Skip to content

Categories:

Episode 143 – Menudo

This week Andy made his triumphant return back to the show with Martin, Steve, and Joseph. They dove right back in on some of the recent breaches, as well as a discussion about how CISOs should respond when they find themselves in a “resume-generating event.”

“C-level security”

http://www.businessweek.com/articles/2014-09-12/home-depot-didnt-encrypt-credit-card-data-former-workers-say

What are the technical details behind the Home Depot breach? There’s a lot of people looking into that.

http://sub0day.com/2014/09/pos-hacks/

http://www.darkreading.com/home-depot-breach-may-not-be-related-to-blackpos-target/d/d-id/1315636

“Six stages of data breach denial”

http://www.csoonline.com/article/2606174/infosec-careers/caught-in-the-breach-how-a-good-cso-confronts-inevitable-bad-news.html?nsdr=true

Minecraft purchased by Microsoft, and Notch is leaving Mojang

http://pastebin.com/raw.php?i=n1qTeikM

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 142 – Orange Aprons

It kind of felt like Groundhog Day on the show this evening as Martin, Steve, and Joseph talked about some of the pressing stories that have come to light over the past week. Steve also gave some insight into discussion of breaches in the media.

Home Depot has issued a statement confirming that they have been breached, and have posted a FAQ for the breach.

http://www.csoonline.com/article/2604320/data-protection/what-you-need-to-know-about-the-home-depot-data-breach.html

https://corporate.homedepot.com/MediaCenter/Pages/Statement1.aspx

A simple misconfiguration error led to a development server compromise for Healthcare.gov.

http://www.csoonline.com/article/2602964/data-protection/configuration-errors-lead-to-healthcare-gov-breach.html

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter.

Posted in Podcasts.


Episode 141 – What’s goin’ on?

Tonight Martin and Joseph tackled some of the breaking news of the week.

Breaking news: Home Depot breached?

http://krebsonsecurity.com/2014/09/banks-credit-card-breach-at-home-depot/

‘Celebgate’ is upon us, apparently.

http://www.theverge.com/2014/9/2/6098107/apple-denies-icloud-breach-celebrity-nude-photo-hack

And according to Kaspersky, if we’ve done nothing wrong, we have nothing to fear.

http://www.theregister.co.uk/2014/08/29/kaspersky_backpedals_on_done_nothing_wrong_nothing_to_fear_company_article/

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 140 – Dave Kennedy Fan Club

Tonight was an interesting news night for Martin, Steve, and Joseph. This was an episode filled with healthcare discussion.

First, CHS Hacked via Heartbleed?

https://www.trustedsec.com/august-2014/chs-hacked-heartbleed-exclusive-trustedsec/

http://www.sec.gov/Archives/edgar/data/1108109/000119312514312504/d776541d8k.htm

Second, CMS refuses to reveal details on the security behind Healthcare.gov

http://bigstory.ap.org/article/us-wont-reveal-records-health-website-security

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 138 – A Day Late and 3917 Dogecoins Short

Tonight Martin, Yvette, Steve, and Joseph tackled some fun topics, stories are below.

Is this the end of password managers? No.

http://arstechnica.com/security/2014/07/severe-password-manager-attacks-steal-digital-keys-and-data-en-masse/

Bitcoin isn’t Money

http://www.wired.com/2014/07/silkroad-bitcoin-isnt-money/

What can you do to help your security budget?

http://www.csoonline.com/article/2369048/security-leadership/do-these-3-things-to-get-the-security-budget-you-want.html

Clearly we should track all of our special snowflakes.

http://www.npr.org/blogs/alltechconsidered/2014/07/10/330406463/a-new-device-lets-you-track-your-preschooler-and-listen-in

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 137 – Helvetica?

Tonight went a little off the rails, but Martin (@armorguy), Steve (@steveD3), and Joseph (@jsokoly) had some fun talking about stories.

DNS is important

http://www.darkreading.com/microsofts-seizure-of-no-ip-domains-disrupted-criminals-and-innocents-alike/d/d-id/1279079

Are CISOs too confident?

http://net-security.org/secworld.php?id=17047

Has the Internet of Things gone “mainstream”?

http://www.npr.org/2014/07/05/328888392/from-thermostats-to-prison-security-more-things-going-online

Can we finally kill Comic Sans?

http://theuniversaltypeface.com/home

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 136 – Let’s talk about pri-va-cy

Tonight Joseph, Andy, and Steve continued their theme of talking about themes. Joseph brought up a discussion of privacy and got the guys talking. The stories that they discussed are below.

http://www.macworld.com/article/2366921/why-apple-really-cares-about-your-privacy.html

http://www.wired.com/2014/06/usable-security/

http://www.networkworld.com/article/2393044/security/german-government-to-drop-verizon-because-of-us-spying.html

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 135 – A Basket of Eggs

Tonight was a little different of an episode. Joseph, Steve, and Andy talked about how tired they were of the “Breach of the Week,” how what is old is new again, and the Code Spaces nightmare scenario.

http://www.csoonline.com/article/2137033/network-security/meetup-struggles-under-the-weight-of-a-massive-ddos-attack.html

http://www.csoonline.com/article/2114873/network-security/after-refusing-to-pay-ransom–basecamp-hit-with-ddos.html

http://www.csoonline.com/article/2362004/cloud-security/ddos-triggers-massive-evernote-outage.html

http://www.csoonline.com/article/2362243/malware-cybercrime/feedly-hit-by-ddos-after-refusing-extortion-demands.html

http://www.csoonline.com/article/2365062/disaster-recovery/code-spaces-forced-to-close-its-doors-after-security-incident.html

http://www.csoonline.com/article/2365772/cloud-security/how-to-avoid-having-your-cloud-hosted-business-destroyed-by-hackers.html

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 134 – GOOOOAAAAAALLLLL!!!

Tonight Martin, Joseph, Yvette, and Steve managed to pull themselves away from the US vs Ghana World Cup game long enough to talk about some stories tonight.

When was the last time we saw someone resort to carbon copy?

http://www.darkreading.com/pf-changs-confirms-security-breach/d/d-id/1278577

Is Target’s New CISO doomed from the start?

http://www.csoonline.com/article/2363210/data-protection/target-top-security-officer-reporting-to-cio-seen-as-a-mistake.html

http://www.csoonline.com/article/2360984/security-leadership/the-cso-s-failure-to-lead.html

TweetDeck was “hacked”, but they sure handled it well.

http://www.wired.com/2014/06/tweetdeck-hacked/

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.


Episode 133 – The Doctor is In

Tonight, Martin, Steve, and Joseph talked healthcare and mobile devices. Joseph asked questions, and Martin clarified things for him.

https://www.apple.com/ios/ios8/health/

http://www.zdnet.com/new-ios-7-lock-screen-flaw-opens-up-iphones-ipads-in-seconds-7000030335/

http://recode.net/2014/06/02/the-doctor-will-see-you-on-your-iphone-now

http://www.theverge.com/2014/6/5/5765732/talkspace-smartphone-therapy-apps

If you’d like to subscribe, you can find the RSS feed here: http://sfspodcast.libsyn.com/rss or on iTunes.

And if you have any feedback, drop us a comment or find us at @SFSPodcast on Twitter

Posted in Podcasts.