iTunes

1

Episode 80 - Winners and Losers

Episode 80 – Winners and Losers Tonight, Martin, Steve, and Joseph announce the first winner of the Southern Fried Security Elevator Pitch contest: Evan Keiser! Congrats! We still have 3 BSidesLasVegas tickets to give out, so make sure you send in your entries. We also discussed a few stories tonight. First, we talked about Adobe, and their recent dealings with patching their flagship CS5 product: http://www.securityweek.com/adobe-changes-tune-forcing-paid-upgrade-fix-security-flaw Then, we talked about the newly proposed .secure TLD, and some of those ramifications: http://www.wired.com/threatlevel/2012/05/dot-secure/ And lastly, we talk about a fantastic article about how to identify the real threats to your organization from DarkReading: http://www.darkreading.com/threat-intelligence/167901121/security/security-management/240000308/4-ways-to-identify-the-real-threats-to-your-organization.html As always, you can find the podcast here or on iTunes: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter. And don’t forget to submit your entries to sfspodcastcontest@gmail.com

14-5-12

Gratis

Bekijk in iTunes

2

Episode 78 - Front Porch w/@joshcorman & @hrbrmstr

Fresh from SOURCE Boston Josh, Bob, and Martin pick up a discussion that started at the conference... We hope you enjoy!

9-5-12

Gratis

Bekijk in iTunes

3

Episode 77 - "Red Team, Red Pill. Blue Team, Blue Pill."

Martin and Yvette take a quick look at some news from this week, review SOURCE Boston (awesome con, by the way), and give major props to BSides Chicago... The Stories: VMWare Source Code Doxed...but don't worry. http://www.cio.com/article/705108/VMware_Source_Code_Stolen_Impact_Unclear?source=CIONLE_nlt_infosec_2012-04-27 Who's protecting your critical infrastructure? Why Neo and Trinity are, dude! http://www.newscientist.com/article/dn21756-bullet-time-to-stop-cyber-attacks-on-power-grids.html Review of an awesome talk given at SOURCE Boston about making Blue Teams better... http://www.darkreading.com/advanced-threats/167901091/security/vulnerabilities/232900905/security-teams-need-better-intel-more-offense.html The Shout Outs: SOURCE Boston - you should go. Really. It's awesome. http://www.sourceconference.com/boston/ BSides Chicago....ya done good, folks. http://h30499.www3.hp.com/t5/Following-the-White-Rabbit/Missing-Opportunities-Making-things-worse-by-asking-all-the/bc-p/5640879#M932 http://securitymoey.com/bsideschicago-2012-career-panel/ http://www.jemurai.com/2012/04/bsides-chicago-2012/ Remember to send your contest entries to SFSPodcastContest@gmail.com!

1-5-12

Gratis

Bekijk in iTunes

4

Episode 76 - Andy Got Back feat:@Myrcurial

Andy Willingham makes his triumphant return to the Southern Fried Security Podcast after his sabbatical. We're also joined by friend-of-the-podcast Jamie Arlen AKA @myrcurial to talk about these stories... Mac Malware: Sign of the End Times? http://threatpost.com/en_us/blogs/new-mac-malware-sabpub-used-targeted-attacks-041612 The Chinese done did the Cyber-APT! http://www.thetechherald.com/articles/China-blamed-for-RSA-attack-during-Armed-Services-hearing/16455/ Monitoring, without responding, is simply Log Aggregation. http://www.darkreading.com/security-monitoring/167901086/security/security-management/232900312/is-monitoring-the-new-must-have-of-security.html As mentioned you can win one or more BSides-Las Vegas passes by answering, in 200 words or less, what you would say to your CEO if asked "What does your department do and what should we invest in to make things better?" Send your entry to sfspodcastcontest@gmail.com!

16-4-12

Gratis

Bekijk in iTunes

5

Episode 75 - Global Payments, Oy Vey!

This evening, the gang is all here! Martin, Joseph, Steve, and Yvette all jump on to talk about some new and exciting breach type stories. First, we talked about our first credit card payment processor breach since Heartland, Global Payment Systems. http://krebsonsecurity.com/2012/04/global-payments-1-5mm-cards-exported/ http://www.darkreading.com/security/privacy/232800063/global-payment-systems-compromised-in-massive-breach.html And if we're talking breaches, we had to talk about this year's Verizon DBIR: http://www.verizonbusiness.com/resources/reports/rp_data-breach-investigations-report-2012_en_xg.pdf As always, you can find the podcast here or on iTunes: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

2-4-12

Gratis

Bekijk in iTunes

6

Episode 74 - Now With Guest Host

Martin and Steve are joined by Michelle Klinger to talk about stories as well as the talk Martin and she are giving at SOURCE Boston... The Stories... An Anonymous OS... http://www.thetechherald.com/articles/Anonymous-announces-a-new-somewhat-official-OS/16427/ Microsoft exploit code gets released...and could go after millions of machines http://www.informationweek.com/news/security/app-security/232602800 http://threatpost.com/en_us/blogs/researcher-says-5-million-machines-exposing-rdp-service-online-031912 The FBI can't unlock an Android phone....Oh, dear. http://www.wired.com/threatlevel/2012/03/fbi-android-phone-lock/ As always you can follow the podcast twitter feed at @SFSPodcast...

23-3-12

Gratis

Bekijk in iTunes

7

Episode 73 - Song of the Sabu

Tonight, it's just Martin and Joseph, and they're hitting some of the breaking news of the evening. First, they talk about the Security Bloggers Meetup from RSA, and props to all the winners and nominees: http://www.ashimmy.com/2012/03/social-security-blogger-award-winners.html Then, we get in to the real meat of the show tonight: Sabu and the FBI arrests: http://www.fbi.gov/newyork/press-releases/2012/six-hackers-in-the-united-states-and-abroad-charged-for-crimes-affecting-over-one-million-victims http://erratasec.blogspot.com/2012/03/notes-on-sabu-arrest.html To close out, we brought up some fun news for this summer: BSidesLasVegas2012 is offering mentorship for those who want to break in to the security speaking "circuit". Check that out here: http://www.securitybsides.com/w/page/51614272/BSidesLV%202012 As always, you can find the podcast here or on iTunes: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

6-3-12

Gratis

Bekijk in iTunes

8

Episode 72 - Doing It Right, Doing It Wrong

Tonight, we announce ourselves a new member: Yvette Johnson! (@jetsetyvette on twitter) She's going to bring a softer side to the podcast. So of course, we picked us two stories on opposite ends of the spectrum to get her started. First, we had us a story of folks doing it right: Liquidmatrix. Read this entire article. Seriously. Now do it again. A fantastic article, we had nothing but good things to say about it. http://www.liquidmatrix.org/blog/2012/02/21/we-are-losing/ On the very opposite end of the spectrum, an article from Forbes. A textbook example of FUD marketing. (For prior reading, check out this article for a little background: http://www.loglogic.com/blog/what-does-s-stand ) http://www.forbes.com/sites/petercohan/2012/02/17/loglogic-helps-ceos-sleep-at-night/ As always, you can find the podcast here or on iTunes: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

21-2-12

Gratis

Bekijk in iTunes

9

Episode 71 - They Did What???

Tonight it's just Martin and Joseph, so we decided to hit some of the hard hitting topics of the last week: First, we talk about a fantastic article from Dark Reading about "Do you need a Security Operations Center": http://www.darkreading.com/security-monitoring/167901086/security/perimeter-security/232500661/do-you-need-a-security-operations-center.html Then, we get warmed up for our rants of the evening with Steve's article about the VeriSign disclosures, or lack thereof: http://www.thetechherald.com/articles/VeriSign-left-executives-and-the-public-in-the-dark-about-breaches/16168/ And finally, we get to a nigh-impenetrable blog post from Trustwave, talking about why they issued a Certificate Authority to a private organization: http://blog.spiderlabs.com/2012/02/clarifying-the-trustwave-ca-policy-update.html We wrap up with a nice wrap-up of Shmoocon from Martin, and announcements about SOURCE Conference. As always, you can find the podcast here:¬†http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at¬†@SFSPodcast¬†on twitter.

6-2-12

Gratis

Bekijk in iTunes

10

Episode 70 - Interview with Nick Selby

Nick Selby, of the Police Led Intelligence blog, takes some time from our future while he's in Singapore to talk with Martin about just converged security, incident response, APT (APT!!??), and who won the Super Bowl.

3-2-12

Gratis

Bekijk in iTunes

11

Episode 69 - Offensive Security Redux

Tonight Martin, Joseph, and Steve touch on some fun topics tonight, revisiting some of our conversations from about this time last year in Episode 43. Without further ado - our stories for the evening: It's the breaches of the week! http://www.dreamhoststatus.com/2012/01/20/changing-ftpshell-passwords-due-to-security-issue/ http://www.thetechherald.com/articles/24-million-customer-accounts-exposed-in-Zappos-hack/16025/ And for the second half of our podcast, we discussed a return to Offensive Security, thanks to this article by George Hulme: http://www.csoonline.com/article/698237/enough-defense-is-it-time-for-an-it-security-offensive- And for your bonus image for the day, we may have dug up an image of Alex Hutton during his college days: I'm not saying this is Alex, but it's probably Alex As always, you can find the podcast here: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

23-1-12

Gratis

Bekijk in iTunes

12

Episode 68 - Talking Risk with @alexhutton

Martin gets a super opportunity to talk with Alex Hutton (Yes, *THE* Alex Hutton) about what it takes to work towards implementing a risk based information security program.

19-1-12

Gratis

Bekijk in iTunes

13

Episode 67 - Hashes, Hackers, and STRATFOR - Oh My!

Martin, Steve, and Joseph gather to discuss the recent breach of STRATFOR passwords and the overall value of complex passwords in the age of easy to obtain high quality cracking tools.

9-1-12

Gratis

Bekijk in iTunes

14

The Southern Fried Network Security Christmas Special!

Martin, Martin, and Rich close out 2011 with huge thank you's to our listeners and with some exciting things coming up in 2012. Thanks so much to all of you who help make this podcast so much fun!

20-12-11

Gratis

Bekijk in iTunes

15

Episode 66 - The Year End Spectacular!

The guys are all together to talk about the Upbeat and Downbeat infosec stories of 2011 as well as provide prognostications for what is to come in 2012. Oh - and we create some instant memes featuring Wilfred Brimley and the crazy guy from Ancient Aliens. See www.southernfriedsecurity.com for full show notes and links!

5-12-11

Gratis

Bekijk in iTunes

16

Episode 65 - InfoSec, Risk Analysis, and Fusion Cuisine

Not the normal episode... This time we feature a great interview with Bob Rudis (@hrbrmstr) where we discuss information security and risk analysis....oh, and why French-Vietnamese fusion cuisine might be a good business investment..

7-11-11

Gratis

Bekijk in iTunes

17

Episode 64 - When The Cat Is Away...

Andy, Steve, and Joseph enjoy a week of recording with Martin around...but that'll come back to bite'em.

1-11-11

Gratis

Bekijk in iTunes

18

Episode 63 - We Welcome Our Alien Overlords

Episode 63 - We Welcome Our Alien Overlords Well, it was too good to be true, we didn't have the whole crew together, but Martin, Andy, and Joseph hit a couple of topics tonight anyway: First was the continuing story of the virus that has hit the U.S. drone fleet. We also posit the theory that the virus was put there by aliens. Just saying. http://arstechnica.com/business/news/2011/10/exclusive-computer-virus-hits-drone-fleet.ars Then, two articles that we kind of rolled together, discussing first the role of compliance in a company's outside contractors: http://www.darkreading.com/compliance/167901112/security/news/231900432/compliance-outside-corporate-walls.html Then we discussed the article from George Hulme and Eric Cowperthwaite talking about budget and the role of the CSO. http://www.csoonline.com/article/691048/hey-csos-suck-it-up-and-accept-budget-cuts And don't forget, BSidesDFW and BSidesATL are coming up quick! If you're in the area of either, don't forget to sign up!

10-10-11

Gratis

Bekijk in iTunes

19

Episode 62 - Leaders & Experts

Episode 62 - Leaders & Experts This week, for two weeks in a row, the whole gang is back. We hit two articles that provoked a lot of thought amongst us, so without further ado: Security 101: Security in 140 Characters or Less http://isc.sans.edu/diary.html?storyid=11725&rss Are you an IT security leader - really? http://www.networkworld.com/news/2011/100311-are-you-an-it-security-251503.htm Join us next week, as we continue to put right what once went wrong, and hope each time that our next leap will be the leap home.

3-10-11

Gratis

Bekijk in iTunes

20

Episode 61 - Take Three

All four of the boys are together after an unplanned hiatus where Andy was on vacation, Steve went on Covert Ops to Romania, Joseph had to get a restraining order for those pesky girls, and Martin had to deal with the magic smoke leaving most of his podcasting gear. The boys talk about whether SIEM is dead or not (hint: it doesn't want to get on the cart!) and about DigiNotar. See y'all next episode!

27-9-11

Gratis

Bekijk in iTunes

21

Episode 60 - Signal to Noise

This evening, it was just Martin and Joseph covering some of the big news of the past week: Diginotar and Sony. Signal to Noise Diginotar, a Certificate Authority from Holland was breached over this past week, and the fallout just seems to keep growing: http://www.thetechherald.com/article.php/201136/7580/DigiNotar-security-incident-goes-from-bad-to-worse?utm_source=twitterfeed&utm_medium=twitter http://www.f-secure.com/weblog/archives/00002231.html Back in the spotlight again is Sony, but for good (we hope) reasons this time, as they've announced their new CISO: http://www.1up.com/news/sony-hires-dhs-official-chief-information-security-officer Also, as we said on the podcast, for people with a high signal to noise ratio on Twitter, try starting with these folks. @CSOonline @mikkohypponen @uscert_gov @HDMoore @rwestervelt @WeldPond @riskybusiness

6-9-11

Gratis

Bekijk in iTunes

22

Episode 59 - We ain't afraid of no monsters! (Feat: Josh Corman)

The full crew is here tonight as we discuss a little news and have an interesting talk with Josh Corman about his recent talk at DefCon. Full show notes can be found at http://www.southernfriedsecurity.com.

29-8-11

Gratis

Bekijk in iTunes

23

Episode 58 - "Things Just Want To Be Free" w/Andy Ellis Interview

Martin, Andy, and the Web Lackey get together to talk briefly about BlackHat/DefCon/BsidesLV and the "big news" put out by Mcafee on "Shady RAT". We also share a super interview done with Andy Ellis (@csoandy) on building teams and the hiring process.

9-8-11

Gratis

Bekijk in iTunes

24

Episode 57 - Interview with Rich Mogull

Rich Mogull of Securosis and the Network Security Podcast graciously spoke with Martin a while back. They talked about how security leaders should evaluate and select technologies and had some great ideas on effective vendor management. But before you get to hear that take a listen to Joseph, Steve, and Martin discuss the one item of interest that really picqued their interest... Have fun in Vegas!

26-7-11

Gratis

Bekijk in iTunes

25

Episode 56 - Older and Wiser?

Just Martin and Joseph this evening, as our other hosts are otherwise engaged. Unlike Joseph, who is now married, instead of engaged. Jumping right in, we decided to stick with what we know, and talked about Dark Reading's article on how the recent breaches have led to a recent rash of hirings in the InfoSec field, from the CSO level all the way down to the junior analyst level. http://www.darkreading.com/security-monitoring/167901086/security/attacks-breaches/231000315/high-profile-hacks-prompt-high-powered-hires.html And with the recent demise of LulzSec, it's now time to begin an analysis of the effects of the events perpetrated from the LulzBoat. Our good friend Bill Brenner at CSO Online wrote a great article entitled "Whatever, Lulzsec." http://blogs.csoonline.com/1570/whatever_lulzsec We wrapped up with the story that brought the title to this episode, we discussed the differences that Symantec has found between iOS devices and Android equipped phones. http://www.csoonline.com/article/print/685253 That's it for this evening, but we'll see you again next week!

28-6-11

Gratis

Bekijk in iTunes

26

Episode 55 - Lulzsec and IT Consumerization

Martin, Andy, and Steve finally manage to get schedules set and talk. Unfortunately Joseph can't come out to play this week so the old guys have the mike. Quick note and apologies about some of the audio quality - we're working to fix it.

22-6-11

Gratis

Bekijk in iTunes

27

Episode 54 - LogLogic, HP, and other security conundrums...

Join Martin and Steve as they discuss a quite unbelieveable blog post from LogLogic (http://www.loglogic.com/blog/what-does-s-stand), the continuation of "Breach-A-Week", and Martin's recent visit to Vegas for HP Discover 2011.

13-6-11

Gratis

Bekijk in iTunes

28

Episode 53 - "It's That Most Special Time Of The Year..."

Unfortunately Andy and the News Yankee couldn't make it so Martin and Joseph sit back and discuss the upcoming Job Hunting Season that seems to exist for a couple of months on either side of DEFCON/BlackHat and how both job seekers and those wanting to fill seats can have the best success...

1-6-11

Gratis

Bekijk in iTunes

29

Episode 52 - "Sony, Monty Python, and AppSec"

Martin, Andy, and Steve get together to talk about the recent breaches of the Sony Playstation Network. They discuss various aspects of what happened, how Sony has been handling it, and Andy gives a very kind grade to their communications strategy to date. The guys are joined by Rafal Los where we discuss application security, especially around mobile devices, and how some people (meaning Martin) think the return of the GreenScreen GUI might not be a bad thing.

9-5-11

Gratis

Bekijk in iTunes

30

Episode 51 - Doing Infosec Right (feat. @myrcurial)

Steve can't make it tonight so Martin, Andy, and Joseph sit down with James Arlen (@myrcurial) to discuss items of interest... Like the general insanity of the infosec echo chamber when it comes to Amazon EC2 outages, DropBox TOS updates, and Applie iPhone location information... Oh, and we talk about Doing Infosec Right. It's a new project designed to bring good information from people who do defensive security to people who are trying to do defensive security. You can find more at http://www.doinginfosecright.com.

25-4-11

Gratis

Bekijk in iTunes

31

Episode 50 - "InfoSec: Now 98% Better Than Before!"

Join Martin, Steve, and Joseph as they discuss the Verizon Data Breach Incident Report with special guest Josh Corman. And remember to check out Charlotte ISSA at http://www.charlottaissa.org to register for their conference on May 5th!

19-4-11

Gratis

Bekijk in iTunes

32

Episode 49 - Merry Breachmas!

Just Andy and Joseph this week, but we hit some fairly hefty topics, particularly the breaches that seem to keep springing up every day lately. First, Derek Newton has discovered a very interesting flaw in Dropbox's host authentication. http://dereknewton.com/2011/04/dropbox-authentication-static-host-ids/ Then, we discussed the breaches of the week: Barracuda, Hartford, and US Airways. http://www.theregister.co.uk/2011/04/11/barracuda_networks_attack/ https://www.threatpost.com/en_us/blogs/hartford-hacked-040711 https://www.threatpost.com/en_us/blogs/insider-allegedly-leaked-data-belonging-3000-us-airways-pilots-041111 And in the "too close to home for comfort" category, we finished up with the Texas Comptroller breach: http://www.statesman.com/blogs/content/shared-gen/blogs/austin/politics/entries/2011/04/11/comptroller_personal_id_inform.html http://blogs.chron.com/texaspolitics/archives/2011/04/personal_inform.html As always, you can find the podcast here: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

14-4-11

Gratis

Bekijk in iTunes

33

Episode 48 - RSA:The Good, The Bad, The FUDly

We're joined by our newest team member - Zach Lanier! The crew discusses the recent events at RSA in the context of "What Should A CISO DO?" Here are some of the stories we found... Calm http://www.govinfosecurity.com/podcasts.php?podcastID=1050 http://www.scmagazineuk.com/the-impact-of-the-rsa-token-data-breach-is-still -undetermined/article/198935/ Panic http://www.channelregister.co.uk/2011/03/24/rsa_securid_news_blackout/ http://blogs.computerworlduk.com/jericho-forum/2011/03/after-the-breach---ho w-secure-is-rsas-securid/ http://www.americanbanker.com/bulletins/-1034737-1.html FUD http://www.digitalidnews.com/2011/03/23/ironkey-protects-banks-and-their-cus tomers-from-rsa-securid-data-breach (alt) http://www.istockanalyst.com/business/news/4990527/ironkey-introduces-protec tion-for-banks-and-their-customers-from-rsa-securid-data-breach http://www.networkworld.com/news/2011/032311-rsa-securid-backdoor.html?page= 1 http://www.businesswire.com/news/home/20110322006389/en/Swivel-Secure-Authen tication-Expert-Comments-RSA-Security http://www.microscope.co.uk/news/rivals-move-to-plug-gap-left-by-rsa-uncerta inty/ We'll be back next time with more fun and stories!

29-3-11

Gratis

Bekijk in iTunes

34

Episode 47 - Special Interview with Larry Ponemon

Well, the boys are short the News Yankee this week... Joseph is back from South By Southwest and BSides Austin and gives a brief rundown on the doings there. Martin interviews Larry Ponemon about the "Cost of Compliance" study recently published by the Ponemon Institute. Andy? He's just hanging out with the infant.

18-3-11

Gratis

Bekijk in iTunes

35

Episode 46 - Denial is not just a river in Egypt

Once again, we have the whole gang together, as we discuss two groups of stories that fit together nicely. We do have some upcoming cons for the southern oriented of us. First is the upcoming BSidesAustin, held in sunny Austin, TX. It's this weekend (March 11-12), and full details can be found at http://www.keepsecurityweird.org/ A little farther down the road is the second year for HouSecCon. November 3rd, held in Houston, TX. The CFP just went out, and if last year was any indication, this year is gonna rock as well. Full details here: http://houstonseccon.com/ But on to the discussions of the week: The first group of articles talks about the CSO's relationship with the business, particularly in talking about the things that the business should know: http://www.thesecuritysamurai.com/2011/02/28/5-things-business-people-should-know-about-internet-security/ http://www.csoonline.com/article/print/670463 But you can't talk about the business without talking about the technology side of things, and Andy's favorite company, the Goog, has given us some good stuff to talk about this week. Android devices have been taking off rapidly, and Wells Fargo has given us some interesting insight into their inner workings by just saying "No." to outside devices: http://www.thetechherald.com/article.php/201109/6891/Google-pulls-56-malicious-apps-from-Android-Marketplace http://www.networkworld.com/news/2011/030711-wells-fargo-smartphones-tablets.html?page=1 As always, you can find the podcast here: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

10-3-11

Gratis

Bekijk in iTunes

36

Episode 45 - Andy, Google, and 150,000 Angry People

Again, we're sorry that Andy moving to Google mail caused the outage. We promise to provide more warning when Andy finally breaks down and buys an iPad... This week the guys discuss.... Is Stress Making You Want To Crack? http://www.darkreading.com/security-monitoring/167901086/security/security-management/229219084/under-growing-pressure-security-pros-may-be-ready-to-crack-study-says.html HIPAA penalties finally hit the big time... http://www.csoonline.com/article/669067/hipaa-privacy-actions-seen-as-warning Couple of Google stories... First, a small percentage but large number of users get their gmail accounts reset... https://www.infosecisland.com/blogview/12162-Gmail-Data-Vanishes-Into-the-Cloud.html And Google introduces 2-Factor Authentication for gmail.... http://www.darkreading.com/authentication/167901072/security/client-security/229218478/google-introduces-two-factor-authentication-option.html

3-3-11

Gratis

Bekijk in iTunes

37

Episode 44 - Lessons in DR: The Good, the Bad and the News Yankee

Episode 44 - Lessons in DR: The Good, the Bad and the News Yankee This episode, our good friend and host, Martin Fisher was unable to join us, so it was just Andy, Steve, and Joseph. And without Martin's guiding hand, the other boys allowed the News Yankee an uprecedented amount of microphone time, as Steve discussed his trip and the many lessons he learned at RSA this year. You can check out some of Steve's write-ups at these links: http://www.thetechherald.com/article.php/201108/6841/RSAC-2011-Forming-a-bridge-between-law-enforcement-and-security http://www.thetechherald.com/article.php/201108/6845/RSAC-2011-Lost-assets-and-incident-response-learn-from-my-fail We then wrapped up with a discussion of Data Recovery, and making sure you fully test your plans, with this lovely example provided to us by FEMA: http://www.govinfosecurity.com/articles.php?art_id=3339 That's all we had time for this week! As always, you can find the podcast here: http://sfspodcast.libsyn.com/rss And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.

23-2-11

Gratis

Bekijk in iTunes

38

Episode 43 - Offensive Security: Pros and Cons

Martin and Joseph have a really good discussion with Paul Asadoorian and John Strand of Pauldotcom Security Weekly fame to discuss ideas around Offensive Security in light of some segments from their podcast and recent events involving HBGary. Full show notes with links can be found at http://www.southernfriedsecurity.com Enjoy!

15-2-11

Gratis

Bekijk in iTunes

39

Episode 42 - "Life, the Universe, and Everything"

Martin, Andy, Steve, and Joseph discuss a new study released by Ponemon and reflect on lessons that can be learned already from the HBGary incident with Anonymous.

12-2-11

Gratis

Bekijk in iTunes

40

Episode 41 - "Crickets"

Join us as we feature Lee Kushner of LJ Kushner Associates in an interview about careers, career planning, and special surprises coming at this years RSA Conference.

26-1-11

Gratis

Bekijk in iTunes

41

Episode 40 - Breathe In, Breathe Out

Episode 40 – Breathe In, Breathe Out… 1. Introductions 2. We were nominated for AShimmy’s Best Security Podcast of 2010! If you’re a blogger, we’d love your vote! http://www.ashimmy.com/2011/01/and-the-winners-are.html 3. We discuss the incredibly insightful and masterfully created ISC2 “12 Principles of Information Security” https://www.isc2.org/PressReleaseDetails.aspx?id=7012 4. Martin and Andy interview the illustrious Mike Dahn (http://twitter.com/mikd or http://chaordicmind.com/blog/) 5. Closeout. Download the show here, or find us on iTunes!: http://sfspodcast.libsyn.com/rss

17-1-11

Gratis

Bekijk in iTunes

42

Episode 39 - Using FUD the SFS way...

Join Martin, Andy, Steve, and Joseph as they discuss the right way to use Fear, Uncertainty, and Doubt to sell your information security program and as they reveal the topics and conferences every infosec professional needs to be familiar with for 2011.

4-1-11

Gratis

Bekijk in iTunes

43

Episode 38 - The Anniversary Show

Celebrating one full year of your favorite security podcast!

14-12-10

Gratis

Bekijk in iTunes

44

Episode 37 - Sometimes You Just Hate Skype (w/Chris Nickerson)

Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - Joseph was being a good son and was visiting his Mom - so he's absent this episode - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction We have a very interesting discussion with Chris Nickerson on predictions for 2011 and penetration testing. The audio quality isn't what we'd like it to be but we hope you'll bear with us because what Chris has to say is really important. Thanks!

9-12-10

Gratis

Bekijk in iTunes

45

Episode 36 - Our Take On Wikileaks and StuxNet

nnouncements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Download here Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - Joseph was being a good son and was visiting his Mom - so he's absent this episode - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Put simply - the guys talk about Wikileaks and StuxNet from a uniquely Southern Fried point of view.

1-12-10

Gratis

Bekijk in iTunes

46

Episode 35 - What's Grinding Josh Corman's Gears?

Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction We join Josh Corman in a discussion of TSA security measures and a few other items of interest... Upcoming Features & Events The new website is coming soon....stay tuned!

24-11-10

Gratis

Bekijk in iTunes

47

Episode 34 - So You Want To Be A CISO

Episode 34 - So You Wanna be a CISO Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction JJ and Martin schools us on PCI essentials for the SMB http://securityuncorked.com/2010/10/an-smb-guide-to-credit-card-regulations-part-i-pci-dss-qa-dark-reading/ http://securityuncorked.com/2010/11/an-smb-guide-to-credit-card-regulations-part-i-the-low-hanging-fruit-networks-and-users-dark-reading/ Another Great article from CSO on how the role of the CSO/CISO has changed over the last few years. http://www.csoonline.com/article/632223/the-new-ciso-how-the-role-has-changed-in-5-years http://www.csoonline.com/podcast/631770/how-to-become-the-new-cso- Upcoming Features & Events

4-11-10

Gratis

Bekijk in iTunes

48

Episode 33 - Hug It Out w/@joshcorman

Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction A report from Palo Alto shows why you need to proactively interact with the business....or things you may not want to see will be on your wire... http://www.thetechherald.com/article.php/201042/6319/Palo-Alto-report-forces-tough-questions-for-enterprise-security Great article from CSO about how to effectively engage the business with some super examples. A Must Read! http://www.csoonline.com/article/629281/sweet-success-dunkin-brands-security-focuses-on-making-dough Big fraud can kill a SMB....and some things they can do to reduce their risk. http://www.darkreading.com/smb-security/security/perimeter/showArticle.jhtml?articleID=227900529 Upcoming Features & Events The new website is coming soon....stay tuned!

28-10-10

Gratis

Bekijk in iTunes

49

Episode 32 - Bsides...

Introductions - Martin is flying solo tonight. Andy, Steve, and Joseph should be back shortly... - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction It's all interviews this week as we talk with Mary Catherine Petermann, Marisa Fagan, and the guys from FALE at Bsides Atlanta. Then we talk with Michelle Klinger about the upcoming Bsides DFW. Upcoming Features & Events - We're looking for some help from YOU!! We'd like to get you to join us either on the blog or on the podcast. If you'd like to join us drop me an email tell me what you would like to do and I'll let you know when we are ready for you. - We have some exciting things planned for the near future. Stay tuned for more details

21-10-10

Gratis

Bekijk in iTunes

50

Episode 31 - "Challenge Andy To A Duel, Please"

Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Evidently Robb Beck is a fan of the podcast..... Martin or Andy could have written this almost word-for-word. :-) https://www.infosecisland.com/blogview/8426-Top-Five-Things-Ive-Learned-in-Enterprise-InfoSec.html Symantec... I guess the new logo makes them go all "Booga-Booga-Booga!!!!!" just in time for Halloween... http://blogs.forbes.com/andygreenberg/2010/10/04/symantec-scareware-tells-customers-to-renew-or-beg-for-mercy/ & http://www.symantec.com/content/en/us/global/images/version3/logos/symantec.gif Just how much should your company HR department know....and do you care? http://itmanagement.earthweb.com/features/article.php/12297_3905931_1/Pre-crime-Comes-to-the-HR-Dept.htm Upcoming Features & Events - We're looking for some help from YOU!! We'd like to get you to join us either on the blog or on the podcast. If you'd like to join us drop me an email tell me what you would like to do and I'll let you know when we are ready for you. - We have some exciting things planned for the near future. Stay tuned for more details

7-10-10

Gratis

Bekijk in iTunes

51

Episode 30 - Curmudgeons vs. Young Punks

Episode 30 - Curmudgeons vs. Young Punks Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - General Yankee-fied News Coverage by Steve Ragan - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Two articles were the genesis of the conversation of this episode... http://www.csoonline.com/article/618014/are-you-too-perfect-to-be-an-effective-security-manager- http://riskmanagementinsight.com/riskanalysis/?p=794&utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+Riskanalysis+(RiskAnalys.is) Upcoming Features & Events - We're looking for some help from YOU!! We'd like to get you to join us either on the blog or on the podcast. If you'd like to join us drop me an email tell me what you would like to do and I'll let you know when we are ready for you. - We have some exciting things planned for the near future. Stay tuned for more details

29-9-10

Gratis

Bekijk in iTunes

52

Episode 29 - Brokeback Network

Episode 29 - Brokeback Network Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction I liked this the first time I saw it and it was called "Jericho" http://www.darkreading.com/insiderthreat/security/perimeter/showArticle.jhtml?articleID=227500145 Breaking up is hard to do... http://www.wired.com/dangerroom/2010/08/hp-holds-navy-network-hostage/ Can anything save us from Stuxnet? http://blogs.csoonline.com/1260/how_to_plan_an_industrial_cyber_sabotage_operation_a_look_at_stuxnet Someone finally being reasonable about APT? And it's somebody from Securosis? :) http://securosis.com/blog/firestarter-its-time-to-talk-about-apt Upcoming Features & Events - We're looking for some help from YOU!! We'd like to get you to join us either on the blog or on the podcast. If you'd like to join us drop me an email tell me what you would like to do and I'll let you know when we are ready for you. - We have some exciting things planned for the near future. Stay tuned for more details

23-9-10

Gratis

Bekijk in iTunes

53

Episode 28 - A Very Special Episode

Sorry, dear listener, but due to issues beyond our control for this episode we're going to bypass show notes and simply say this... Mike Rothman is our Guest Co-Host (Thank you, Mike!) Steve Ragan is our New Yankee. Joseph Sokoly is our new Production Assistant. The feature interview is with Todd Merrill who is CEO of GlobalCrypto. We'll hopefully be back to regular show notes next week. Thanks, Martin (the other co-host)

16-9-10

Gratis

Bekijk in iTunes

54

Episode 27 - Introducing DJ PwnsAlot and His Mismatched Packets

Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. For another week we couldn't get all of us together but we now have a spare to pick up the slack. - News analysis and general yankee-ness brought to you by Steve Ragan - With added "young hipster flair" from Joseph Sokoly! - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Hurd joins Oracle... So - is this where all the disgraced leaders go??? http://www.washingtonpost.com/wp-dyn/content/article/2010/09/06/AR2010090603688.html?hpid=moreheadlines Really, Symantec?? Really??? http://www.hackiswack.com/ http://blogs.forbes.com/andygreenberg/2010/09/03/symantecs-hack-is-wack-and-cybersecuritys-most-embarassing-marketing-campaigns/ FUD or real? (AKA "You want firewall, A/V, and the floor mats with your Chevy, Mr. Willingham?) http://www.infosecurity-us.com/view/12270/car-hacking-goes-wireless-as-modern-vehicles-open-to-hacker-attacks/ Upcoming Features & Events - We're looking for some help from YOU!! We'd like to get you to join us either on the blog or on the podcast. If you'd like to join us drop me an email tell me what you would like to do and I'll let you know when we are ready for you. - We have some exciting things planned for the near future. Stay tuned for more details

9-9-10

Gratis

Bekijk in iTunes

55

Episode 26 - A Yankee, A Texan and A Southerner walk into a bar....

A Yankee, A Texan and A Southerner walk into a bar.... Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south one of who is now living north of the Mason Dixon Line. For another week we couldn't get all of us together but we now have a spare to pick up the slack. - News analysis and general yankee-ness brought to you by Steve Ragan - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction The boys at SFS want to welcome our newest member Joseph Sokoly. Joseph joins us to help out with Web site improvements, sitting in when we need help with recording (like tonight) and where ever else we can find to put him. Hopefully he will stay out of the cage. American Eagle fall down go boom. http://www.csoonline.com/article/print/607230 The Internet is EVIL!!!! http://thenextweb.com/media/2010/08/31/34-of-people-believe-all-websites-are-dangerous/ Upcoming Features & Events - We're looking for some help from YOU!! We'd like to get you to join us either on the blog or on the podcast. If you'd like to join us drop me an email tell me what you would like to do and I'll let you know when we are ready for you. - We have some exciting things planned for the near future. Stay tuned for more details

1-9-10

Gratis

Bekijk in iTunes

56

Episode 25 - There Is Something In The Water

Episode 25 - There Is Something In The Water Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south who are living north of the Mason Dixon Line. Once again we're all together to record this week. It's been a few weeks due to all sorts of technical and life issues. - News analysis and general yankee-ness brought to you (if he ever gets back) by Steve Ragan - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction US acknowledges military networks compromised by infected flash drive... http://www.nytimes.com/2010/08/26/technology/26cyber.html http://www.informationweek.com/news/security/attacks/showArticle.jhtml?articleID=227001122 And the New Mexico Secretary of State too... http://news.softpedia.com/news/New-Mexico-Secretary-of-State-s-Laptop-Infected-with-Malware-152768.shtml Defcon Social Engineering Contest...what to do? http://www.darkreading.com/insiderthreat/security/attacks/showArticle.jhtml?articleID=226600101&cid=RSSfeed Wait, what? Intel bought who? http://www.thetechherald.com/article.php/201033/6039/Experts-and-insiders-weigh-in-on-McAfee-s-buyout Upcoming Features & Events - Andy will be a guest on Securabit on August 11th. - We have some exciting things planned for the near future. Stay tuned for more details

27-8-10

Gratis

Bekijk in iTunes

57

Episode 24 - Missing, one news Yankee, reward offered

Episode 24 - Missing, one news Yankee, reward offered. Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south who are living north of the Mason Dixon Line. Once again Steve had to bow out for the evening. I'm not sure the intertubes can handle all 3 of us North of the border. - News analysis and general yankee-ness brought to you by Steve Ragan - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction 1. Regulations are everywhere http://www.scmagazineus.com/regulation-renovation-regulatory-compliance-mandates/printarticle/174553/ https://www.infosecisland.com/blogview/6544-Conducting-After-Hours-Security-Reviews.html http://www.csoonline.com/article/print/603307 2. Security Walk-thru 3. Do we have an entitlement mentality? http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1518579,00.html Upcoming Features & Events - We have some exciting things planned for the near future. Stay tuned for more details

19-8-10

Gratis

Bekijk in iTunes

58

Episode 23 - Ridin' The Google Wave

Episode 23 - Ridin' the Google Wave ..... Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south who are living north of the Mason Dixon Line. Once again it's only Martin and Andy this week. Steve has some personal things to take care of this week. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction 1. Andy gloats in his role in killing Google Wave while Martin apologizes for our role in it's demise. 2. Movin' on up The plan is the plan. What is your plan? http://searchsecurity.techtarget.com/magazineCurrent/0,296884,sid14,00.html How do you get your message across? http://threatchaos.com/home-mainmenu-1/16-blog/560-grasp 3. Will the C's ever learn? Upcoming Features & Events - Andy will be a guest on Securabit on August 11th. - We have some exciting things planned for the near future. Stay tuned for more details

10-8-10

Gratis

Bekijk in iTunes

59

Episode 22 - Elvis Has Left The Building

Episode 22 - Elvis Has Left The Building Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south who are living north of the Mason Dixon Line. Once again we're all together to record this week. It's been a few weeks due to all sorts of technical and life issues. - News analysis and general yankee-ness brought to you by Steve Ragan - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction 1. Invasion of the consumer devices How do you deal w/ rogue devices? Is it better to learn to live with them or to fight to maintain the "old guard"? http://www.networkworld.com/news/2010/072310-it-departments-swamped-by-consumer.html?fsrc=netflash-rss Is there a valid business reason to still use IE6? What are the risk and are the really that bad? http://www.thetechherald.com/article.php/201031/5971/UK-Government-keeps-IE6-for-cost-concerns-and-security 2. Who still uses IE6? 3. Dealing w/ Policy breaches in a serious way What is it going to take to actually get peoples attention when it comes to following policy? What is too much and what is too little? http://infonation.kahnconsultinginc.com/2010/08/leaks-happen-how-do-we-stop-them.html Upcoming Features & Events - Andy will be a guest on Securabit on August 11th. - We have some exciting things planned for the near future. Stay tuned for more details

6-8-10

Gratis

Bekijk in iTunes

60

Episode 21 - Interview with Patrick Gray of the Risky Business podcast...

Episode 21 - Interview with Patrick Gray This week is all about the interview Martin did with Patrick Gray of the Risky Business podcast. Patrick is a smart journalist and a really good guy. We hope you enjoy! Subscribe via RSS here Subscribe via iTunes here

22-7-10

Gratis

Bekijk in iTunes

61

Episode 20 - Interview with Jack Daniel

This week is all about the interview Andy and Martin did with Jack Daniel... We hope you enjoy!

18-7-10

Gratis

Bekijk in iTunes

62

Ep19 - Google, and China, and Cyberwar - Oh My!

Episode 19 - Google, and China, and Cyberwar. Oh, My! Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south who are living north of the Mason Dixon Line. Sadly Andy didn't make it for this episode so Martin is winging it... - News analysis and general yankee-ness brought to you by Steve Ragan - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction What appears to be some "definitive attribution" on China and APT... http://www.darkreading.com/security/attacks/showArticle.jhtml?articleID=225702435 Google caves in to China? http://www.thetechherald.com/article.php/201026/5808/Google-halts-redirection-in-China-after-threats-against-ICP-license Amrit has a new boss... http://www.theregister.co.uk/2010/07/01/ibm_buys_bigfix/ Upcoming Features & Events - Things are slow on the events and features front. Once Andy and Martin get settled into their new cities things should pick back up. - We have some exciting things planned for the near future. Stay tuned for more details

7-7-10

Gratis

Bekijk in iTunes

63

CleanEpisode 18 - Amazon Fall Down, Go Boom

Episode 18 - Amazon fall down go boom.IntroductionsAnnouncements, Gossip, and Smack TalkNews and Other Items of DistractionMartins CornerUpcoming Features & EventsPlaying Your PartIntroductions - Your co-hosts are Andy Willingham and Martin Fisher. Two good, ole boys from the south who are living north of the Mason Dixon Line. - News analysis and general yankee-ness brought to you by Steve Ragan - Tonight Steve is out of the cage and back with us after a couple of weeks in the cage. We'll have to see if he behaves himself this week. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different...News and Other Items of Distraction Policy and Privacy - http://infonation.kahnconsultinginc.com/2010/06/finally-ruling-on-city-of-ontario-ca-v.html Who ya gonna blame? - http://infonation.kahnconsultinginc.com/2010/06/finally-ruling-on-city-of-ontario-ca-v.html Merging of the evil empires? - http://www.google.com/hostednews/ap/article/ALeqM5in4ZfASkFMVm7hgxHMnVppC-4CKAD9GL5JMO0 Irresponsible behavior? - http://www.cgisecurity.com/2010/06/why-publishing-exploit-code-is-generally-a-bad-idea-if-youre-paid-to-protect.html Where's Amazon? Amazon seems to have disappeared from the Interwebs today and they are strangely silent about it. This begs the question, "If you disappear from the cloud can anyone hear you scream?" Martin's CornerMartin's waxes philosophical on Cyberwar, Bruce Schnier, and all sort of mean, nasty, horrible things. http://www.npr.org/templates/story/story.php?storyId=127861446 Upcoming Features & Events - Things are slow on the events and features front. Once Andy and Martin get settled into their new cities things should pick back up. - We have some exciting things planned for the near future. Stay tuned for more details

1-7-10

Gratis

Bekijk in iTunes

64

Episode 17 - "Back In The Cage"

Episode 17 - "Back In The Cage" Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 17 of the SFS Podcast. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Since we had such a great interview for tonights show and it went long we've decided to bypass the news stories and jump right into the interview. Interview Tonight we have a interview with Martin McKeay about his adventures in security and podcasting and of course we had to talk about PCI.

9-6-10

Gratis

Bekijk in iTunes

65

Episode 16 - AV is Dead

Episode 16 - AV is dead Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. One is gainfully employed - one is not. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 16 of the SFS Podcast. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - Tonight we - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Is AV dead? http://www.thetechherald.com/article.php/201021/5661/Symantec-slashes-cost-of-SMB-protections-by-40-percent Bye Bye Windows http://www.thetechherald.com/article.php/201022/5673/FUD-Google-ditched-Windows-for-security-reasons http://www.thetechherald.com/article.php/201022/5683/Microsoft-comments-on-Google-s-security-concerns Interview Tonight we have a interview with Chris Burton (@cyberhiker on Twitter) about his Security fu and FISMA. Martin actually let me join him for this interview! Upcoming Features & Events - Things are slow on the events and features front. Once Andy and Martin get settled into their new cities things should pick back up. - We have some exciting things planned for the near future. Stay tuned for more details

3-6-10

Gratis

Bekijk in iTunes

66

Episode 15 - We miss Martin

Episode 15 - We miss Martin Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. One is gainfully employed - one is not. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 15 of the SFS Podcast. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - Martin went missing for this episode so Yankee boy and myself had to go it alone. We Miss Martin! :( - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction People still really use IE? http://www.darkreading.com/insiderthreat/security/client/showArticle.jhtml?articleID=225200076 Watch those browser tabs http://isc.sans.org/diary.html?storyid=8854 How to NOT audit @Shrldu http://layer8.itsecuritygeek.com/layer8/audit-instructions/ How many ways can privacy be screwed up http://threatpost.com/en_us/blogs/why-cant-johnny-have-privacy-052410 http://www.washingtonpost.com/wp-dyn/content/article/2010/05/23/AR2010052303828.html. Upcoming Features & Events - Things are slow on the events and features front. Once Andy and Martin get settled into their new cities things should pick back up.

27-5-10

Gratis

Bekijk in iTunes

67

Episode 14 - Andy *is* getting forgetful...

Episode 14 - Andy *is* getting forgetful... Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. One is gainfully employed - one is not. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 14 of the SFS Podcast. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - Even though Andy can't really remember it we were on the Pauldotcom Security Weekly episode 199. We had a great time talking about pen-testing, airline security, and the fact that Martin does, in fact, use "y'all" in conversation.. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Choosing Your Security Battles Wisely... http://infoworld.com/d/security-central/choose-your-security-battles-wisely-076 KHOBE - not all it's cracked up to be - and pretty unethical behavior as well... http://blog.gdatasoftware.com/overview/article/1654-khobe-no-problem.html Feature Interview with Marisa Fagan... Marisa does the Ten Questions and then talks about her passion for mentoring and the project that has come from that... Upcoming Features & Events - Andy is looking for some interview love... Would you like to be interviewed on the podcast? Get in touch with Andy at andyitguy@yahoo.com.

19-5-10

Gratis

Bekijk in iTunes

68

Episode 13 - HacKid

Episode 13 - HacKid Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. One is gainfully employed - one is not. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 13 of the SFS Podcast. We're going to skip news tonight so we can share 2 pre-recorded segments with y'all. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Op-Ed with Marissa Fagan... Marissa disagrees with Martin on some of what was said about Google in the Blippy story on Episode 11... Feature Interview with Chris (and Olivia) Hoff... Chris tells us more about the HacKid Conference (http://www/hackid.org) he's organizing and Olivia tells us why we shouldn't share our passwords... Upcoming Features & Events - Pauldotcom Debate on the reality of exploit in penetration testing (and other fun topics!) - May 13, 2009

12-5-10

Gratis

Bekijk in iTunes

69

Episode 12 - BOFH

Episode 12 - BOFH Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher begin_of_the_skype_highlighting end_of_the_skype_highlighting. - News analysis and general yankee-ness brought to you by Steve Ragan begin_of_the_skype_highlighting end_of_the_skype_highlighting. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 12 of the SFS Podcast. Andy isn't with us tonight...but he tells us he'll be back Real Soon Now. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction Terry Childs...BOFH... http://www.theregister.co.uk/2010/04/28/sf_sysadmin_guilty/ http://www.computerworld.com/s/article/9176114/Terry_Childs_juror_explains_why_he_voted_to_convict http://blogs.eweek.com/careers/content001/workplace_tech/terry_childs_guilty_verdict_is_a_warning_to_it_workers.html Symantec Acquires PGP and Guardian Edge... http://www.darkreading.com/security/encryption/showArticle.jhtml?articleID=224700251 Web Apps are the red-headed step child of security... http://www.thetechherald.com/article.php/201017/5585/Web-Applications-still-posing-risk-while-businesses-shift-funds-elsewhere Upcoming Features & Events - Pauldotcom Debate on the reality of exploit in penetration testing (and other fun topics!) - May 13, 2009

5-5-10

Gratis

Bekijk in iTunes

70

Episode 11 - "What the Hell??"

Episode 11 - "What the Hell?" Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham begin_of_the_skype_highlighting end_of_the_skype_highlighting and Martin Fisher begin_of_the_skype_highlighting end_of_the_skype_highlighting. - News analysis and general yankee-ness brought to you by Steve Ragan begin_of_the_skype_highlighting end_of_the_skype_highlighting begin_of_the_skype_highlighting end_of_the_skype_highlighting. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 11 of the SFS Podcast. What the Hell?! Tonight We're wrapping Andy's head in lots and lots of duct tape because all of these stories are hot buttons for him. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction -Gizmodo - WTH? http://www.thetechherald.com/article.php/201017/5562/Gizmodogate-Journo-s-home-raided-in-4G-iPhone-investigation -Blippy - WTH?. http://www.thetechherald.com/article.php/201017/5567/Blippy-begins-recovery-from-credit-card-incident http://erratasec.blogspot.com/2010/04/thats-not-lesson-lessons-unlearned-from.html -McAfee - WTH? http://www.thetechherald.com/article.php/201016/5550/McAfee-aftermath-%E2%80%93-impact-numbers-and-recovery-resources-remain Upcoming Features & Events - Pauldotcom Debate on the reality of exploit in penetration testing (and other fun topics!) - May 13, 2009

29-4-10

Gratis

Bekijk in iTunes

71

Episode 10 - TWO DIGITS!

Episode 10 - TWO DIGITS! Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Interview Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham begin_of_the_skype_highlighting end_of_the_skype_highlighting and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan begin_of_the_skype_highlighting end_of_the_skype_highlighting. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 10 of the SFS Podcast. Tonight we are recording our second live audience podcast at the Gordon Biersch Brewery in Buckhead. The recording took place right after the Atlanta NAISG meeting. Our special guest tonight is none other than Carlos "Dark Operator" Perez from Pauldotcom Security Weekly. . - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction -Microsoft IT outsourcing http://www.infosys.com/newsroom/press-releases/Pages/IT-desk-side-services.aspx http://blogs.zdnet.com/microsoft/?p=5891 -NSA posts budget request http://www.informationweek.com/news/government/security/showArticle.jhtml?articleID=224202447&cid=RSSfeed_IWK_Security -How to Get into InfoSec http://erratasec.blogspot.com/2010/04/first-steps-to-career-in-information.html Interview - Live Interview with Carlos "Dark Operator" Perez Upcoming Features & Events - Pauldotcom Debate on the reality of exploit in penetration testing (and other fun topics!) - May 13, 2009

15-4-10

Gratis

Bekijk in iTunes

72

Special Episode - Microcast 1

Special Microcast- Announcements & News Martin and Andy talk about the brief hiatus that the podcast is going to take so that the boys can take care of technical issues and get ready for Episode 10. We'll be back right after Easter with the podcast ready to take on the news, talk about leadership, and hopefully have even more fun.

29-3-10

Gratis

Bekijk in iTunes

73

Episode 9 - Crossing the Streams with Michael Farnum

Episode 9 - "Crossing the Streams with Michael Farnum" Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Interview Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 9 of the SFS Podcast. Tonight we are recording in front of a live audience at the Gordon Biersch Brewery in Buckhead. The recording took place right after the Atlanta NAISG meeting featuring Michael Farnum with Accuvant. Michael joins us tonight as we talk about security and who knows what else. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction -Irresponsible Behavior? - Fiserv tells it's customers to stay on outdated, insecure version of Adobe Reader because of compatibility issues. http://www.krebsonsecurity.com/2010/03/fiserv-to-banks-stay-on-outdated-adobe-reader/ -Careers in Security - 3 articles looking at different aspects of your career management plan. http://searchsecurity.techtarget.com/magazineFeature/0,296894,sid14_gci1394537_mem1,00.html http://www.csoonline.com/article/550413/From_the_CIO_Why_You_Didn_t_Get_the_CISO_Job http://www.csoonline.com/article/504903/Undercover_A_Painful_Lack_of_Security_Jobs -Do metrics really matter? - We're told to collect them but do we know what to collect and what to do with them? http://searchsecurity.techtarget.com/magazineFeature/0,296894,sid14_gci1394672_mem1,00.html - Interview - Live Interview with Michael Farnum Upcoming Features & Events - SecureWorld Expo April 27 -28, 2010 Andy and Martin will both be presenting. - Great interviews lined up over the next few weeks b/c lots of cool people are coming to the ATL

11-3-10

Gratis

Bekijk in iTunes

74

Special Episode - Interview with Josh Corman

We interviewed Josh shortly after Shmoocon and talked about PCI, Rugged Software, and Information Asymmetry... Enjoy!

6-3-10

Gratis

Bekijk in iTunes

75

Episode 8 - Not At RSA

Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Leadership Moment Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 8 of the SFS Podcast. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction - Verizon Incident Sharing Metric Framework http://www.verizonbusiness.com//resources/whitepapers/wp_verizon-incident-sharing-metrics-framework_en_xg.pdf - PCI - Throwing money away? Ponemon pulls numbers out of ....... http://www.networkworld.com/news/2010/030110-pci-compliance-audit-cost.html?fsrc=netflash-rss No one is compliant even with spending a fortune. http://www.csoonline.com/article/559863/RSA_2010_Why_41_Percent_of_You_Would_Fail_a_PCI_Audit - Your Web App IS broken This should get managements attention http://www.communities.hp.com/securitysoftware/blogs/rafal/archive/2010/02/25/a-big-case-of-oops.aspx http://www.thetechherald.com/article.php/201008/5304/WepAppSec-The-reality-of-Web-development-and-security - Life before Google http://www.geeksaresexy.net/2010/02/27/life-before-google-cartoon/?utm_source Leadership Moment - Martin and Andy discuss the role of the CISO and just how technical they need to be or not be. Upcoming Features & Events - Atlanta NAISG March Meeting sponsored by Accuvant and featuring Michael Farnum. - Great interviews lined up over the next few weeks b/c lots of cool people are coming to the ATL Closing Music - Caitlin Rose "Shotgun Wedding" Playing Your Part - Did you like the podcast? Please leave us feedback on the discussion boards, in ITunes, or via email, twitter or face-to-face. - Did you not like the podcast? Tell us how we can do better by reaching out to us on the discussion boards. We'll read each one - we promise! - We're looking for what you'd like to hear us talk about in regards to leadership topics or other main discussion points.

4-3-10

Gratis

Bekijk in iTunes

76

Episode 7 - "The Boys Are Back In Town!"

Episode 7 - "The Boys Are Back In Town" Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Interview Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 7 of the SFS Podcast. We're back tonight after taking last week off due to travel and technical issues. We've got some great news stories, a fantastic interview and absolutely no Google, Apple or Adobe gripes. Well, at least not any that I'm planning on making. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction - Private eyes they're watching you. Someones gonna get fired over this. http://www.courthousenews.com/2010/02/18/24789.htm http://strydehax.blogspot.com/2010/02/spy-at-harrington-high.html - You dropped a bomb on me. http://www.krebsonsecurity.com/2010/02/time-bomb-may-have-destroyed-800-norfolk-city-pcs/ - Cyber ShockWave. No one was shocked and there was no awe. http://www.thetechherald.com/article.php/201007/5245/Report-The-Cyber-ShockWave-event-and-its-aftermath Interview with Bill Brenner - Martin sat down with Bill Brenner, of CSO Online, at Shmoocon and talked about the 10 questions, life and security. Upcoming Features & Events - Atlanta NAISG March Meeting sponsored by Accuvant and featuring Michael Farnum. - Great interviews lined up over the next few weeks b/c lots of cool people are coming to the ATL Playing Your Part - Did you like the podcast? Please leave us feedback on the discussion boards, in ITunes, or via email, twitter or face-to-face. - Did you not like the podcast? Tell us how we can do better by reaching out to us on the discussion boards. We'll read each one - we promise! - We're looking for what you'd like to hear us talk about in regards to leadership topics or other main discussion points.

25-2-10

Gratis

Bekijk in iTunes

77

Episode 6 - "Shmoocon Recap"

Episode 6 - "Shmoocon Recap" Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Shmoocon Highlights Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 6 of the SFS Podcast. Tonight we're going to focus on the news and let Martin tell us about his adventures at Shmoocon. At least those he remembers and can tell. Remember, What happens in DC is open for all the world to see. There are no secrets within the Beltway. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction - Trustwave 2010 Breach Report https://www.trustwave.com/pressReleases.php?n=020210 - Is it time for an Adobe Reboot? http://www.theregister.co.uk/2010/02/05/adobe_security_modest_proposal/ - http://www.theregister.co.uk/2010/02/09/adobe_flash_crash_bug/ - Google takes what's left of your privacy and throws it out the window http://www.thetechherald.com/article.php/201005/5193/Google-turns-to-the-NSA-for-help-should-you-worry http://lastwatchdog.com/google-nsa-collaboration-draws-alarm/ Shmoocon Recap - Martin loaded up the Shmoopedition and headed to DC to brave record snow fall and to bring you back all the Shmoo news. Upcoming Features & Events - "Redneck Security Moment of the Month" - Upcoming interviews - Upcoming Leadership Moments Playing Your Part - Did you like the podcast? Please leave us feedback on the discussion boards, in ITunes, or via email, twitter or face-to-face. - Did you not like the podcast? Tell us how we can do better by reaching out to us on the discussion boards. We'll read each one - we promise! - We're looking for what you'd like to hear us talk about in regards to leadership topics or other main discussion points.

12-2-10

Gratis

Bekijk in iTunes

78

Episode 5 - Martin learns how to use the mute button

Episode 5 - Martin learns how to use the mute button (then he forgets) Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Interview with Jennifer Jabbusch Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcements, Gossip, and Smack Talk - Welcome to Episode 5 of the SFS Podcast. We're back with our second interview with a Southern Belle who rocks the world of Information Security. Tune in to find out all you ever wanted to know about Jennifer Jabbusch and listen to Andy, Martin and Steve pontificate on the news. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction - Ponemon validates the CISO http://www.csoonline.com/article/print/522767 - Get your head out of the cloud or your @&& may be on your shoulders http://www.sfgate.com/cgi-bin/article.cgi?f=/g/a/2010/01/26/urnidgns852573C400693880002576B7006E3A79.DTL - Do we owe the Chinese an apology? http://www.thetechherald.com/article.php/201004/5151/Was-Operation-Aurora-really-just-a-conventional-attack http://lastwatchdog.com/googles-china-threat-ignite-cyber-cold-war/ Interview with Jennifer Jabbusch - Martin sits down with JJX to talk about life, security, and Asian women. - Notice how Martin conveniently schedules interviews when Andy isn't available. :) - Notice how Martin is the person all of the nice interviewees *want* to talk to... ;-) - In all seriousness, the audio quality of the interview isn't 100% (Skype drops and Martin thinking he was muted) but what Jennifer has to say is so good we want to be sure you get a listen. Upcoming Features & Events - "Redneck Security Moment of the Month" - Shmoocon!!!! - Atlanta NAISG February Meeting http://www.andyitguy.com/blog/?p=858 Playing Your Part - Did you like the podcast? Please leave us feedback on the discussion boards, in ITunes, or via email, twitter or face-to-face. - Did you not like the podcast? Tell us how we can do better by reaching out to us on the discussion boards. We'll read each one - we promise! - We're looking for what you'd like to hear us talk about in regards to leadership topics or other main discussion points.

3-2-10

Gratis

Bekijk in iTunes

79

Episode 4 - Aurora Boarallofus

Episode 4 - Aurora Boarallofus Introductions Announcements, Gossip, and Smack Talk News and Other Items of Distraction Upcoming Features & Events Playing Your Part Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew at the website. Announcement, Gossip, and Smack Talk - Welcome again to Episode 4 of the SFS Podcast. Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... News and Other Items of Distraction - More on Google and Aurora Google is using the Aurora issue as "justification" for keeping as much data as possible on us. And you wonder why Andy doesn't like Google. http://www.theregister.co.uk/2010/01/20/fleischer_google/ Microsoft knew about the vulnerability that Aurora exploited way back in August 2009. Were they irresponsible for not patching it already? http://www.theregister.co.uk/2010/01/22/aurora_exploit_known_months/ - Problems with Authentication AT&T sends users to others social media accounts. http://information-security-resources.com/2010/01/21/social-networks-logging-into-wrong-account/ All your passwords belong to us. I really hope you are more creative than this. http://www.thetechherald.com/article.php/201003/5124/Password-problems-back-in-the-spotlight-thanks-to-new-research - Social Media Woes Careful who you let "follow" you on social media sites http://www.computerforensicsdigest.com/215-twitter-comment-lands-british-man-in-jail.html Leadership Moment - Where does IS fit in your organization http://arstechnica.com/business/guides/2010/01/where-to-locate-the-is-security-function-and-how-to-manage-it.ars Upcoming Features & Events - "Redneck Security Moment of the Month" - The Atlanta Shmoopedition (Last Call For Riders!!!!).... Playing Your Part - Did you like the podcast? Great! Andy really wants a MBP17...no matter what he says to the contrary... - Did you not like the podcast? Tell us how we can do better by reaching out to us on the discussion boards. We'll read each one - we promise!

28-1-10

Gratis

Bekijk in iTunes

80

Episode 3 - Third Time's The Charm

Episode 3 - Third Time's the Charm I. Introductions II. Announcements, Gossip, and Smack Talk III. News and Other Items of Distraction IV. Redneck Security Story V. Upcoming Features and Events V. Playing Your Part I. Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew on The Staff page. II. Announcement, Gossip, and Smack Talk - Welcome to Episode 3 "Third Time's the Charm" of the SFS Podcast. We hope that we get all the post production kinks worked out - and if they aren't we're docking Martin's pay. We hope you have enjoyed the first few episodes and will continue to join us each week as we talk about Information Security from a uniquely southern perspective (with a little Yankee thrown in for balance). - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - More fun interviews with real southern heroes is coming so stay tuned! - Check out the rest of the site: Discussions and feedback, the blog, III. News and Other Items of Distraction A). The latest on the Google (and many others) attack. 1. Insider threat? - http://www.thetechherald.com/article.php/201003/5098/Google-investigating-insider-threat-possibility 2. Bye Bye IE6? - http://www.thetechherald.com/article.php/201003/5096/Google-s-attack-causes-knee-jerk-reaction-from-Germany http://www.thetechherald.com/article.php/201003/5095/Germany-advises-against-using-Internet-Explorer B). Natural Disasters and Scams 1. Yele Haiti Foundation catches heat.- http://www.youtube.com/user/wyclef?blend=1&ob=4 http://www.washingtonpost.com/wp-dyn/content/article/2010/01/15/AR2010011504024.html http://www.thetechherald.com/article.php/201002/5076/Think-before-you-donate-to-Haiti-or-any-other-cause 2. SEO by the bad guys - http://www.thetechherald.com/article.php/201002/5083/BlackHat-SEO-targeting-Haiti-related-searches IV. Redneck Security Story Our first Redneck Security Story actually comes from a Yankee. At least he currently lives north of the Mason-Dixon line. Thanks to Alex Hutton for this story of Redneck security that just goes to prove "It's not where you live that determines the color of your neck". V. What's Next? 1. Atlanta Shmoopedition 2010 2. More Interviews with some of the brightest InfoSec professionals coming up. 3. Atlanta NAISG Feb 10, 2010 Sponsored by Barracuda 4. Send your written or recorded "Redneck Security Stories" (which Martin refers to as "Our Special RSS Feed"...) V. Playing Your Part - Did you like the podcast? Great! We like 20's and 50's with non-sequential serial numbers... - Did you not like the podcast? Tell us how we can do better by adding comments to the discussion boards. We'll read each one - we promise!

20-1-10

Gratis

Bekijk in iTunes

81

Episode 2 - "Now With Improved Audio!"

Episode 2 - "Now With Improved Audio Quality!" I. Introductions II. Announcements, Gossip, and Smack Talk III. News and Other Items of Distraction IV. Interview with shrdlu... V. Playing Your Part I. Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew on The Staff page. II. Announcement, Gossip, and Smack Talk - Welcome to Episode 2 redux of the SFS Podcast. We re-released this episode due to audio quality issues. - Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. - More fun interviews with real southern heroes is coming so stay tuned! - Check out the rest of the site: Discussions and feedback, the blog, III. News and Other Items of Distraction A.) Google reconsiders operations in China. http://googleblog.blogspot.com/2010/01/new-approach-to-china.html Google is not happy with some things that have happened in China and may be packing their bags and leaving the country. B.) IT Job Satisfaction continues to drop. http://www.networkworld.com/news/2010/010610-surveys-it-job-satisfaction-plummets.html?fsrc=netflash-rss http://www.thetechherald.com/article.php/201002/5066/Forrester-says-technolo The economy is starting to pick up and some unhappy IT professionals are brushing off their resumes. Companies need to start (or step up) their monitoring of the IT staff just in case. IV. Interview with shrdlu - We are excited to have the first interview with shrdlu on any podcast... - Note that the Skype connection had a couple of problems but the interview content is amazing and we think you'll enjoy it. V. Playing Your Part - Did you like the podcast? Great! We like 20's and 50's with non-sequential serial numbers... - Did you not like the podcast? Tell us how we can do better by adding comments below. We'll read each one - we promise!

15-1-10

Gratis

Bekijk in iTunes

82

Episode 1 - Take 2(.5)

Episode 1 - Take 2 I. Introductions II. Announcements, Gossip, and Smack Talk III. News and Other Items of Distraction IV. Upcoming Features & Events V. Playing Your Part I. Introductions - Your co-hosts are Andy Willingham and Martin Fisher. - News analysis and general yankee-ness brought to you by Steve Ragan. - You can find out more about this motley crew on The Staff page. II. Announcement, Gossip, and Smack Talk - Welcome to episode 1 Take 2 of the SFS Podcast. Follow us on Twitter (@SFSPodcast) where we'll be tweeting about new episodes & interviews. The original episode 1 ended up on the cutting room floor so we're back from the holiday break and trying it again. - The podcast is intended to fill the gap between the technical podcasts on security and Security Now. We'll be focusing on operations, leadership, and news items that you may have missed the week before. - We want the podcast to be friendly, funny, and make it so you can listen to it with your kids in the car. Nothing against Pauldotcom and Exotic Liability (we listen to them too!) but we wanted to do something a little bit different... - Check out the rest of the site: Discussions and feedback, the blog, III. News and Other Items of Distraction A. EMC/RSA acquires Archer Technologies to further their IT GRC offering. http://www.thetechherald.com/article.php/201001/5027/EMC-to-boost-GRC-with-Archer-purchase http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1378096,00.htm http://blogs.csoonline.com/thoughts_on_emcs_acquisition_of_archer http://securosis.com/blog/rsa-archer B. Gartner buys Burton Group http://www.gartner.com/it/page.jsp?id=1272013 http://www.techcrunch.com/2010/01/05/research-consolidation-gartner-acquires-burton-group-for-56m-in-cash/ C. Kingston Recalls USB Flash Drives http://www.computerworld.com/s/article/9143099/Kingston_recalls_some_USB_drives_due_to_security_flaw?source=rss_news http://erratasec.blogspot.com/2010/01/decrypting-usb-flash-drives-is-easy.html D. Predictions for 2010 This is where we jump on the prediction bandwagon and tell you your security future. Look into the crystal USB drive and give me your PII. IV. Upcoming Features & Events - Atlanta NAISG meeting is 01/13/09 - Details to be announced soon. - "Redneck Security Moment of the Month" - The Atlanta Shmoobus.... - Interviews - We have our first interview lined up for the next episode and it promises to be a good one. We're not telling who it is yet (yes, we do know who it is) but it is someone that that you probably haven't heard interviewed on another podcast. At least not in a long time. V. Playing Your Part - Did you like the podcast? Great! We like 20's and 50's with non-sequential serial numbers... - Did you not like the podcast? Tell us how we can do better by adding comments below. We'll read each one - we promise!

6-1-10

Gratis

Bekijk in iTunes

iTunes is 's werelds eenvoudigste manier om jouw digitale mediacollectie te organiseren en uit te breiden.

The Southern Fried Security Podcast

Van Andy Willingham, Martin Fisher, Steve Ragan

Omschrijving podcast

Luisteraars hebben zich ook geabonneerd op

Klantwaardering

Koppelingen

Meer iTunes

Word iTunes-partner

iTunes Store