Tag Archives: interview

Contrarisk Security Podcast #0033: DDoS and information security

» Listen or download on the podcasts page » For a long time, the trends in DDoS have been towards a higher frequency of attacks and larger aggregate attacks. But more recently, there has been a significant trend towards the use of DDoS as part of multi-vector attacks, as a masking agent or enabling vector, where the intent has not been… Read more »

Contrarisk Security Podcast #0030: Identity and privacy

» Listen or download now on the podcasts page » With the Internet now playing such as intrinsic part of our lives, identity management (IM) has entered a new world. As Daniel Raskin, VP of marketing at ForgeRock, explains in this interview, what was once a simple matter of allowing employees to authenticate themselves on a local network has moved out… Read more »

Contrarisk Security Podcast #0029: Vulnerability monitoring

» Listen or download now on the podcasts page » Is the real threat to our security APTs or apathy? We all know that the software on our systems contains vulnerabilities and needs constant patching. And malware generally attacks well-known vulnerabilities that we have the ability to fix. So why isn’t it done? “If you can implement a good vulnerability management programme,… Read more »

Contrarisk Security Podcast 0023: M2M and malware detection

» Listen or download now on the podcasts page » Machine-to-Machine (M2M) is a domain that includes industrial systems, telemetry, Scada and so on. And while Scada has increasingly become a focus of security concerns, this has tended to concentrate on the the control systems themselves, rather than the entire chain from sensor to control room. In this episode, we talk to… Read more »

ContraRisk Security Podcast 0019: The evolution of pen-testing

» Listen or download now on the podcast page » For some organisations, penetration testing is merely a compliance requirement that they hope will find the minimum of weaknesses. For others, it’s a key step is discovering where their weaknesses lay, so they can fix them. But is pen-testing too often an afterthought, taking place after systems have been developed and… Read more »

ContraRisk Security Podcast 0010: APTs

» Listen or download now on the podcasts page » The Advanced Persistent Threat (APT) is the bogeyman of information security. Some people say ‘be afraid, be very afraid’ while others laugh and deny its very existence. The problem, of course, is one of definition. Too often the term gets stretched to fit whatever point someone is trying to make, or… Read more »