Dec 232009
 

 

Link to MP3

Merry Christmas to all our listeners! It’s that time of the year again where we sit down and make a fun podcast and recap the year and look forward to next year. Heck there was even a Christmas Miracle on this episode… it was actually recorded on time !!!! So sit back with your eggnog next to the Yule log fire under the stockings and enjoy!

Show Notes:

InfoSec News Update –

Discussion Topic –

2009 Year in Review and Looking Forward Predictions to 2010 –

Link 1 / Link 2 / Link 3

Music Notes –

Sep 032009
 

 

Link to MP3

Hello all you happy people!  Episode 24 is here.  Michael was out sick, so Jim and Dan put it together.  Jim is adamant about sticking to a schedule.  Dang slave driver!

Show Notes:

InfoSec News Update –

  • Credit Unions Under Attack – Link 1 / Link 2
  • Massive SQL Injection Attacks – Link 1 / Link2
  • Cisco Wireless LANS get “Skyjacked” – Link 1 / Link 2
  • Flaw in Sear’s Website Left Database Open To Attack – Link Here
  • WPA/TKIP Can be Broken in 1 Minute – Link 1 / Link 2
  • 100 Dirtiest Web Sites of Summer 2009 – Link Here
  • No Thumbprint, No Check-Cashing, Bank Told Armless Man – Link Here
  • PCI Council Releases recommendation for Preventing Card Skimming – Link 1 / Link 2
  • Federal Certification Program for “Cyber Professionals” / Bill would give President emergency control of the Internet – Link Here

Discussion Topic – Web App Scanners And Web App Firewalls According to Gartner
Link 1 / Link 2

Consultant’s Corner – Updating Tools and Techniques

Music Notes:

Jul 092009
 

 

Link to MP3

Episode 21 is up and going. Looks like Jim and I are back on a regular cycle again. Hopefully it stays that way! Here are the show notes:

InfoSec News Update –

  • Goldman Sachs looses its secret sauce online – Link Here
  • Fed gets and F on Physical Security – Link Here
  • North Korea Blamed in Cyber Attacks over July 4th – Link Here
  • Juniper Pulls ATM hacking preso from BH – Link Here
  • Month of Twitter Bugs – Link Here
  • 10 Things Your Auditor Isn’t Telling Your – Link Here
  • New head of MI6 wears Speedos on Facebook – Link Here
  • Algorithm for Predicting and guessing SSNs – Link Here
  • Iphone SMS Vulnerability – Link Here
  • Study – Oracle Users struggle with patch management – Link Here

Discussion Topic – Cloud Computing – is it a security nightmare waiting to happen? – Link Here

Consultants Corner – Developing an offering before going public!

Music Notes:

Jun 192009
 

 

Link to MP3

The long-awaited episode 20 is finally here. Sorry for the crazy long wait!

InfoSec News Update –

  • Data Breach Suit Targets Auditor – Link Here
  • Exobox data leak detection coming out – Link Here
  • "CloudBurst" allows attackers to break VM guest OS and attack Host – Link Here
  • Obama creates the office of Cyber Czar – Link Here
  • Twitter and Iran – Link Here
  • IOSCAT talk from SANS – Link Here
  • Tmobile Breached….Maybe? – Link 1 / Link 2
  • Wireless Keyboard sniffing just got alot easier – Link Here
  • LC6 is Officially Released – Link Here
  • Trojan Attack on ATMs – Link Here
  • Patch Your Blackberry Servers – Link Here

Discussion Topic -Whats the difference between an Auditor and a Assessor?

Consultant’s Corner – To Scope or Not to Scope

Music Notes:

Jan 292009
 

 

Link to MP3

Episode 14 is here. First off, let me thank everyone that is listening to Jim and me spout off about everything. Fourteen shows does not seem like a big number, but it involves a lot of work getting this going (especially on Jim’s part – thanks Jim) and keeping it going, and Jim and I appreciate everyone sticking in there with us.

Second, we have made some changes with my setup, so there might be a sound difference and some issues with this episode. Forgive us as we get some new kinks worked out.

Third, this episode includes an interview with Mike Rothman from eIQnetworks. You might know him better as that guy from Security Incite that has a yankee accent and tells everyone what he is thinking. Either way, Mike is a great guy and a great friend, and I was honored to interview him. I think you will enjoy that portion of the show.

And lastly, there is a programming note. The geek toys segment that is brought to you by Jim every show is now going to be made more of a quarterly thing. The reason is because Jim has to find something to talk about every time, and it is getting a little more difficult to find something for every show.

Here’s the breakdown of the show.

Show Notes:

InfoSec News Update: there’s been a lot happening the last two weeks

DiscussionNew president declares his plan for US Cyber Security (more cynicism from Michael)

Vendor Interview – Michael interviews Mike Rothman from eIQnetworks

Consultants Corner –Combining compliance initiatives and what that means for security practices

Music Notes:

Jan 192009
 

 

Link to MP3

An Information Security Place Podcast Lucky Episode 13 is here! Sorry for the delay between podcasts. Jim and I usually try to maintain the every-2-weeks schedule, but since we had Accuvant’s annual meeting coming up, we decided to push it out so we could do it there (“there” was Sedona, AZ – a beautiful place). This is the first time Jim and I have been in the same room recording the podcast, which was different (Jim kinda smells a bit). We had fun with it.

In addition, I wanted to take advantage of having some vendors close by (we have a vendor fair every year) for some interviews. I only got one, but it was a good one with Bluecoat. Thanks to Greg Buchan and Thomas Lee for spending some time with me.

So without further ado, here are the show notes:

Show Notes:

InfoSec News Update:

Discussion – Security Predictions for 2009 from Computer World

Geek Toys – MiniStack v3 Review

Consultants Corner – Choosing the right travel plans for yourself

Vendor Interview – Michael interviews Bluecoat

Music Notes:

* Intro/Outro – Digital Breaks – “Therapy”
* Segway1 – SatelliteState – “ClockWorks”
* Segway2 – Naked Gun – “A.D.D.”

Bitnami