Security researcher Gadi Evron is revitalizing the Botnets mailing list to get researchers to share more raw data with the security community. Evron says information sharing is the key to reducing cybercrime.

 

 Security Wire Weekly [15:02m]: Play Now | Play in Popup | Download

Bob Russo, general manager of the PCI Security Standards Council explains the changes ahead in version 1.2 of PCI DSS. The use of WEP is being eliminated and antivirus software is required for all operating systems, Russo said.

 

 Security Wire Weekly [16:43m]: Play Now | Play in Popup | Download

Raffael Marty, author of Applied Security Visualization, talks about how security visualization techniques can help improve security decisions. Marty is chief security strategist at log analysis vendor Splunk.

 

 Security Wire Weekly [19:27m]: Play Now | Play in Popup | Download

ModSecurity, the popular open source Web application firewall is getting a new tool that observes and analyzes application traffic and helps establish accepted behavior. In this special edition of Security Wire Weekly, Ivan Ristic, recognized for his work in building the ModSecurity, discusses his new ModProfiler and the challenges of deploying Web application firewalls. Ristic is vice president of security research at Breach Security Inc.

 

 Security Wire Weekly [21:36m]: Play Now | Play in Popup | Download

Ashley Schwartau, director of a new documentary Hackers Are People Too, explains the challenges of making a movie about hackers. The documentary looks at the human side of the hacking community.The film debuted at DEFCON 16.

 

 Security Wire Weekly [14:11m]: Play Now | Play in Popup | Download

Dan Kaminsky gave his Black Hat briefing this week, disclosing full details about the extent of the DNS cache poisoning flaw. Listen to excerpts of his briefing.

 

 Security Wire Weekly [7:46m]: Play Now | Play in Popup | Download

Karsten Nohl, the security researcher who was part of a team that broke the crypto algorithm in the Mifare Classic RFID-based smart card, talks about his upcoming briefing at Black Hat in Las Vegas. Nohl, a University of Virgina graduate student talks about how RFID use could improve security in smart cards.

 

 SWW: Wireless insecurities [21:11m]: Play Now | Play in Popup | Download

Security researchers Billy Rios and Nitesh Dhanjani explain how they infiltrated the phishing underground in a preview of their upcoming Black Hat presentation: “Bad Sushi: Beating Phishers at Their Own Game.”

 

 Security Wire Weekly: Infiltrating Phishers [32:20m]: Play Now | Play in Popup | Download

Christofer Hoff, chief security architect at Unisys, previews his upcoming Black Hat briefing “The four horsemen of the virtualization security apocalypse.” Hoff says virtualization security could prove to be very costly for companies as they try to sort out the new governance, oversight and manageability issues being introduced by the technology.

 

 SWW: Virtualization Security Apocalypse: Play Now | Play in Popup | Download

Noted network security researcher Dan Kaminsky, director of penetration testing at IOActive, explains his discovery of a DNS Server flaw that led to a coordinated vendor patch. Also joining is Rich Mogull, founder of independent information security consulting firm Securosis, who discusses flaw disclosure in the wake of the discovery.

 

 Security Wire Weekly: Play Now | Play in Popup | Download