Risky Business By cover art

Risky Business

By: Patrick Gray
Listen for free

  • Summary

  • Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
    Copyright 2007-2024 Patrick Gray
    Show more Show less
activate_primeday_promo_in_buybox_DT
Episodes
  • Risky Biz Soap Box: Mike Wiacek on lazy mode threat hunting

    Risky Biz Soap Box: Mike Wiacek on lazy mode threat hunting
    Jul 17 2024

    This Soap Box edition of the show is with Mike Wiacek, the CEO and Founder of Stairwell.

    Stairwell is a platform that creates something similar to an NDR, but for file analysis instead of network traffic. The idea is you get a copy of every unique file in your environment to the Stairwell platform, via a file forwarding agent. You get an inventory that lists where these files exist in your environment, at what times, and from there you can start doing analysis.

    If you find a dodgy file you can do all the usual malware analysis type stuff, but you can also do things like immediately find out where else that file is in your organisation, or even where else it was. From there you can identify other files that are similar – variants of those files – and search for those. And you can unpack all this very, very quickly.

    This is the type of tool that EDR companies use internally to do threat hunting, but it’s just for you and your org – you can drive it. And as you’ll hear, the idea of a transparent, customisable and programmable security stack is something that’s on-trend at the moment. Mike lays out the case that doing this sort of file analysis in your organisation makes a whole lot of sense.
    Show more Show less
    31 mins
  • Wide World of Cyber: State directed cybercrime

    Wide World of Cyber: State directed cybercrime
    Jul 10 2024

    In this podcast Alex Stamos, Chris Krebs and Patrick Gray discuss the relationship between cybercrime and the state, which is often more complicated than it should be.

    While the US Government and its allies fight the scourge of ransomware, other governments are using it to either raise revenue or irritate their foes. North Korea sees ransomware as a money spinner, while the Kremlin enjoys poking the west in the eye with it.

    Join us for a breakdown of the relationships between governments who should know better and the worst types of people on the planet.
    Show more Show less
    40 mins
  • Risky Business #755 -- SSH 0day! Polyfill drama! Entrust crushed!

    Risky Business #755 -- SSH 0day! Polyfill drama! Entrust crushed!
    Jul 3 2024
    On this week’s show, Patrick Gray and Adam Boileau discuss the week’s security news, including: Widely used polyfill javascript gets hijacked by its new ownersMacOS supply chain disaster bullet dodgedThat OpenSSH remote code exec OH MY <3Entrust gets its CA business kicked to the kerb by GoogleSouth Korean telco intentionally viruses 600k customersMicrosoft continues to deeply underwhelmAnd much, much more. This week’s episode is sponsored by Greynoise. Founder Andrew Morris joins to talk about ways to track attackers across NAT and VPNs, as well as how you can join in the fun of running an internet-scale honeypot network. Show notes Polyfill, Cloudflare trade barbs after reports of supply chain attack threatening 100k websites3 million iOS and macOS apps were exposed to potent supply-chain attacksregreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)Google Online Security Blog: Sustaining Digital Certificate Security - Entrust Certificate DistrustTeamViewer: Hackers copied employee directory data and encrypted passwordsSouth Korean telecom company attacks customers with malware — over 600,000 torrent users report missing files, strange folders, and disabled PCs | Tom's HardwareCDK eyes service restoration for all car dealers by Fourth of July‘I don’t see it happening’: CISA chief dismisses ban on ransomware paymentsPatelco Credit Union ransomware attack halts banking services for nearly half a million membersLockBit claims cyberattack on Croatia’s largest hospitalInside a Violent Gang's Ruthless Crypto-Stealing Home Invasion SpreeSuspected Chinese gov’t hackers used ransomware as cover in attacks on Brazil presidency, Indian health orgNearly 4,000 arrested in global police crackdown on online scam networksUSD 257 million seized in global police crackdown against online scamsMicrosoft alerts additional customers of state-linked threat group attacksMidnight Blizzard Microsoft Email Data Sharing Request: Legit? : r/Office365Polish Parliament strips official of immunity, clearing path for prosecution in spyware scandalStolen credentials could unmask thousands of darknet child abuse website usersWA man set up fake free wifi at Australian airports and on flights to steal people’s data, police allegeBytecode Breakdown: Unraveling Factorio's Lua Security FlawsiOS 17 lockdown mode blocking CarPlay? : r/ios
    Show more Show less
    59 mins
Politics & Government
Show more Show less

What listeners say about Risky Business

Average customer ratings
Overall
  • 5 out of 5 stars
  • 5 Stars
    1
  • 4 Stars
    0
  • 3 Stars
    0
  • 2 Stars
    0
  • 1 Stars
    0
Performance
  • 5 out of 5 stars
  • 5 Stars
    1
  • 4 Stars
    0
  • 3 Stars
    0
  • 2 Stars
    0
  • 1 Stars
    0
Story
  • 5 out of 5 stars
  • 5 Stars
    1
  • 4 Stars
    0
  • 3 Stars
    0
  • 2 Stars
    0
  • 1 Stars
    0

Reviews - Please select the tabs below to change the source of reviews.

Audible.com reviews

Amazon reviews
No Reviews are Available