Web application security expert Ryan Barnett explains why Web servers represent such a fertile ground for hackers, whether developers will begin to create more secure code and the benefits of a technique called virtual patching, which tricks hackers into thinking a Web application has been patched. Barnett is director of security at Breach Security.
In this edition of the Security Newsmakers podcast, Sam Curry, vice president of RSA’s Identity and Access Assurance Group, talks about RSA’s annual wireless security survey of New York, London and Paris. The survey revealed rapidly growing wireless LAN deployment in these cities, and the state of the security in place to protect those deployments.
Always innovating, attackers have found ways to mask their malware by placing the code into PDFs and Flash files. The malware often appears to be legitimate ads for products, and it can be particularly hard to analyze. John Strand explains why and demonstrates how to be ready for Flash-based malicious code.
Senior security analyst Paul Roberts of The 451 Group joins Dennis Fisher to discuss Symantec CEO John Thompson’s retirement, his legacy and whether he’ll end up in the Obama administration.
Former FBI agent Howard Glavin of IBM’s ISS X-Force security team talks about cybersecurity in the retail industry. Also, Symantec CEO John Thompson retires.
In this new Security on the Street podcast with SearchFinancialSecurity.com Site Editor Sarah Hurley, Chris McClean, an analyst at Forrester Research, explores the state of risk management within the financial industry and what companies can do to protect themselves from the threat of data leakage. McClean talks about about the unique problems in the financial industry, the regulatory issues and how risk management has been redefined. In addition McClean talks about risk management trends for 2009 and gives his thoughts about the intersection of technology and risk management.
VoIP expert Patrick Park, author of “Voice over IP Security,” explains the latest VoIP threats and ways companies can protect their systems from eavesdropping and DDoS attacks. Also a review of Microsoft’s latest round of patches with Paul Henry, security and forensics analyst at patching vendor Lumension.
In its semiannual Security Intelligence Report, Microsoft says it has seen a significant drop in vulnerabilities discovered in the operating system. Jeff Williams, principal architect at Microsoft’s Malware Protection Center, explains the results of the report.
Security expert Avi Rubin of Johns Hopkins University, talks with Dennis Fisher about the security of electronic voting machines and whether he expects any major problems on election day.
An expert on cybercrime and online scams, Derek Manky, security researcher at Fortinet, joins Dennis Fisher for a discussion of the threats from online organized crime and social networking sites and whether we’ve seen the last of the big worms.