Guest Richard Henderson talks about his workshop on SDR in Las Vegas at DEFCON25!
Slides from Richard’s SDR workshop at DEFCON 25: DEFCON-25-Scanning-The-Airwaves
Richard Henderson is global security strategist at Absolute Software. We recorded this interview in July 2017 during the Black Hat 2017 security conference in Las Vegas, NV. Podcast available on iTunes, Google Play and Stitcher. Subscribe!
This episode’s guest is Ray Watson who presented at Black Hat 2017. He joins me to talk about hacker history and share some of his infosec pet peeves. We recorded this interview in July 2017 during the week of Black Hat and DEFCON in Las Vegas. His talk was entitled “Jedi Masters, Sith Lords, and Droids: 5 Generations of Hacking” and can be seen in it’s entirety below.
Check out this interview I did with @tjlaher for Cloudera on #cybercrime #hackers #Anonymous #CFAA #ITbootcamps #pizzabombing & more!
Guest Jek Hyde of Sincerely Security with prosthetic “baby bump.”
My guest this episode is “Jek” a social engineer/pen-tester who recently live tweeted a real world penetration test in which her team successfully breached a client’s corporate offices and networks. We talk about how she got into social engineering and information security. It was fun to learn about her experiences and pick up a few tips and tricks as I prepare for the Social Engineering Capture The Flag competition at DEFCON next week!
ICYMI: I moderated a BrightTALK webinar on the recent Google Docs phishing attack.
Join BrightTALK and check out this informative panel discussion featuring myself along with panelists Nathan Wenzler and Kowsik Guruswamy.
A massive phishing campaign targeting Google accounts ripped through the internet on a Wednesday afternoon in early May. Phishing scams are pretty common. What sets this scam apart is that it is more convincing than most. The email takes users who click on the file to a legitimate Google sign-in screen to grant permissions. If you received the email or are concerned you might be targeted next, join this interactive Q&A panel to get the facts and protect your account and your organization.
We discuss:
– What is the Google Docs email scam?
– How is this scam different from other phishing scams?
– What’s the deal with Eugene Pupov?
– Who’s at risk and how can you avoid being a victim?
– What can we expect in the future?
Moderator:
– Vince Tocce, Vince in the Bay Podcast
Speakers:
– Nathan Wenzler, Chief Security Strategist at AsTech Consulting
– Kowsik Guruswamy, CTO for Menlo Security
I recently moderated a BrightTALK webinar on the “Vault 7” CIA document leaks.
Join BrightTALK and check out this discussion titled “WikiLeaks Vault 7: Facts, Fiction & Implications” with distinguished speakers Jake Kouns (Risk Based Security) and Kenesa Ahmad (Aleada Consulting).
Another year, another wave of security incidents and threat models to keep the cybersecurity industry busy. So there was plenty to discuss and share as the InfoSec community flocked to San Francisco for the annual RSA Conference last month.
As always, the latest trends in the industry were addressed. Large data breaches, quickly growing threat models, security education, political hacking, and the risks posed by the Internet of Things were common threads throughout many of the keynotes, sessions, workshops, expos, and general chatter among attendees.
RSAC has more of a trade show feel compared to other security conferences so I’ve learned over the years that it’s best to approach the conference as an opportunity to meet and network with industry experts. This year I spent less time attending the talks and more time meeting with the players in the industry who are there to make deals and form partnerships.
However, I did catch several enlightening talks and panel discussions featuring the likes of ex-CIA operative Valerie Plame, security guru Bruce Schneier, researcher Rob Graham, people-security expert Masha Sedova, and security consultant Jeff Carr. Also enjoyed the entertaining keynotes by Late Night host Seth Meyers and astrophysicist Neil deGrasse Tyson.
CHECK OUT ROB GRAHAM’S TALK ON MIRAI AND IoT BOTNETS HERE!
Throughout the week I was lucky to catch up with several industry professionals representing some of the top tier firms in the cybersecurity sector who shared their take on the challenges and trends facing cybersecurity firms, their clients, and end users.
This episode of the podcast features interviews collected at RSAC 2017.
BIG THANKS TO THE GUESTS ON THIS EPISODE!!
Dave Lewis
Donald Meyer
Donald Meyer – Check Point Software
Dario Forte
Sebastian, Alex and Selena – Onapsis
Scott Bollinger
Scott Bollinger – Security Researcher
Jeffrey Carr
SUBSCRIBE on iTunes, GooglePlay, Stitcher, and Soundcloud!!
Look who’s in an episode of the new CNNgo series Mostly Human with Laurie Segall!
Here’s a link to the video:
http://www.cnn.com/videos/cnnmoney/2017/03/08/mostly-human-hacker-down.cnnmoney/video/playlists/atv-mostly-human/
Last week I moderated a BrightTALK webinar on the infamous “Cloudbleed” bug.
Join BrightTALK and check out this informative panel discussion I moderated titled “CloudBleed: The Good, The Bad, and The Ugly for Users, Companies and Society.” Featuring myself along with panelists Kaushik Narayan (Skyhigh Networks), Lori MacVittie (F5 Networks), Bojan Simic (HYPR Corp), and Tom Gorup (Rook Security).
Next Wed at 10 am PDT/ 1pm EDT (March 22, 2017) I will be moderating a BrightTALK webinar on the recent “Vault 7” CIA document leaks titled WikiLeaks Vault 7: Facts, Fiction & Implications with distinguished panelists Jake Kouns, (Risk Based Security), Kenesa Ahmad (WISP) and more to be announced.
“Mirai and IoT Botnet Analysis” MP3 AUDIO FILE
“Mirai and IoT Botnet Analysis” SLIDES – PDF FILE
At this year’s RSA security conference in San Francisco, researcher Rob Graham gave a presentation entitled “Mirai and IoT Botnet Analysis.” His talk examined the infamous “Mirai” Internet of Things botnet and shared details on how it operates. Graham also covered technical aspects of the cameras it infects and detailed his own experimentation with Mirai in the wild. He went on to discuss last year’s massive DDoS attacks on DNS provider Dyn, which involved variations of the Mirai IoT botnet.
No official AV video recording of this talk, but the audio and RSAC slides are all you need.
Enjoy!
Also, check out Rob’s blog!
-Vince
Vince in the Bay 