSS code, a Zero-Day bug in CCTV surveillance cameras, and FreeBSD has its own TCP-queue-of-death bug! Jason Wood's expert commentary on The Effectiveness of Publicly Shaming Bad Security! Full Show Notes: https://wiki.securityweekly.com/HNNEp... Visit http://hacknaked.tv to get all the latest episodes!
|
|
|
|
|
|
|
|
|
|
|
|
|
I sense there is something important in your life? Something that you will be listening to shortly that will change the way you view... everything. Ian Rowland is a renowned expert into cold reading. In his book, "The Full Facts Book of Cold Reading", Ian explains exactly how cold reading works. Despite being told exactly how this trickery works, notice how he still reads Cat during our podcast. We discuss: - Do you know any Jennifer's?
- How does cold reading work?
- What application does Cold Reading have to social engineering?
- So much more...
Check out Ian on his website: https://ianrowland.com/ or his Twitter account: https://twitter.com/ianrowland1 Ian recommended a book for us this month: Dale Carnegie, How to Win Friends & Influence People
|
This week, Paul and the crew sit down with Wim Remes, Founder and Principal Consultant at Wire Security! In our Technical Segment, we welcome back Chris Brenton, Chief Operating Officer for Active Countermeasures, in which he explains why Beacon Analysis in an integral part of threat hunting! In the Security News this week, Vulnerabilities found in remote management interface of Supermicro servers, Google fixes Chrome issue that allowed theft of WiFi logins, U.S. to charge North Korean spy over WannaCry and Sony Pictures hack, how to manipulate Apple’s podcast charts, and a Spanish driver that tests positive for every drug on the test. All that and more, on this episode of Paul’s Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode574 ** Link to slides for the Technical Segment can be found in the show notes! Visit https://www.securityweekly.com/psw for all the latest episodes! →Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter!! →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
|
|
|
|
This week, Paul and John Strand interview Rick Holland, CISO at Digital Shadows! In our Technical Segment, John Strand talks about Office 365 User Behavior Analytics! In the Enterprise News this week, we have updates from VMware, Caveonix, Qualys, Minerva Labs, Bitdefender, CrowdStrike, and more on this episode of Enterprise Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ES_Episode104 Visit https://www.securityweekly.com/esw for all the latest episodes! Visit https://www.activecountermeasures/esw to sign up for a demo or buy our AI Hunter! →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
It might not come as a shock to you that we here at SEORG love Neil Fallon and Clutch. Having Neil out at DEF CON was an amazing experience. After 4 long days at DEF CON we hosted our annual live podcast for Episode 108. Join us as: - Neil fixes Chris' technical issues.
- We discuss ways to improve the SEVillage
- We talk about professional SE work
- and we suffer through our final sleep deprived moments in Vegas....
You can follow Neil on Twitter at: @npfallon Check out Chris' latest book: Social Engineering: The SCIENCE of Human Hacking
|
|
|
|
|
This week, Paul interviews Josh Abraham, Staff Engineer at Praetorian! In the Technical Segment, our very own Larry Pesce gives an introduction to FL2K! In the Security News, Microsoft Edge flaws, Ransomware attacks, Yale university data breaches, Reddit data breaches, Linux kernels, and in our Funny story of the week, why people are rubbing toothpaste on their breasts to make them larger, and more on this episode of Paul’s Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode570 Visit https://www.securityweekly.com/psw for all the latest episodes! →Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter!! →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly
|
|
|
|
|
|
|
|
|
|
|
Amy E. Herman is the founder and president of The Art of Perception, Inc., a New York-based organization that conducts professional development courses to leaders around the world including at the FBI, CIA, Scotland Yard, and the Peace Corps. Herman was also the Director of Educational Development at Thirteen/WNET, the educational public television station serving New York and New Jersey, and the Head of Education at The Frick Collection for over ten years, where she oversaw all of the Collection's educational collaborations and community initiatives. Join us as we have a fascinating conversation with Amy about: - Biases - are they useful?
- How can we recognize biases and they use them?
- What does it mean to be the dog?
- What does it mean to be the wolf?
- Can you ride a dolphin, wolf hybrid through the ocean?
- so much more...
Amy can be found on her website: www.visualintelligencebook.com or on Twitter at @AmyHermanAOP She recommends a book by Daniel James Brown titled, The Boy in the Boat
|
Jordan Harbinger, formally from the Art of Charm, now hosts a new show called - The Jordan Harbinger Show. As a long time friend of the SEPodcast we wanted to discuss how Jordan restarted his life after parting ways with AOC. Instead our conversation took a very interesting turn and we discussed some fascinating topics: - How does who you know affect your abilities to advance?
- How do you keep and maintain useful relationships?
- Does what you know really add value?
- So much more...
Jordan shares some really interesting insights with us and gives us a new book recommendation: Willpower Doesn't Work: Discover the Hidden Keys to Success by Benjamin Hardy Follow Jordan on his website https://www.jordanharbinger.com/ and stay tuned for much more from him.
|
How important is fitting into a tribe? Can you create a new tribe? If you do, will you be all alone? This month's guest, the fascinating Dov Baron, explores these questions and more. You can find Dov on his website at: http://FullMontyLeadership.com You can buy his book, Fiercely Loyal on Amazon
|
Michael Bazzell spent 18 years as a government computer crime investigator. During the majority of that time, he was assigned to the FBI's Cyber Crimes Task Force where he focused on open source intelligence, hacking cases, and personal data removal methods. As an active investigator for multiple organizations, he has been involved in numerous high-tech criminal investigations including online child solicitation, child abduction, kidnapping, cold-case homicide, terrorist threats, and high level computer intrusions. He has trained thousands of individuals in the use of his investigative techniques and privacy control strategies. This month Michael talks about: - Some actionable OSINT tips you can use now!
- His new book that you must read
- Tips on parenting, that we doubt you will want to follow
- His VM operating system that contains so many tools it could make an OSINT'er drool
- So much more....
Make sure to check out his Twitter Account: inteltechniques and his podcast The Complete Privacy & Security Podcast Micahel's new book: Open Source Intelligence Techniques: Resources for Searching and Analyzing Online Information is a must read and he recommends our listeners check out: Salt: A World History by Mark Kurlansky We know you will enjoy this episode!
|
JJ Green just wants to share the story. With over 25 years of journalistic travel into 51 countries he has witnessed conflicts, disasters and political struggles that have shaped our world today. On this podcast we discuss: - Do you really like Bruce Hornsby?
- Can you stay safe in this increasingly insecure world?
- What does it mean to pen the future?
- How do we help the next generation?
- So much more!
Join the Panel this month of: humanhacker, hackingdave, vlkyri, catmurd0ck as we talk about this and a whole lot more. You can follow JJ at @jgreenwtop or @natsec09 JJ recommends a book that is right up our alley: American Radical: Inside the World of an Undercover Muslim FBI Agent by Tamer Elnoury Till next month - stay secure!
|
Eric Taylor, aka CosmoTheGod, formerly of UGNazi has been caught arrested and now reforming his past ways turn his skills to the good. Join us as we talk to Eric about: - How did you stop the Kansas City Swatter?
- How did you get into hacking and social engineering?
- How did you reform?
- What are you going to do to stay on the side of right?
- What are you going to do now?
- and so much more.
You can find Eric on Twitter at: https://twitter.com/CosmoTheGod And he recommends the book by Kevin Mitnick, Ghost in the Wires
|
Lucky Yates is an actor and writer, known for Archer (2009), The American Shame (2001) and American Dirtbags (2015). Lucky is a hilarious guest that entertained us and we got to discuss some really interesting topics: - What is a war ape and a sky robot?
- How do you act when you can't see your co-actors?
- Are nonverbals still important?
- Is Dave a Jerk?
- How does Lucky feel about Bruce Hornsby?
- So much more....
Come and laugh with us on this very special podcast - Our 100th episode! Lucky invites you to follow him on Instagram: https://www.instagram.com/LuckyYates/ And also to read a pretty disturbing book called "The Butchering Art - Lindsey Fitzharris" Check out our websites: www.social-engineer.com for all Corporate Social Engineering needs www.innocentlivesfoundation.org for information a nonprofit designed to help unmask child predators.
|
|
|
Chris Kirsch, the 1st place winner of the SECTF, is a returning competitor that came back to prove to himself how and why he CAN win this competition after his previous attempt was ...um... not so great. Rachel Tobac is our scariest competitor but also one of our most positive and sweetest. She comes back to yet again take 2nd place in the SECTF this year. We will discuss: - What helped you win?
- What is one of the most important lessons?
- Would you recommend others try the SECTF?
Do you want to see their entrance videos? Chris Kirsch: https://youtu.be/2FUkbes6Wgc Rachel Tobac: https://youtu.be/UuWRT4rpmX8
|
Chris Kirsch, the 1st place winner of the SECTF, is a returning competitor that came back to prove to himself how and why he CAN win this competition after his previous attempt was ...um... not so great. Rachel Tobac is our scariest competitor but also one of our most positive and sweetest. She comes back to yet again take 2nd place in the SECTF this year. We will discuss: - What helped you win?
- What is one of the most important lessons?
- Would you recommend others try the SECTF?
Do you want to see their entrance videos? Chris Kirsch: https://youtu.be/2FUkbes6Wgc Rachel Tobac: https://youtu.be/UuWRT4rpmX8
|
|
|
|
|
|
|
Join us this month with our long time friend, Jordan Harbinger. Jordan comes back to the SEPodcast to discuss a few important topics with us: - How is marriage treating him?
- How has The Art of Charm changed over the years?
- How did he even start The Art of Charm?
- Was he really a lawyer?
- Other cool stories....
You can follow Jordan on Twitter here: https://twitter.com/theartofcharm or hit his website up at https://theartofcharm.com/.
|
Jayson E. Street is an author of “Dissecting the Hack: The F0rb1dd3n Network” from Syngress and creator of dissectingthehack.com. He has also spoken at DEFCON, DerbyCon, UCON and at several other ‘CONs and colleges on a variety of Information Security subjects. His life story can be found on Google under “Jayson E. Street.” He is a highly carbonated speaker who has partaken of Pizza from Beijing to Brazil. He does not expect anybody to still be reading this far, but if they are, please note he was chosen as one of Time’s persons of the year for 2006. On today's podcast we talk about: - A Diet Pepsi Intervention
- How does a white hat hacker land himself on NatGeo?
- How does one break into the WRONG bank?
- The stories that only Jayson could tell
- And so much more...
Follow him on Twitter at @jaysonstreet
|
Michael Bazzell spent 18 years as a government computer crime investigator. During the majority of that time, he was assigned to the FBI’s Cyber Crimes Task Force where he focused on computer crime investigations and OSINT. He has trained thousands of individuals in the use of his investigative techniques. He also served as the technical advisor for the television hacker drama "Mr. Robot". His books "Open Source Intelligence Techniques" and "Hiding from the Internet" have been best sellers in both the United States and Europe. On this wonderfully Honrsby-Free edition of the SEPodcast we get to discuss: - Michael's brand new VM for OSINT-ers - Buscador
- Tips to dig even deeper for OSINT
- How far is too far with Michael?
- Michele get's dating info from Michael - hot tips.
- And so much more.
Michael recommends the book Playing Dead: A Journey Through the World of Death Fraud Check it out and follow him on twitter at @IntelTechniques
|
A microbiologist turned producer, Whitney has produced commercials, pilots, feature films, and internet series for major corporations including SyFy, Verizon, The Travel Channel, Comedy Central, Machinima, and CBS. She was a member of the Academy Award winning art team on The Amazing Race, and wore several hats during production for The Lizzie Bennet Diaries and Emma Approved, both recipients of an Emmy for Original Interactive Programming. Whitney produced Virtual Reality experiences for Kellogg’s, General Electric, Nokia, Jaunt Media, and Google Spotlight Stories. Her passions also include choreographing Renaissance and Regency Era dance, yoga, and creating stunning visual content. This podcast we have the chance to discuss: - How does framing work in film?
- Does VR change the way framing works?
- What aspects do you need to consider to frame your target's emotions properly?
- And much much more
Follow Whitney at her site: www.countstonine.com Whitney also recommends this book: The Alchemist by Paulo Coelho
|
|
|
|
|
|
|
Author, teacher, researcher and psychologist - Dr. Pennebaker is one interesting man. He has not only performed some fascinated research but he built tools around his research and then released them free to the world. You can even try one out at his site: http://www.receptiviti.ai/ This podcast we have a chance to ask the Doc things like: - Can we really learn to profile people based on how they use pronouns?
- Are tools needed or can a human learn it?
- Is it good or bad to use the word "we" a lot?
- Will you really listen to Bruce Hornsby?
- And so much more...
Join us for this fun, entertaining and really educational podcast. Dr. Pennebaker recommends a couple books for us: The Secret Life of Pronouns - Dr. James Pennebaker Along with the accompanying website at: http://www.secretlifeofpronouns.com/ Station 11 - Emily St. John Mandel
|
Robert Cialdini (http://www.influenceatwork.com) is the Regents' Professor Emeritus of Psychology and Marketing at Arizona State University and was a visiting professor of marketing, business and psychology at Stanford University, as well as at the University of California at Santa Cruz. He has written a number of books and literally defined the studies on how we understand the principles of influence. This month we get a chance to talk to Bob (He wouldn't let us call him Dr. Cialdini) about: - How he got started in his career path? Was he really about to enter pro baseball?
- What does he think the difference between influence and manipulation is?
- Can 5 words really change your message?
- There is just soooo much more - you will love this one for sure!
Bob recommends these amazing books: Enjoy! What an amazing PODCAST!
|
Over the past 15 years, she has been researching the human-centred aspects of security, privacy, identity and trust. Research interests: how we design and implement innovative technologies that are fit for purpose, value for money, and improve productivity and well-being of individuals and society. Angela's full research portrait can be found here: http://sec.cs.ucl.ac.uk/ace_csr/members/angelas_research_portrait/ Angela discusses some fascinating topics with us based on research she has done into things like: - Analyzing employee behaviors for security environments...
- The use of positive reinforcement over shame and fear....
- How to make usable security...
- How to enforce security policies....
- And how all this fits into her being a psychologist?
All of her research can be found here: http://sec.cs.ucl.ac.uk/people/m_angela_sasse/angelas_publication_list/ Angela recommended a book that took us a bit to find, Codes of the Underworld by Diego Gambetta
|
The annual live podcast from DEF CON was an amazing show this year. Michele gets bio hacked live, Chris almost passes out and the crowd wonders where is the SE in the SEPodcast gone?
|
|
|
You have heard us talk about social engineering in every light possible as an attacker, now we invited two guests, experts in disinformation and and playing Internet hide and seek to help us see if we can use SE to HIDE from anyone. We discuss such things as: - How can you use disinformation?
- What does it mean to hide on the Internet?
- How hard would it be to really be off the grid?
- And why having a corporation in Mexico can help you with all of this.....
- and so much more.
Join Michael and Justin to find out. Check out Michael at his site: https://inteltechniques.com/ and Check out Michael's and Justin's books at: https://inteltechniques.com/amazon.html
|
Frank McAndrew is the Cornelia H. Dudley Professor of Psychology at Knox College. He is a social psychologist with interests in environmental and evolutionary psychology, and his research is guided by the simple desire to understand the psychology of everyday life. He is currently studying gossip, aggression, internet behavior, and paranormal experiences. His work is frequently featured in popular media outlets such as National Public Radio, the BBC, the New York Times, and NBC's "Today Show," and he has lectured widely throughout the United States, Europe, and Africa. He has also written for more than two dozen print and online magazines including Time, Newsweek, the Huffington Post, Scientific American, and The New Republic. He join's us this month to discuss: - How creepy are you?
- How do you know if you are creepy?
- Can you change if you are creepy?
- How can creepiness affect being a social engineer?
- Is Michele really creepy or sultry?
- Much much more
You can find out more about the Doc on his personal page at: http://www.frankmcandrew.com/ where you can find his research papers and other work too!
|
Kevin Roose is a business and technology writer for New York magazine and the Daily Intelligencer blog. He has written several books including The Unlikely Disciple: A Sinner's Semester at America's Holiest University and Young Money: Inside the Hidden World of Wall Street's Post-Crash Recruits. In 2015, Kevin asked Chris and his team of expert social engineers to hack him. There was no restrictions - phishing, vishing, impersonation and a complete d0x were all on the table. If haven't seen the outcome you can view in on the YouTube Video that already has over 2 million views. We thought it would be a great idea to invite Kevin on the show and ask him a few questions: - What gave you this crazy idea?
- Did you think you would come out the victor?
- How did you really feel as you realized you where pwned?
- How has it affected you after the hack?
- Anything you do differently now?
- And so much more....
|
What would you do if you were in a car accident that lowered your IQ and then had doctors basically tell you to throw in the towel? Would you listen or would you fake it till you make and stay present? Find out what the truly inspirational Amy Cuddy did. March 14, 2016
|
Join us for another amazing episode with one of our favorite guests Robin Dreeke. He helps us with: - Building on the 10 steps to rapport
- How do we apply the 5 steps to trust?
- Can this really make you more zen?
- What is the name of his new book?
- What is this? We are HORNSBY FREE!!
Follow Robin on Twitter or visit his website www.peopleformula.com
|
Ok so if you haven't heard of Clutch you just have been living under a rock... but if you have come out to listen to this podcast today is your special day... Meet Neil Fallon, leader singer, poet and scotch lover... oh yah and chances are if you go to one of his shows you are getting watched! Jan 11, 2016
|
Dec 18th Star Wars debuts its Episode VII!! And while all of geekdom is getting ready, is there Social Engineering Elements to Star Wars? Join us with our guest Dr. Travis Langley, a psychologist who studies Star Wars characters for the answer! .... Dec 14, 2015
|
If you took 10 billion parts high energy, 10 billion parts social engineer and 10 billion parts raw awesome and blended them together, poured them in a mold and let them gel it would come out this month's guest. Brian Brushwood is all that and more..... Nov 9, 2015
|
Phishing is the number one security threat to organizations around the globe. Yet only a fraction of the companies that control our services, infrastructure and resources are educating their people how to combat this threat. Why? Lets discuss with Mark Chapman.... Oct 12, 2015
|
Another amazing year at DEF CON and the women have again dominated the SECTF. Join us with our first and second place winners, Jen and Jon, to discuss strategy and how to win.... Sept 14, 2015
|
R. Paul Wilson is a good friend and we have been following his work for year. This year he flies all the way to Vegas to join us for the podcast.... Aug 10, 2015
|
70 months is a long time, wouldn't you agree? Well after 70 months we have managed to get HD Moore on our podcast and what a treat it is for all you listeners... you won't want to miss this one.... July 13, 2015
|
Can you remember episode 07? Our amazing guest, Dr. Ellen Langer, is back now on episode 70! Mindfulness, the effects of it on decision making and so much more.... From Podcast 07 to Podcast 70, Dr. Langer hasn't lost a beat and she continues to impress us, entertain us and educate us how to be more thoughtful, better critical thinkers and more productive. Don't miss this one. June 08, 2015
|
PSYOP, or psychological operations, is a fascinating topic that we will be delving into with our guest, Jimmy Do. May 11, 2015
|
Did you know that the unique little errors and style you have in writing can pinpoint you like a fingerprint, even in your anonymous online posts? Join us as we discuss this exciting topic with Sadia Afroz. April 13, 2015
|
How important is physical security to your overall security posture? Should security people really know how to pick locks and hack elevators? Join the SEORG Podcast panel with our guest Deviant Ollam to discuss these very important topics.
|
Our anonymous guest joins us this month from one of the companies that was breached in the last year. He discusses what we all can learn and how to stay safe and what to do to avoid being the next headline. Feb 09, 2015
|
The Social Engineer Podcast crew comes back together to discuss 2015 and what we can expect to see in the world of Social Engineering and Security. Jan 12, 2015
|
Hosts
Guests
Topics
- Cybersecurity Startups and Accelerators featuring MACH37
- Northern Virginia based startup accelerator
- 17 cohorts thus far
- How tough it can be to start your own product company
- Pitfalls and lessons learned through assisting cohorts through their founding stages
Use Our Discount Codes
- Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANS Security East 2015 course and receive $150 off using coupon code “SANS_SecuraBit150”. The training event takes place in New Orleans, LA –Jan 16 – 21, 2015.
Upcoming events
Links
- www.gh0st.net/wiki - 24/7 Penetration Testing learning environment, FREE.
- Volunteers sought to help maintain and build challenges. Local to RVA a plus!
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
|
John Mcafee has certainly been in the news over the last year or two. Now he joins the Social-Engineer Podcast crew and discusses his thoughts on social engineering and how he used it in Belize. Dec 8, 2014
|
Each year the SECTF at DEF CON grows in popularity and this past year was no different. Join us with the dynamic duo that won DEF CON 22's SECTF competition - The Schmooze Operators Nov 10, 2014
|
Jorina von Zimmermann graduated from University College London (UCL) with a Master degree in Social Cognition in 2012. A year later she started her PhD in the department of Experimental Psychology at UCL to investigate group behaviour. She joins us to talk about influence and propaganda. Oct 13, 2014
|
Hosts
Guests
Topics
- Bioinformatics
- Relation of information security tools and methodologies to biology, research into immune systems, bacteria, as well as how those relate to infosec, polymorphpic malware, and reverse engineering.
- Signatures akin to antivirus/whitelisting:
- Reverse Engineering/Debugging:
Use Our Discount Codes
- Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANS Network Security 2014 course and receive $150 off using coupon code SANS_SecuraBit150. The training event takes place in Las Vegas, NV – Oct 19-27, 2014.
Upcoming events
Links
- www.gh0st.net/wiki - 24/7 Penetration Testing learning environment, FREE.
- Volunteers sought to help maintain and build challenges. Local to RVA a plus!
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
|
Hosts
Topics
- Chicago ATC Fire
- Scorpion
- Shellshock
Use Our Discount Codes
- Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANS Network Security 2014 course and receive $150 off using coupon code SANS_SecuraBit150. The training event takes place in Las Vegas, NV – Oct 19-27, 2014.
Upcoming events
Links
- www.gh0st.net/wiki - 24/7 Penetration Testing learning environment, FREE.
- Volunteers sought to help maintain and build challenges. Local to RVA a plus!
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
|
Join us on this special SecuraByte interview episode with Graham Speake as we discuss Industrial Control Systems and their security!
Hosts
Guests
Topics
- ICS systems and their criticality
- Security in ICS
- Examples of malicious campaigns
Use Our Discount Codes
- Use code SANS_SecuraBit150 to get 150 off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANS Network Security 2014 course and receive $150 off using coupon code SANS_SecuraBit150. The training event takes place in Las Vegas, NV – Oct 19-27, 2014.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available –http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Register for any SANS Network Security 2014 course and receive $150 off using coupon code “SANS_SecuraBit150”. The training event takes place in Las Vegas, NV – Oct 19-27, 2014. 
|
May 21st, 2014
Hosts
Guests
Topics
- Lack of women in Cyber/IT fields. 11% of the cyber workforce consists of women.
- Addressing the pipeline issues with getting more girls excited about STEM
- Impostor Syndrome
- Differences in perception between men and women from an interpersonal standpoint
Use Our Discount Codes
- Use code SecuraBit5_SANS to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANSFIRE 2014 course and receive 5% off using coupon code SecuraBit5_SANS. The training event takes place in Baltimore, MD – June 21 - 30, 2014.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available –http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Hosts
Guests
Topics
- Drones and ARM fun!
- ArchAssault Linux
- Kali-like environment with the ability for heavy niche customization and swapping of environments.
- Modular. Can overlay any part of the distro onto your own Arch Linux installation
- Bleeding edge packages
- Great for setting up remote dropboxes via ARM devices
- IE Exploit
- Heartbleed wrap-up
- RVAsec CTF prizes! (Thanks Hak5!)
- BsidesChicago Post-mortem
- Upcoming guests!
Use Our Discount Codes
- Use code SecuraBit5_SANS to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANSFIRE 2014 course and receive 5% off using coupon code SecuraBit5_SANS. The training event takes place in Baltimore, MD – June 21 - 30, 2014.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available –http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8 
|
Hosts
Guests
Topics
-
NolaCon
-
June 19-22, 2014 in New Orleans, LA
-
Use coupon code “securabit” to get $50 off registration!
-
RVAsec CTF
-
Banter
Use Our Discount Codes
-
Use code SecuraBit5_SANS to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANS 2014 course and receive 5% off using coupon code SecuraBit5_SANS. The training event takes place in Orlando, FL – April 5 - 14, 2014.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast –http://itunes.apple.com/us/podcast/securabit/id280048405 
|
|
|
January 15th, 2013
Hosts
Guests
Topics
-
Reducing your attack surface
-
Get Focused!
-
Identify: Find the root cause of your top problem
-
Align: Build a project plan and get sponsorship
-
Communicate: Build consensus through awareness
-
Report: Build a scorecard to show results
-
Transition from ineffective processes and philosophies, make technology an enablement tool, not just another tool to misappropriate and be frustrated by.
Use Our Discount Codes
-
Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANS 2014 course and receive 5% off using coupon code SecuraBit_SANS5. The training event takes place in Orlando, FL – April 5 - 14, 2014.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
SecuraBit Episode 122: Risky Bitcoin Insurance!
December 11th, 2013
Hosts
Guests
Topics
Use Our Discount Codes
-
Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANS Security East course and receive 5% off using coupon code SecuraBit_SANS5. The training event takes place in New Orleans, LA – January 20 - 25, 2014.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8 
|
Hosts
Guests
Topics
Use Our Discount Codes
-
Use code SecuraBit_SANS5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANS CDI 2013 course and receive 5% off using coupon code “SecuraBit_SANS5”. The training event takes place in Washington, DC – December 12 – 19, 2013.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 
|
Hosts
Guests
Topics
News Items
-
Adobe hacked
-
Govt Shutdown
Use Our Discount Codes
-
Use code SecuraBit_5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_05 The training event takes place in Washington, DC – June 15-22, 2013.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405 
|
|
|
This episode we’re joined by Jad Saliba from Magnet Forensics as he discusses the newly announced phone features of IEF.
We also talk about NSA letters, Prism, and how Logicube are going all trekkie on us.
|
Hosts
Guests
Topics
-
THOTCON
-
BSides Las Vegas
-
U.S. Army Corps of Engineers’ Dam database breached
-
U.S. Department of Labor hack
-
BitCoin
-
RVASec
-
Hackers in Uganda: A Documentary
-
SECore.info
Use Our Discount Codes
-
Use code SecuraBit_05 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_05 The training event takes place in Washington, DC – June 15-22, 2013.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8 
|
|
|
SecuraBit Episode 117: The Internet is on Fire!
March 27th, 2013
Hosts
Guests
Topics
-
Hack.RVA events, news, and RVAsec badges!
-
CTF is being put together for offline. Register at http://securabit.com/ctf/
-
Security Awareness training
News Items
Use Our Discount Codes
-
Use code SecuraBit_5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
-
Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_5 The training event takes place in Washington, DC – June 15-22, 2013.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8 
|
The one where we start a shiznit-storm and, oh yeah, a chat with Violet Blue....
Thanks to:
Jericho & Banasidhe for being in studio!
Enjoy!
|
Hosts
Guests
Topics
- NetIQ
- Internet History
- Privacy and Social Media
- Egypt’s revolution
- Data management and risk in the cloud
- Building Automation
- BacNET protocol dissection
- Shmoocon, RSA, and upcoming cons!
- The PenLab is back up!
- CTF Pre-registration for RVAsec 2013 will be coming soon!
News Items
Use Our Discount Codes
- Use code SecuraBit_5 to get 5 percent off of ANY training course. The discount code is good for all SANS courses in all formats.
- Register for any SANSFIRE 2013 course and receive 5% off using coupon code SecuraBit_5 The training event takes place in Washington, DC – June 15-22, 2013.
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
We’re back! First new episode of Forensic 4cast since November 2011. We’ve selected a panel of top people from the field… sadly none of them were available so we have a bunch of other guys instead. Join us as we talk about Android malware, why Lee doesn’t use two-factor authentication, outsourcing to China, and so on.
Suck it Ovie!
You can either listen to the MP3 or watch the YouTube video below.
|
|
|
Episode 839 - Goodbye, Farewell and So Long
|
Episode 838 - BigBrother in .de, FTC do not track mobile, Cisco study, 2FA for Twitter, and 4k banker credentials leaked.
|
Episode 837 - Silent but Deadly, Don’t Blame Us, & Me Too!
|
Episode 836 - MacOSX a/v, NYT hack, Oracle on Java, and User Fun
|
After nearly 4 years dormant, we're bringing back the SecuraByte! These are designed to cover things that can't wait for our normal podcast cycle. In our 7th iteration, we interview Jake Kouns regarding the RVAsec security conference he is organizing in Richmond, VA which will be hosted again at VCU!
Host:
Guest:
What you need to know:
- RVASec Call for Papers ends February 4th @ 11:59PM. Get your submissions in now!
- We expand on some more details regarding the Capture the Flag event that will be at the conference.
- Forensics training announced today! Only 12 seats so register now!
- 2 day conference this year. Parking and nourishment are included.
- Registration is open! If you register by the end of today using coupon code "early" you will save $25!
Links:
|
Episode 835 - UPnP, HP Printers, Alabama DHS Cyber Intrusion, Pwnium Rewards $3.14159 M, and Cloud Security Mistakes
|
Episode 834 - Thoughts on Security Industry
|
Episode 833 - Barracuda Backdoor, Crims can watch you!, and 3 indicted for Gozi botnet.
|
Episode 832 - DHS Warning, APT Attacks, Expelled!, Protect Against Spies, at&t
|
Hosts
Topics
News Items (no particular favoritism of non source links)
- Red October
- Java 0-day
- Developer outsources his job. Review your logs!
The Lab
- CTF at RVASec
- Lab upgrades and changes.
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Episode 831 - Virut, HIPAA Final Rule, IA vs IS, Even Moar Java and South Korean Competition
|
Episode 830 - Bodyscanners, MSAV, Genomes & Moar Java
|
Episode 829 - ColdFusion Patched, AIDE 2013 CFP Open
|
Episode 828 - CFAA update in works, Red October, dev Outsources to China, GoDaddy NTLM leak, and $5k gets you Java 0day
|
Episode 827 - Hack3rCon, Prepping and General Talk
|
Episode 826 - Scrape-DNS, Java Patched But Not Fixed, ADP-Themed Phishing Campaign, Security Vendor Could Be Next Target
|
Episode 825 - DDoS and Free Speech, nokia stops https mitm keeps http mitm, Java 0day again, Exploit kit for $10k per month, and Hacking Pipelines
|
Episode 824 - RFID Tags and school, Java Again, Nokia MitM, China’s new PII law
|
Episode 823 - FISA Warrantless, Impersonation Felony, Assault Weapons Ban
|
Supersized episode with lots o' guests!
Merry Christmas from the EL Crew.
Enjoy!
|
Episode 822 - You’re really dead. Cisco VoiP hack, GreenSQL report, paid Facebook message service, and elcomsoft Forensic Disk Decryptor.
|
Episode 821 - Career Dayish, VMWare VMViewer fix, Mimicing APT in pentesting, and ctf365
|
Episode 820 - Oracle Prevent Java Apps,Wiper Copycat?, Dexter, SWF Investigator, Single-browser
|
Episode 819 - Mac Trojan, Samsung Chip, Iran Trojan, EU Breach Disclosure, and TIA rejects NIST mobile security guidelines.
|
Episode 818 - Minority Report, ExloitHub, FSecure 7 for ‘13, and bwall’s pot compare
|
|
|
Episode 817 - @PentestLessons, IE Data Leakage, No Anonymity, How To Rob A Bank, Dexter, and Security or FUD?
|
Episode 816 - Izz ad-Din al-Qassam, Java Attacks, Android Scanner Fail, Samsung, Carolinas Healthcare, India 1,600
|
Episode 815 - Necurs 80k+, NDIS backdoor, Jeff Moss on Internet, and EU power company DoS.
|
Episode 814 - Texting 911, "Project Mayhem", Royal Pwn, Debunking, ATT DDOS
|
Episode 813 - BIND 9.9.2, BlackHole & Chrome,Pak hack, 25 GPU Monster, SMB Medical Offices
|
Episode 812 - Nationwide Insurance, US votes to keep internet free, and GT Mobile Browser research
|
Episode 811 - Macs targetted again, tumblr worm, darpa looks for backdoors, and King Cope’s Full Disclosure 0Days.
|
Episode 810 - FOREX, Banks owe, Spear-Phishing, distributed computation via browser
|
Episode 809 - Syria, Printers, Solid Oak, and IAEA
|
Episode 808 - @PentestLessons, Unencrypted PAN Storage, The Email That Hacks You, and Security or FUD
|
Episode 807 - eBay XSS, 1300 Databases, RedHack Trial, Yahoo! XSS 4Sale, 20-plus flaws in SCADA
|
Episode 804 - NZ Kiosk Update, GoatSec Trial, Linux Drive By Rootkit, FreeBSD Compromise, and Konstituion Kiboshing
|
Episode 804 - NZ Kiosk Update, GoatSec Trial, Linux Drive By Rootkit, FreeBSD Compromise, and Konstituion Kiboshing
|
Episode 804 - NZ Kiosk Update, GoatSec Trial, Linux Drive By Rootkit, FreeBSD Compromise, and Konstituion Kiboshing
|
Episode 803 - Google Docs as Proxy, Facebook turns on SSL, Oprah Oops and top 10 Vulns of 2012
|
Episode 801 - EA Origin, Skype, Adobe, Smart Card Sniffing Malware, and NASA's Lost Laptop
|
Episode 800 - Pentest Lessons, BSidesDE Wrap Up and Security or FUD
|
Episode 797 - Adobe 0Day, CoDeSys Responds, Law Firms, Ebanking, iPhones Data
|
Episode 796 - SecZone Founder Interview, @PentestLessons, Security or FUD
|
Episode 795 - Sophos Anti-Virus, LG Smart World, China Most Threatening, Anonymous hackfest, TrustWave SC hacking
|
Episode 794 - Irish Incidents on rise, Coke-a-cola Hacked and doesn’t tell, NJ e-mail vote, Nov. 5th breaches
|
Episode 793 - Paypal Vulnerable, Android Client Side Protection, DHS The Opportunist, and Hackmageddon October Timeline
|
Episode 792 - Algerian Attack, Windows 8 defeated, ZeroAccess Botnet, Fast Flux Botnet, DigiNotar Final Report, SC Data breach, iOS 6.0.1
|
Hosts
Guests
Topics
- Encrypting your stuff
- Files
- Passwords
- Web Browsing
News Items
- DARPA-Funded Radio HackRF Aims To Be A $300 Wireless Swiss Army Knife For Hackers
- Real-Time Cyber-Attack Map
- Russian Anti-Virus Firm Plans Secure Operating System to Combat Stuxnet
- SMARTPHONE USERS SHOULD BE AWARE OF MALWARE TARGETING MOBILE DEVICES AND SAFETY MEASURES TO HELP AVOID COMPROMISE
- State-Sponsored Malware ‘Flame’ Has Smaller, More Devious Cousin
- DOING INFOSEC RIGHT
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Episode 791 - 60 Seconds Arrests, .AU Post breached again, .ru cyberspy in Georgia, DDoS & SQLi lead on forums and UK Bank Phishers arrested
|
Episode 790 - Naming hackers, Firefox 16.0.2, Xtreme RAT, NullCrew, Twinings Tea
|
Episode 789 - DNS Amplification still going, Cloud Security control, UK says lie on the internet, .JP bank phishing, and Supreme Court and ownership
|
Episode 788 - synackpwn, SCDR, Data Breach Laws & Election/Vote Hacking 2012
|
|
|
|
|
Hosts
Guests
Topic
- Crisis Malware
- Z800 For Sale
- Citrix
- AV Talk - Primary vs Secondary Technology
- Mainframes and TSO Brute
News Items
- Blizzard Hacked
- backtrack 5 r3 released
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE OnDemand Bundle with corresponding course purchase for SANS Network Security 2012 with code SecuraBit_NS12OD
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
|
|
Hosts
Guests
Topics
- DEF CON 20 and BSidesLV Calendar
- Chris Mills’s picks
- Nicholas B’s Picks
- http://blog.hacktalk.net/
- With Connection and Nicholas B.
- pwnieexpress interview with Jonathan Cran
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8 
|
|
|
|
|
|
|
Hosts
Guests
- Dr. Tran
- Emwave
- Professor Farnsworth
News Items
- ANONYMOUS CLAIM: ‘WE HAVE ACCESS TO EVERY CLASSIFIED DATABASE IN THE U.S. GOVERNMENT’
- Pentagon boosts contractor cybersecurity program
- http://thehackernews.com/2012/05/pentagon-boosts-contractor.html
- "The effort, known as the Defense Industrial Base ("DIB") program, is a voluntary information-sharing program in which the Department of Defense shares "unclassified indicators and related, classified contextual information" about cyber-attacks and threats with defense contractors.”
- “In exchange, defense contractors report known intrusions and can receive forensics analysis and damage assessments from the government after those attacks. In an optional part of the program, the DIB Enhanced Cybersecurity Services, the government shares additional classified threat and technical data with defense contractors and Internet service providers. "
- 17 year old Teenager arrested over TeamPoison hacking attacks
- http://thehackernews.com/2012/05/17-year-old-teenager-arrested-over.html
- "A teenage boy has been arrested on suspicion of being a member of "TeamPoison", a computer hacking group that has claimed responsibility for 1,400 offences including an attack on the phone system of Scotland Yard's counter-terrorism unit last month. These include attacks on the United Nations, the UK Anti-Terrorist Hotline, MI6 and RIM, as well as politicians including Nicolas Sarkozy and Tony Blair.”
- “The boy, who police suspect used the hacker nickname 'MLT' and was a spokesman for TeamPoison, was interviewed at a local police station on offences under the Computer Misuse Act on Wednesday. The arrest is part of an ongoing investigation by the Police Central e-Crime Unit (PCeU) division of the Metropolitan Police into various hacking gangs who have made headlines in the last year or so.”
- “TeamPoison’s highest-profile attack was mounted against Scotland Yard’s counter-terror hotline last month, has also claimed responsibility Distributed Denial of Service attacks against banks in collaboration with Anonymous, another “hacktivist” group with similar anti-corporate and anti-authority politics.”
- 55,000+ Twitter Accounts Hacked, How To Tell If Yours Was Among Them
- How to Securely Share a Password with Someone Using LastPass
- FBI Wants Backdoors in Facebook, Skype and Instant Messaging
-
Everyone Has Been Hacked. Now What?
-
‘Unknowns’ Hacking Group Hits NASA, Air Force, Harvard and Others in ‘Hacking for Good’ Effort
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Hosts
Guests
- Tom Eston - @agent0x0
- Mobile App/Device Security and Security Justice.
Topics
News Items
- Skype User IP Address Disclosure
- Google knew street cars were slurping wifi (Marius Milner was the engineer, of NetStumbler fame)
- Mozilla is first major tech company to denounce CISPA
- Mac Flashback trojan still making $10,000 a day
- Indictment Returned for Jeremy Hammond in Chicago Anonymous case
Use Our Discount Codes
- Use code SecuraBit_Connect to get $150.00 off of ANY training course. The discount code is good for all SANS courses in all formats.
- FREE exam attempt with corresponding course purchase for SANSFIRE 2012 with code SecuraBit_SFGIAC
- Use code 36449 for 20% off your Syngress order!
Upcoming events
Links
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
|
Please join us as we kick it old school with various news and banter, as well as a special interview with Chris Sullo! Our show notes can be found here. 
|
-RSA events
-Liability Pad
-Book club
-BYOD nitemare
-GPS rulez
-Shady fat man
-Playground fights
-NCCDC
-DerbyCon/Source Boston
-Tooltime
|
|
|
Nominations have been open for some time now but I also understand that you may not read the site, only listen to the podcast. If this is the case, this is especially for you.
|
|
|
|
|
In this huge episode:
We're back!
Retorts
Head in the clouds
RSA love vs. Team Sad Face
Got a dollah
Cyber, cyber, cyber
Juice box
Hookers and blow
SET update
Mimikatz
Source Boston
B-Sides SF
Demerit points
Adventures in insomnia
|
Please join us as we talk about cybercrime, botnets, and the ever changing internet with special guest Brian Krebs! Our show notes are now on our wiki: http://wiki.securabit.com/ShowNotes/EP98 
|
In Episode 97 we announced that we'd be sending some preconfigured BT5 boxes to hackerspaces as well as a virtual machine version of this for people to access our community pentesting lab. Currently, there are 15 virtual machines available to be attacked, and we're setting a current target of 15 to 20 users for this [...] 
|
Please join us as we interview Ron Gula, Co-Founder of Tenable Security! We also discuss various cyber warfare topics including Al Qaeda hacking, SCADA, and our own Pentesting lab offering for the community and for hackerspaces! http://wiki.securabit.com/ShowNotes/EP97 
|
|
|
Join us as we talk about 2011! Please visit our wiki for full show notes! 
|
Greyscaledx rides through again and fixes our shit skype
we sewar about stuff
Why we like anon/lulz/etc
other current news
HAhah... u REALLY think we are gonna have show notes... really!?>?
InfoSec Santa is on to talk naughty
We throw Baseballs...
|
Join the crew as they interview special guest Marisa Fagan of SECore! Please visit our wiki for full show notes! 
|
Join us as we talk some lab shop with Mike Bailey and the rest of the crew! Please visit http://wiki.securabit.com/ShowNotes/EP94 for our show notes! 
|
In this episode we are joined by data recovery and forensics specialist Gareth Davies. Gareth has published papers and given presentations on the subject of data storage manipulation. Our discussion contains items that, I believe, all forensic investigators should be aware of.
|
Please re-download the Steganography file from the original post. The first one was corrupted. It will now export with the proper lowercase key. 
|
Join us as we interview Nick Keuning from GFI about their Sandbox solution! Our show notes are now housed on our wiki. Please visit this link to view them! 
|
This time around we are giving away books! The contest officially starts NOW and will run until 11:59PM on 11/19. We will announce winners promptly after that. Prizes will be awarded to 1st and 2nd place. Everyone else who scores any amount of points will be entitled to a free sticker mailed to them if [...] 
|
On this episode we had special guest Christofer Hoff on to discuss Cloud and Virtualized security. We touched on some pretty amazing points and we hope you'll enjoy this show! Please visit our wiki for full show notes! 
|
Hey folks, This is a wee bit late but we wanted to post the answers to our challenge that we had up before Derbycon. Fortunately for all, there were enough tickets that nobody actually needed ours. We had a great time meeting folks and talking security, as well as meeting up with you, our valued [...] 
|
Please visit our Wiki for full show notes 
|
Join us this Friday 9/30 at the Bluegrass Brewing Company @ 10pm eastern time. Come by and grab a beer, hang out, and let us throw stickers at you! The location is: Bluegrass Brewing Company 2 Theater Sq, Louisville, KY 40202(502) 568-2224 Here are walking directions as well. It's 0.5 miles to walk it, and [...] 
|
Join us as we interview Saviour Emmanuel Ekiko, author of the Ghost Phisher tool. Show notes are now at our wiki: http://wiki.securabit.com/ShowNotes/EP90 
|
Challenge closed. tuts for solutions will be submitted soon. Congrats to our winners who completed all the challenges. Andrew Fastow - 13 points jgor @indiecom - 13 points Thanks to all that participated Look forward to seeing you next month for our #SecurabitChallenge Anyone competing [...] 
|
- Superstar Thoughtleader Chris Eng brings some real Infosec Talent
- All the other stuff doesn't matter =)
Oh yea... Follow @grayscaledx and thank him profusely for remixing our f'd sound. We owe him big for this one.
Now Sponsored by: Listeners who gave us enough $ to buy new gear and sound better than we did on this ep.
Dunno if we can credit him/her/them yet but if we get permission we will.
\m/
|
Hosts Chris Gerling - @secbitchris Chris Mills - @chrisam Andrew Borel - @andrew_secbit Tony Huffman - @myne_us Guests Rafal Los - @Wh1t3Rabbit http://h30499.www3.hp.com/t5/Following-the-White-Rabbit-A/bg-p/sws-119 Topics Vericode vs Oracle Root Certificate Authorities Anonymous Item X Use Our Discount Code Use "Connect_SecuraBit" to get $150.00 off of ANY training course. The discount code is good for all [...] 
|
In this episode Rob Lee has joined me to talk about the Consortium of Digital Forensic Specialists (CDFS).
For more information about CDFS please visit http://www.cdfs.org
Also, if you’re wondering what Rob was talking about towards the end, here’s the video in question: http://www.youtube.com/watch?v=kA565OyOkLM
WARNING!
I can not be held responsible for your own personal well-being if you choose to watch this.
|
Rambling about con's n vegas mayhem
Bye Bye BSides
other stuffz
less content than normal... we were in recovery =) u were too.... admit it.
|
VEGAS!!! BlackHat 2011, BSidesLV, and Defcon 19 schedule reviews!!! See you all at the Cons next week. ConBlackmail.com is COMING! Parties, Booze, and Puke!
|
No show notes this week... sorry ;)
intro- GTFTS- Samuel L. Jackson
Outtro- Overdose: Jamie Foxx
|
Opening song by Dr. Dre & Eminem. TV shows, chat with the White Rabbit about all kinds of shit. Closing song by Emiliana Torrini from the SuckerPunch soundtrack. (ya, ryan did the show notes on this one)
|
Really long episode featuring Dave Marcus
|
Sorry no show notes kiddoes. This is a rush job then back to work, and I wasn't present for recording to take notes.
|
In this episode I have taken a break from hosting and my wife, Alisha has taken over as the first all-female panel takes the stage in a special edition of Forensic 4cast.
Listen to the first ladies of forensics discuss how they got into the field, as well as the challenges and perks of working in the field as a member of the fairer sex.
Sadly I forgot to put something in the episode about the LinkedIn Group. If you are a female forensicator please join the group “Women in Digital Forensics” http://www.linkedin.com/groups?home=&gid=3766181&trk=anet_ug_hm. I joined it and am now an honorary woman. Not sure how I feel about that particular moniker…
*The original file had a small problem that I have now fixed.
|
Welcome to the first of many EL Podcasts to come. We cover a ton of stuff, including some more details on the recent changes. We hope you like the new format as much as we do!
Previously known as EL 1: A New Era. The name apparently confused people
|
This episode I had the pleasure of talking to Brian Karney and Lee Reiber about AD Triage, MPE+, and FTK version 4.
|
In this episode we’re joined by Steve Salinas and Ashley Stockdale from Guidance Software. They’ve taken time out of their busy schedules to talk about the upcoming release of EnCase Forensic Version 7.
|
Ladies and Gentleman, it grieves us to no end to announce that this will be the final episode of Exotic Liability. It's been a blast, and we wish we could continue, but life and work have proven to be to big of an obstacle to over come. We said we'd do this until we not having fun anymore and we've reached that point. Organizing schedules has taken all the fun out of it. We will keep our twitter presence, and www.exoticliability.com will stick around as a place where like minded individuals can get together.
Thank you to all of our listeners for the crazy amount of support you've given us. With much sadness, we say goodbye.
-Exotic Liability
|
Is today’s show we discuss the HBGary v Anonymous issues, the opening of the CFCE to non-law enforcement, the future of digital forensics tools, and the 2011 Forensic 4cast Awards.
|
Pure awesome, Nuff said.
Intro - "Bullet in the Head" by Rage Against the Machine
Outro - "Cop Killer" by Body Count
|
- Mike Tyson
- Crazy Stories
- Lenny Zeltser Joins in
- Uncontrolable Laughter
- Port 79
http://www.kickstarter.com/projects/793929175/spoken-word-music-album-by-paulie-lipman
Intro: "Geek Love" by Paulie Lipman
Outro: "Atlas Quit" by Paulie Lipman
|
-Andrew Gavin Joins in
-OpenDLP
-IDS/FUD stuff
-VAST/VOIP Stuff
-Random News
-No boobs in Australia
Intro: "Big girls need love too" by Blueprint
Outro: "The Spicy McHaggis Jig" by Dropkick Murphys
|
-The Return of stripper talk
-Cons
-Cool talks
-Random News
-Phone Creeper
-Sexting
-Some Voicemail
-And a Slew of other stuff
Intro: "Black Swan" By Thom Yorke
Outro: "Fuck You" By Cee Lo Green
|
-The boys actually talk security
-The Guys from NSS Labs join in
-Exploit Hub
-All kinds of other greatness
Intro: "Virus" By Deltron 3030
Outro: "Truth From Fiction" By Supreme Beings of Leisure
|
-@shoebox joins in
-http://www.openlocksport.com
-Tip of the Day!
-Kinds of other Crazyness
Intro: "Passing By Behind Your Eyes" By Sunday School
Outro: "Rubber Vagina" By Unknown (Maybe Rodney Rude)
|
-Disaster Protocol Joins in for some shit talking
-Tools and News
-Pure Comedy
-BH.BSidesLV.DC talks
-@jsokoly joins in
- @myrcurial calls in
-http://freebyron.com
-EL Scares Marketing (and HR)
Intro: Ligatt Parody by the boys from Disaster Protocol (shitcast.co.uk)
Outro: "60 Revolutions" by Gogol Bordello
|
Sorry no time for Show notes... I'll try to get some up for this episode later.
Intro: "Lies" by Johnny Knows Karate
Outro: "Shrooms" by The Lonely Island
|
-Social Networking
-Bad Articles
-Lameness
-F.U.D.
-Terrible Top 10
-Tons of other stuff
Intro: "Sofa King" by Dangerdoom
Outro: "Prince Charming" by Brother Ali
|
-Rolaf & Andrew from Paterva talk Maltego -Fun with trucks and guns -More Blue Lasers -Tiger Team Rip-off -Crazy dude tries to take out Bin Laden -Drinking & Writing -Eat Da Poo Poo! -And more of the EL you love Intro "Bottom Line" by Swollen Members Outro "Eat Da Poo Poo AutoTune Remix" by BartBaKer (Youtube)
|
-Random News -More Ligatt -Book Troubles -Screw Google, some more. -Firing Squad Intro: "Golden Brown" by The Stranglers Outro: "Tennessee Wedding" by Jim Bianco
|
-Carlos Perez joins in -SANS Pentesting Summit -Pentesters need to learn business -All kinds of Ligatt stuff -@infosecmafia Joins in too -Tons more Intro "Let it off" by Phantogram Outro "Shut the fuck up" by Cake
|
No time for show notes, but Fucking Awesome! Tons of tools and tons of stories!!!!!!!1111one!111!one1
|
-Happy Mothers Day
-our 13 month aniversary
-A whole lot of wrong
-A little bit of security
-A few fun tools
-Second big red button
-A bunch of other crap
Intro: "Mr. Shiny Cadillackness" by Clutch
Outro: "Gatman & Robbin'" by 50 Cent ft. Eminem
|
-Thotcon
-National CCDC
-Source Boston
-Mexico City
-War Stories
-Tons of other stuff!
Intro - "Fuck you" by Lily Allen
Outro - "Fuck song" from Disaster Movie
|
I'm running way short on time, so sorry for the lacking show notes. I promise it's a great one though!
-Confessions of a sec addict
-M$/RSA's NEW!!! findings
-A Ton more
Intro - Shame of Life by The Butthole Surfers
Outro - My Dick by Mickey Avalon
|
-TJX Hacker
-Viper Car Alarms
-319753 Mute
-Voice Mail
-Drunk Dialed by our intern
-Tons and Tons more
Intro/Outro - "Typical" by Mute Math
|
-Kos Interview Part 2
-Eurotrash + Jason Street Join in
-Ton more
Intro - "The Worst Day Since Yesterday" by Flogging Molly
Outro - "DUI #1" by Mac Lethal
|
-Part 1 of 2
-Battery Trojan
-Kos Joins in
-More Goog vs China
-Tons more.
Intro - "Cause = Time" by Broken Social Scene
Outro - Natalie Portman Rap from SNL
|
-More Tech Problems
-Ian Amit joins in
-http://www.securityandinnovation.com/
-Cyberwar Jedi mind trick
-Nerd Thunderdome and BSidesLV 2010
-Botnet Fun
-Legalities
-ExcaliberCon
-A bunch more
Intro: Cyborg Love by Mac Lethal
Outro: Dirty Girl by Felt 2
|
-EL's 50th Episode Double the length
-Joe Grand joins in
-Tons of fun Hardware hacking stuff
-Technical Problems
-Badges, that shit ain't easy
-TV Sucks
-Jhaddix drops in
-CN goes to Jail
-Wet your noodle for the EFF
-Lady Laz3r show in Vegas
-A ton more
Intro: Closer to the Club by NIN vs 50 Cent
Outro: Poker Face Cover by Chris Daughtry
|
-First live stream(ish)!
-Rickrolled Live
-EL Android/iPhone Apps
-Boyscout, It's magic
-nmap String of Doom
-Unexpected Guests
-A ton of security stuff!
-Shmoocon
-Hackcon
Intro/Outro - Put it in Your Mouth by Akinyele
|
-iPad -Only in Vegas
-Tech Crunch
-Joomla
-Laz3r is useless
-Addictomatic.com
-Socialmention.com
-Entitycube.research.microsoft.com
-Yasni.com
Intro - What's the Story Morning Glory by Oasis
Outro - El Chupa Nibre by Dangerdoom
|
-Aluc joins in (@thealuc)
-Useful/Cool phone apps
-Give credit where it's due
-Red Teaming
-Much More
|
-Rafal Los is a Ninja Gangsta -Web Scanners -US getting hacked isn't new -iQuake, app for quake victims -Tons, I do mean tons, more
|
-The Goog vs China
-Haiti -Vegas -CES -Dogs Invade -Porn and plot lines -Upcoming Cons -Tons More
|
-Hezbolla -Epic failures -TSA -The system works -Voicemail -Facebook Apps -A TON more
|
- Brittney Murphy
- Sky Hacking
- Gates calls in
- Security, it's nothing new - Bad Santa
- And more
|
-Delchi starts off the show -Tom Brennan talks OWASP Top10 -And more of the offensive security you love
|
-Cyborg Bruce -Passwords are easy -7 Scam Principles -SE -and more!
|
- China stories galore - Walmart, No questions asked - France takes it again - ELCon?!?! We need your input!
|
Marcus J. Carey joins us DojoSec/DojoCon Mitnick bashing Tigerteam is bullshit Giving earns respect A new meaning to ATM
|
- Jayson E. Street - Dissectingthehack.com - The return of Skype - Dale and Delchi call in - Tech problems make Laz3r cry - Infosec Camps - Sharing Info - It's a community - Strippers to hackers program
|
-Tool Runners -Information Gathering -Social Security Engineers -Mistreating Strippers
|
Episode 799 - Stuxnet at Chevron, MW3 vulns, Google Info Requests, CSA 2012 reprise, and Blizzard sued
|
