Posted on November 8, 2009 by datasecurityblog
30 minutes every week on data security, privacy, and the law…..(plus or minus ten)
On this week’s program:
* Why are web drive-by downloads proliferating like cockroaches?
* Sixty Minutes just covered a data security story. We rate the coverage.
* Our take on this week’s news.
–> Stream This Week’s Show with our Built-In Flash Player:
–> Scroll down to [...]
Filed under: Breach, Conference Coverage, Court Cases, Podcast, Report Security Flaws, Vulnerabilities, criminal forensics, darkweb, ediscovery, web server security | Tagged: 60 Minutes, Apple, Drive-by download, iPhone, mobile phone security, OWASP, PCI, Power Grid, SQL Injection, SSL, Surveillance cameras, web application security, XSS | 1 Comment »
Posted on November 5, 2009 by datasecurityblog
For Thursday November 5th, we depart from our regular format for those with an advanced understanding of information security technologies. This episode is a one-topic special edition, providing coverage of a major man-in-the-middle flaw discovered in the SSL protocol (see, we told you it was for security geeks).
We will return to our regular format of [...]
Filed under: Annoucements, Breach, Exclusive, darkweb | Tagged: Marsh Ray, PhoneFactor, SSL | Leave a Comment »
Posted on November 1, 2009 by datasecurityblog
30 minutes every week on data security, privacy, and the law…..(plus or minus ten)
On this week’s program:
* Placing an online bet for the World Series? Employees of online betting sites might be selling customer data online.
* Google Book Search: What data is Google storing about readers of online books?
* Our take on this week’s [...]
Filed under: Annoucements, Breach, Court Cases, Legislation, Podcast, Vulnerabilities, criminal forensics, darkweb, ediscovery | Tagged: darkweb, ediscovery, EFF, FCC, Google Book Search, Law Abiding Citizen, Online Bingo, Online Gaming, Online Poker, Online Sportsbook, Social Engineering, World Series | Leave a Comment »
Posted on October 19, 2009 by datasecurityblog
30 minutes every week on data security, privacy, and the law…..(plus or minus ten)
On this week’s program:
* Now the bad guys are holding computer files for ransom if you don’t buy their phony anti-virus software. We have a workaround.
* Midyear elections are coming up, and the last thing the campaigns seem to think about [...]
Filed under: Breach, Business Continuity, Court Cases, Vulnerabilities, darkweb | Tagged: darkweb, Drive-by download, PCI, Ransomware, Rogueware, Total Security, Trojan, USB security | Leave a Comment »
Posted on October 4, 2009 by datasecurityblog
30 minutes every week on data security, privacy, and the law…..(plus or minus ten)
On this week’s program:
* Polymorphic malware – every time it attacks it has a new signature.
* The balance on your bank account looks find, too bad all your money’s gone.
* Our take on this week’s news.
–> Stream This Week’s Show with our [...]
Filed under: Breach, Business Continuity, Conference Coverage, Court Cases, Podcast, Vulnerabilities, darkweb, web server security | Tagged: darkweb, Drive-by download, Polymorphic Malware, Trojan, TSA, Zues Banking Trojan | Leave a Comment »
Posted on September 30, 2009 by datasecurityblog
Reporting from the ISACA Security and Risk Management Conference in Las Vegas, we have breaking security news this morning.
Organized cyber criminals have added a new damaging element to an already viscous cyber attack. Yuval Ben-Itzhak, CTO of Finjan spoke by phone with the Data Security Podcast about a frightening new twist to the surge of [...]
Filed under: Annoucements, Breach, Conference Coverage, Court Cases, Exclusive, Vulnerabilities, criminal forensics, darkweb, ediscovery, web server security | Tagged: darkweb, Drive-by download, ediscovery, web application security, XSS | Leave a Comment »
Posted on September 20, 2009 by datasecurityblog
30 minutes every week on data security, privacy, and the law…..(plus or minus five)
On this week’s program:
* Full access to anyone’s Facebook account for $100?
* Update on confidential data case in Maricopa County, AZ
* Our take on this week’s news.
–> Stream This Week’s Show with our Built-In Flash Player:
–> Scroll down to [...]
Filed under: Breach, Court Cases, Legislation, Podcast, Vulnerabilities, criminal forensics, darkweb, eMail Security, ediscovery, web server security | Tagged: darkweb, Drive-by download, SQL Injection, Trojan, web application security, XSS | Leave a Comment »
Posted on September 13, 2009 by datasecurityblog
30 minutes every week on data security, privacy, and the law…..(plus or minus five)
On this week’s program:
* Beware the non-delivery email notice – it might really be an attack.
* Apple has added an anti-phishing feature to the new iphone but few people have been able to get it to work right.
* Our take on this [...]
Filed under: Breach, Legislation, Podcast, Report Security Flaws, Vulnerabilities, darkweb, eMail Security, ediscovery, web server security | Tagged: Apple, BlackBerry, darkweb, iPhone, Spam, SQL Injection | Leave a Comment »
