Monthly Archives: April 2011

Security Weekly #241 – April 28th 2011

Andrew Case discusses de-anonymizing Live CDs using analysis of the memory

 

Then better than last week we have security news from the week only half drunk... Larry is sick at home but at least he has skype.

 

Episode 241 Show Notes

Episode 241 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,John Strand,Larry Pesce

Audio Feeds:

Your Network Security Is As Important As Locking Your Front Door


Security throughout a company’s network, websites and business dealings has become even more critical than even just a few years ago; with different hackers and criminals trying to break through one’s network security at any given time, both your employees and your customers expect that their secure information is to be the highest priority.  If an attack or loss of data occurs, it can seriously damage a company’s reputation in the public’s eye, as well as cause employees to question whether their private information is really safe at their job.
                Computer network security is an investment that all businesses should make, especially in light of the fact that cybercrime has continued to grow exponentially as a threat to all businesses; this is not even limited to just your business located in the United States, but also worldwide.  This type of criminal activity is unlike anything the world has seen before, and many businesses are now recognizing the reality of needing a secure defense against such threats.  Smaller businesses can fall prey to these attempts as well, which is why it is critical to invest in a security assessment of one’s current procedures, methods and defenses.
                Having a professional organization evaluate your resources for any security leaks or issues can be beneficial for both your short and long-term interests.  A threat analysis is a great way to test your current defenses to discover what kind of data a hacker can currently breach, if any.  A penetration test also allows one to assess how a hacker can find ways into your current organization; with a focus not just on a success or failure rating, this test explores all potential outcomes and avenues that a criminal might take.  Altogether, investing in this type of technology is a great idea for your business, whether you are a start-up company or a business with twenty years of experience.   

Security Weekly – Security Weekly – Episode 239 part 2 – April 14th 2011

Adrian "IronGeek" Crenshaw talks about his violation and penetration with his USB stick.

Then Security news... drunken style... cause there really is no other way.

Episode 239 Show Notes

Episode 239 part 2 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,John Strand,Larry Pesce

Audio Feeds:

Security Weekly – Security Weekly – Episode 239 part 1 – April 7th 2011

Here is what you have been waiting all week for episode 239 part 1. Dave Kennedy and Adrian 'IRON GEEK' Crenshaw, PureHate and SecMania all join us to tell us about derby con and why you all should go. And we have an actual girl with us live in studio. A very special one at that.. so you should download this episode and find out who.

Episode 239 Show Notes

Episode 239 part 1 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,John Strand,Larry Pesce

Audio Feeds:

SSL And The Future Of Authenticity

The Background

In the early 90’s, at the dawn of the World Wide Web, some engineers at Netscape developed a protocol for making secure HTTP requests, and what they came up with was called SSL. Given the relatively scarce body of knowledge concerning secure protocols at the time, as well the intense pressure everyone at Netscape was working under, their efforts can only be seen as incredibly heroic. It’s amazing that SSL has endured for as long as it has, in contrast to a number of other protocols from the same vintage. We’ve definitely learned a lot since then, though, but the thing about protocols and APIs is that there’s very little going back.

Security Weekly – Security Weekly – Episode 238 – April 7th 2011

Here is our fabulous 238th episode.

Random dude (Chris Palmer) from the EFF tells us its time to fix SSL its done broken. Ryan Barnett drops us into a XSS street fight. And of course drunken idiots discussing news stories from the week. Our best advice in stories is to burry it deep.

Episode 238 Show Notes

Episode 238 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,John Strand,Larry Pesce

Audio Feeds:

Security Weekly – Security Weekly – Episode 237 Part 1 – March 31st 2011

Larry called shenanigans on the Caribou project so we bring them on to talk about it, then Larry decides to flee to Canada to look for real Caribou.

Episode 237 Show Notes

Episode 237 part 1 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,John Strand,Larry Pesce

Audio Feeds: