In this Security Newsmakers Podcast, SearchSecurity.com’s Neil Roiter asks Scott Weiss, vice president and general manager of Cisco’s Security Technology Group and former IronPort CEO, about the state of the self-defending network in 2008 and the impact of the acquisition over the past 18 months.

 

 Security Newsmakers: Scott Weiss [20:19m]: Play Now | Play in Popup | Download

Is your data safe? Do you know who you can trust? Do you know where the next attack is likely to come from? Think again. Verizon Business went through more than 500 data breach investigations over four years to determine trends in attack vectors and where victim organizations fell down. The findings of its “2008 Data Breach Investigations Report” may surprise you. In the July Newsmakers Podcast SearchSecurity.com’s Neil Roiter asks Verizon’s Bryan Sartin, managing principal, investigative response, what lessons we can take from this unique report.

 

 Lessons Learned: Four Years of Data Breaches: Play Now | Play in Popup | Download

Greg Hoglund, a noted security researcher and author who specializes in Windows rootkits and exploiting vulnerabilities explains why software is just as vulnerable today as it was in 1999. Hoglund also talks about the rootkit threat and why online gaming isn’t all fun and games.

 

 Security Newsmaker [20:17m]: Play Now | Play in Popup | Download

NSS Labs, well-known for its security product testing and certification program, recently launched its PCI Suitability service. Merchants–from global giants to small retailers–are faced with difficult buying decisions, as they determine what technologies they need to deploy to comply with PCI-DSS. Smaller companies, in particular, need to evaluate products like intrusion prevention systems and Web application firewalls that might not have gotten serious budget consideration before PCI. In this podcast, NSS’ president Rick Moy talks about the information PCI Suitability reports provide and how companies can use that information to help them make informed buying decisions.

 

 Security Newsmakers: NSS Labs to focus on PCI technologies: Play Now | Play in Popup | Download

Pedram Amini, head of TippingPoint’s security research group, co-wrote the recently-released book, “Fuzzing: Brute Force Vulnerability Discovery,” and recently unveiled the new Sulley fuzzing framework. In this conversation, he talks about the book and explains how the Sulley framework will take fuzzing to the next level.

 

 Security Newsmaker: Play Now | Play in Popup | Download

Mozilla security chief Window Snyder compares the security of her organization to that of her former employer, Microsoft, including the differences between IE and Firefox security.

 

 Security Newsmaker: Play Now | Play in Popup | Download

In Episode 2 of our Security Newsmakers podcast series, Information Security magazine’s Michael Mimoso and Marcia Savage, ask cyber security chief Greg Garcia about his priorities moving forward and get his take on the current threat environment. Garcia attended RSA Conference 2007 in February and told conference attendees that government, enterprises and academia need to work together to fight growing Internet threats.

 

 Security Newsmakers: Play Now | Play in Popup | Download

In Episode 1 of SearchSecurity.com’s Newsmaker podcast series, researcher David Maynor talks about the threat to laptop wireless cards and the stir a demonstration caused at last year’s Black Hat conference. Listen to our Newsmaker Rapid-fire Q&A segment. (Runtime: 13:43)

HIGHLIGHTS:
1:13 - Some people complained that Apple was being unfairly targeted.
2:51 - The flaws discovered as a result of the Black Hat presentation.
4:47 - The response from security vendors when notified of a wireless problem.
8:41 - Maynor explains the biggest threats to enterprises.
11:00 - Newsmaker rapid-fire Q&A.

 

 Security Newsmaker: Play Now | Play in Popup | Download

Security luminary Dan Geer, vice president and chief scientist for security firm Verdasys, discusses the infamous 2003 research paper that caused him to lose his job, plus how Microsoft threatens IT security, the fatal flaw of client-based computing and the real reason behind so many publicized data breaches. Listen now on your computer or download to your favorite digital audio device. Runtime: 24:16.

HIGHLIGHTS:
6:30 — Why antivirus is doomed
13:15 — The next bad virus
22:00 — Rapid-fire Q&A

 

 Security Newsmaker: Play Now | Play in Popup | Download