20 episodes

Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.

Risky Business ITRadio.com.au

    • Technology
    • 5.0, 2 Ratings

Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.

    Risky Biz Soap Box: Yubico Chief Solutions Officer Jerrod Chong

    Risky Biz Soap Box: Yubico Chief Solutions Officer Jerrod Chong

    Soap Box is the wholly sponsored podcast series we do here at Risky.Biz. That means everyone you hear on this podcast paid to be here. In this podcast you’re going to hear my latest interview with Jerrod Chong, Yubico’s Chief Solutions Officer.

    Hardware security keys like Yubikeys have come a long way, even over the last couple of years. The biggest change is that the support for hardware keys is borderline ubiquitous now. FIDO2 support is in all the major browsers. You can even use Yubikeys with Google apps on an iPhone. The plumbing is here, it’s arrived.

    But there are still some hurdles to overcome before the full potential of hardware security keys will be unlocked. One issue is that if you’re operating an at-scale service, you’re still stuck with the same old problems around account recovery. The process problems.

    So in this interview I talk with Jerrod about how far things have come and where they might go next.

    Risky Business #592 -- We're back. Did we miss anything?

    Risky Business #592 -- We're back. Did we miss anything?

    On this week’s show Patrick and Adam discuss the week’s security news, including:


    Two Chinese nationals charged with freelancing for MSS
    Russia, China hacking COVID-19 research
    The world dodged a bullet on the Windows DNS bug
    Twitter blue tick pwnapalooza
    Much, much more.


    This week’s show is brought to you by Corelight. The company’s Chief Product Officer, Brian Dye, will be along for a chat a bit later on. We look at how adopting a zero trust model, sadly, doesn’t mean you can just ignore your network completely, as much as that would be nice.

    You can subscribe to the new Risky Business newsletter, Seriously Risky Business, here.

    You can subscribe to our new YouTube channel here.

    Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.

    Risky Biz Soap Box: Facebook, under the hood

    Risky Biz Soap Box: Facebook, under the hood

    Normally these Soap Box podcasts – which are wholly sponsored – feature vendors trying to sell you stuff. But this time we’re doing something different: This podcast is an interview with two senior Facebook staffers:


    Pedro Canahuati, VP of Engineering
    Chris Bream, Security Engineering Director.


    Why is facebook’s security engineering group sponsoring a Soap Box episode of Risky Biz? They figure lifting the veil a bit on how things are done over there will be good for them. They’re always hiring, right?

    Enjoy!

    (A reminder – there will be no weekly show this week or next. The weekly Risky Biz news podcast returns on July 29.)

    Risky Business #591 -- EncroChat user experience includes getting owned, going to prison

    Risky Business #591 -- EncroChat user experience includes getting owned, going to prison

    On this week’s show Patrick and Adam discuss the week’s security news, including:


    The latest on the EncroChat hack-related arrests
    Details about the fresh F5 and Citrix bugs
    Natanz go boom
    Paying Wastedlocker ransoms violates Treasury sanctions
    North Korea embraces Magecart (lol)
    Much, much more…


    This week’s show is brought to you by Cmd Security. They make a very useful Linux security agent. Essentially they add an additional layer of control to your Linux systems: you can restrict user actions, even for root.

    Instead of having one of their own staff on to the show this week they’ve nominated a customer. HPE is a Cmd user, they actually heard about it on the podcast and wound up buying it. So HPE ITOC engineering lead Adam Cardillo and his colleague Curtis Simpson – the ITOC CISO – will both join us in this week’s sponsor interview to talk about how they’re using the software.

    You can subscribe to the new Risky Business newsletter, Seriously Risky Business, here.

    You can subscribe to our new YouTube channel here.

    Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.

    Risky Biz Soap Box: No magic wand for business email compromise (BEC)

    Risky Biz Soap Box: No magic wand for business email compromise (BEC)

    This edition of the Soap Box podcast is brought to you by Proofpoint.

    Today’s guest is Proofpoint’s EVP of Cybersecurity Strategy, Ryan Kalember, and the topic is business email compromise, or BEC.

    BEC is a big deal, generating billions of dollars in losses every year across basically all industry verticals and levels of government. Until recently, there haven’t been many technical controls that help to mitigate it.

    Trying to get on top of this issue is very much in Ryan Kalember’s job description. BEC is a diabolical problem, and as a company with a specialty in email security, Proofpoint is really expected to help clients get on top of it. In this conversation you’ll hear us talk a bunch about the problem and Proofpoint’s approach to trying to minimise BEC.

    Risky Business #590 -- REPOST: It turns out we're not SAML experts

    Risky Business #590 -- REPOST: It turns out we're not SAML experts

    On this week’s show Patrick and Adam discuss the week’s security news, including:


    Inside the new American “e2ee busting” bill
    Julian Assange hit with (another) superseding indictment
    Trustwave uncovers sneaky Chinese accounting software backdoor
    Much, much more…


    This week’s show is brought to you by Okta. They are, of course, the identity and auth giant and one of the few sponsors we actually approached last year for 2020 because, well, they are very good at what they do. This week Marc will be joining us to talk about a privacy-related topic. The discussion is nuanced, but it’s basically about how the public perception of privacy risks has diverged from the reality/ Further, that the COVID-19 crisis and the advent of digital contact tracing apps have actually brought general concerns around digital privacy to the fore.

    You can subscribe to the new Risky Business newsletter, Seriously Risky Business, here.

    You can subscribe to our new YouTube channel here.

    Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.

Customer Reviews

5.0 out of 5
2 Ratings

2 Ratings

Top Podcasts In Technology

Listeners Also Subscribed To