Network Security Podcast

Rich and I were joined by a special guest tonight, Bill Brenner, Senior Editor at CSO Online.  We wanted to talk to Bill because there was an interesting story about the BBC buying a botnet and we wanted his take on this, as well as our other stories.  Bill's a journalist who's been in the security space for about five years and has a slightly different perspective than that of someone who's down at the ground level doing security.  Which is also slightly different than the perspective Rich and I have.  We also wanted to bring Bill on because he has a new podcast of his own.

This ended up being one of the longer podcasts we've done in a while, but I think it was worth it. 

Network Security Podcast, Episode 142, March 17, 2009
Time:  43:24

Show Notes:

• EFF:  Google begins behavioral targeting ad program
• Bribery case creates possible IT security nightmare in DC
• Passwords of 8,000 Comcast customers explosed
• New DNS trojan taints entire LAN from a single box
• BBC Click paid cybercrooks to buy botnet
• CSO Podcasts
  

It seems that not even my new adventures in parenthood can keep me away from the show. After a much-appreciated 2 week break, it's good to be back.

This week Martin and I roll through another series of articles covering the week's security events, after a small divergence to talk about my new daughter (man, is it weird to say that). We start by discussing the resignation of cybersecurity chief Rod Beckstrom over concerns that the NSA is taking over the show. No folks, the NSA isn't evil, and I don't think they have a single black helicopter, but it's probably too orthagonal a mission considering their current mandate. We also discuss the effectiveness of data breach laws, advances in botnets, and the earliest signs of some accountability in PCI. Martin closes the show with a close-call and micro-scare involving his parents and malware.

Note:  The proper name for the malware I mention at the end of the podcast is Spyware Remover 2009.  (Martin)

Network Security Podcast, episode 141, March 10, 2009
Time: 38:21

Show Notes:

• Rod Beckstrom resigns over concerns the NSA is power hungry for cybersecurity.


• NSA chief bids to take a larger role in cybersecurity. Huh, I guess even paranoids have GS ratings.


• Do breach disclosure laws work? Um... yes. Next question.


• Rich (me) releases a new whitepaper on web application security. Shameless self promotion ensues.


• Conficker gets more aggresive in defending itself.


• PCI Council sends a couple QSAs to rehab.


• The bootable antivirus CD Martin used to scan his parent's computer.

• Tonight's Music:  Some Strange Feeling by Davis Coen
  

Rich luckily couldn't make the show tonight.  I say luckily because that means he has a brand new baby girl to bring home and he'd rather spend time with his wife and new daughter than us.  Go figure.  I found someone to fill in for Rich this week however, Joel Esler, Sourcefire security consultant, fellow blogger and handler at the SANS Internet Storm Center.  Joel is the guy you want to talk to if you have any questions about Snort and Sourcefire.  He is also someone who's on the front lines of dealing with malware, something that's highlighted by our conversation about the recent Acrobat 0-day.

I'm glad Joel was able to come on tonight with relatively short notice and maybe I'll return the favor some day and be on the Internet Storm Center podcast.  I only hope I'll be able to contribute something intelligent when the time comes.

Network Security Podcast, Episode 140, March 3, 2009
Time:  37:58 

Show Notes:

• Adobe Acrobat pdf 0-day exploit, No JavaScript needed!
• Skype, is it right for you? - Well written posts never get old
• Blueprints of Obama's Marine One helicopter leaked on P2P 
• The Cowtown Computer Congress opens this week!
• I'll be podcasting and speaking at the 21st Annual FIRST Conference in Kyoto, Japan this year!
• Tonight's music:  Gerry Joe Weise with Blueswalker