Security Wire Weekly

June 21, 2011  9:12 PM

Citigroup breach: It’s about Web security

Posted by: Jessica Scarpati
Secure coding, Security Wire Weekly, web application security

Jeremiah Grossman of WhiteHat Security explains that the Citigroup breach was the result of a simple business logic flaw which should have been caught in the code review process.

June 15, 2011  1:06 PM

How hacker chatter can bolster defenses

Posted by: Jessica Scarpati
cybercriminals, malware, Security Wire Weekly

Rob Rachwald, director of security strategy at Imperva discusses the firm’s latest research into the cybercriminal underground and how companies can use an understanding of hacker chatter to allocate resources in defending against attacks.

June 8, 2011  7:00 PM

IPv6 security challenges and concerns

Posted by: Jessica Scarpati
IPv6, Security Wire Weekly

Andy Champagne, an engineer at Akamai Technologies discusses some of the security issues and threats posed by the transition to IPv6 and explains why enterprises need to begin planning now.

May 13, 2011  8:10 PM

Data breaches, spear phishing and application defense

Posted by: Jessica Scarpati
data breach, identity theft, Security Wire Weekly

Bit9 CTO Harry Sverdlove, the former principal research scientist at McAfee Inc., talks about the latest spate of data breaches and some of the lessons that can be gleaned from them. Sverdlove also discusses the recent Microsoft Security Intelligence Report.

May 6, 2011  12:49 PM

Squad: Cloud failures, privacy issues and data breach woes

Posted by: Jessica Scarpati
cloud computing, data breach, Security Squad, Verizon DBIR

Eric Holmquist of Holmquist Advisory joins the SearchSecurity editorial team to talk about the Verizon DBIR, the recent Apple privacy debacle and the Amazon cloud services failure.

April 21, 2011  4:48 PM

The Microsoft SDL

Posted by: Jessica Scarpati
Secure coding, secure software development, Security Wire Weekly

David Ladd of Microsoft’s software security engineering team talks about the SDL and how it can be applied to improve the security of your software development processes. This podcast is part of our special “Eye On Secure Software Development” package which examines secure coding trends and strategies.

April 21, 2011  1:23 PM

Wysopal on software security and threat modeling

Posted by: Jessica Scarpati
Secure coding, secure software development, Security Wire Weekly

Chris Wysopal, co-founder and CTO of Veracode talks about the evolution of secure software development and the road ahead. Wysopal says threat modeling is the next step. Editor’s note: This podcast is part of our special series, “Eye On Secure Software Development” which examines secure coding in the month of April.

April 19, 2011  3:04 PM

The 2011 Verizon Data Breach Report

Posted by: Jessica Scarpati
cybersecurity 2011, data security breach, Security Wire Weekly

The SearchSecurity Editorial team talks to Bryan Sartin, director of investigative response at Verizon about the firm’s 2011 Data Breach Investigations Report. Attackers are targeting smaller businesses. The value of account credentials and intellectual property on the black market is rising.

April 13, 2011  5:31 PM

Security Squad the data breach edition

Posted by: Jessica Scarpati
data breach, Security Squad

The editorial team discusses the latest string of data breaches. RSA continues to investigate its SecurID breach, Epsilon releases few details about its email breach and the Briar Group agrees to pay Massachusetts $110,000.

Show notes:

(Music credit: “Take Time for the Tub” by by Derek K. Miller)

April 6, 2011  1:00 PM

Mobile payment applications and PCI DSS

Posted by: Jessica Scarpati
mobile device security, mobile security, PCI DSS, PCI SSC, Security Wire Weekly

Markiyan Malko, compliance manager at payment processor Merchant Warehouse dissects the emerging market for mobile payment applications. The Payment Card Industry Security Standards Council recently withdrew the certification for some mobile payment applications and has a new task force investigating mobile payment technologies.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: