Security Wire Weekly

Metasploit creator H.D. Moore

SearchSecurity.com Staff — Wed, 18 Nov 2009 16:38:39 +0000

Metasploit creator H.D. Moore talks about the future of the attack platform. Also Cisco’s Dave Dalvia on security and the Smart Grid.

Hot Type: Surreptitious Software

SearchSecurity.com Staff — Wed, 18 Nov 2009 13:58:11 +0000

In this month’s “Hot Type” podcast, authors Christian Collberg and Jasvir Nagra talk about why their book Surreptitious Software is particularly important for security professionals who may not have a strong interest in code development.

And don’t forget to read an excerpt from Collberg and Nagra’s book: Surreptitious Software.

Security certifications pay remains strong

SearchSecurity.com Staff — Wed, 11 Nov 2009 20:36:42 +0000

David Foote of Foote Partners on his latest skill and certification research. Security skills remain strong despite the bad economy.

Squad: Tokenization, Phishing and the Feds

SearchSecurity.com Staff — Sat, 31 Oct 2009 12:29:08 +0000

SearchSecurity editors discuss the importance of Microsoft’s record breaking number of October vulnerabilities, the federal government’s plan to hire 1,000 cybersecurity pros, the FBI’s crackdown on a massive phishing ring and the latest payment industry tokenization plans.

Silon Trojan strikes Internet Explorer users

SearchSecurity.com Staff — Wed, 28 Oct 2009 19:10:54 +0000

Amit Klein, CTO of Trusteer Inc. on a new two-headed Trojan striking Inernet Explorer users to steal login credentials.

Heartland CIO on PCI, E3 project

SearchSecurity.com Staff — Thu, 22 Oct 2009 14:08:09 +0000

Heartland Payment Systems CIO Steve Elefant talks about the processor’s new E3 security processes, end-to-end encryption, deployment and adoption issues.

Nuke and pave to eradicate botnets

SearchSecurity.com Staff — Wed, 14 Oct 2009 20:55:00 +0000

Security researcher Gunter Ollmann of Damballa discusses the scourge of dangerous enterprise botnets and why the only method to eradicate them is by a method he calls “nuke and pave.”

Exploring encryption, DLP

SearchSecurity.com Staff — Wed, 07 Oct 2009 20:51:18 +0000

Richard Jacobs, chief technology officer of Sophos on encryption for compliance, DLP and the case for involving end users in security decisions.

Threat Monitor: An enterprise strategy for Web application security threats

SearchSecurity.com Staff — Thu, 01 Oct 2009 19:08:35 +0000

People Security founder Hugh Thompson reviews the tools and tactics, from routine assessments to Web application firewalls, that are essential to an application security strategy,

Digital forensics, breach incident response

SearchSecurity.com Staff — Thu, 24 Sep 2009 13:23:50 +0000

Jim Jaeger, a retired Air Force brigadier general who heads the digital forensics operation at defense industry giant General Dynamics, explains best practices around data breach response and digital forensics.