Security Wire Weekly

Security Wire Weekly / Sept. 5, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 6 Sep 2007 06:31:00 -0700

TippingPoint security researcher Pedram Amini explains why the Sulley fuzzing framework is an important development in the quest to uncover software vulnerabilities. Also, a new flaw is found in Firefox and MIT fixes flaws in its widely-used Kerberos program.

http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_05_07.mp3

Please subscribe to our new feed:

http://feeds.feedburner.com/techtarget/fHup

Security Wire Weekly: We've changed our feed

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Tue, 4 Sep 2007 08:44:00 -0700

Please use the new feed:

http://feeds.feedburner.com/techtarget/fHup

Security Wire Weekly -- Aug. 8, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 8 Aug 2007 11:29:00 -0700

We will be phasing out this RSS feed. Go to SearchSecurity.com/podcast to get the new Security Wire Weekly feed. Thanks for listening. In this edition, David Foote of Foote Partners shares his latest research on the value of IT security job skills and certifications. Also a wrap up of the news from Black Hat 2007.

Download Security Wire Weekly

Security Wire Weekly Special Edition: Black Hat 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Mon, 6 Aug 2007 12:26:00 -0700

Security researchers Brian Chess and Jacob West of Fortify Software discuss penetration testing, secure software development and their latest book. Also, a researcher warns that attackers could threaten Vista users by exploiting Teredo, an IPv6 tunneling tool enabled by default in the latest Windows OS. We will be phasing out this RSS feed. Go to SearchSecurity.com/podcast to get the new Security Wire Weekly feed. Thanks for listening.

Download mp3

Security Squad: Apple iPhone security, Google’s security moves

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 1 Aug 2007 05:59:00 -0700

SearchSecurity.com editors discuss the state of Apple iPhone security, Google’s continued march into the security market and vulnerability disclosure in the wake of the eBay like vulnerability auction site, WabiSabiLabi.

Download Security Squad

Security Wire Weekly / July 25, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 25 Jul 2007 15:27:00 -0700

Chris Haddad, director of technical architecture at the Burton Group lays out some of the serious threats facing Web services and service oriented architecture development. Also, a review of the week’s news.

Download Security Wire Weekly

We have a new RSS feed

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 19 Jul 2007 07:31:00 -0700

SearchSecurity officially launched the Security Wire Weekly blog today. Please subscribe to our new RSS feed. The blog hosts our Security Wire Weekly podcasts, which have been in production for nearly two years. Soon we’ll be moving all of our archived podcasts to this blog. We hope the new blog will make it easier for you to communicate with the podcast production team. Now, listeners can respond to each podcast by leaving a comment; we have added a feature in which listeners may post 30-second audio comments in response to a particular podcast. In the future, we’ll also be adding our Security Newsmaker, Security Squad and Security360 podcasts onto the blog, which will be accessible through the same feed. All of our podcasts will continue to be accessible at SearchSecurity.com/podcast. Thanks for listening.

Security Wire Weekly / July 18, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 18 Jul 2007 12:54:00 -0700

Amichai Shulman from Imperva describes a flaw his organization discovered in the Oracle E-Business Suite. The flaw was patched Tuesday as part of Oracle's July 2007 CPU. Also, a summary of this week's top IT security news.

Download Security Wire Weekly

Security Squad: Database security, encryption

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Tue, 17 Jul 2007 06:35:00 -0700

Information Security magazine editors Neil Roiter and Michael Mimoso discuss Google's foray into the security market and whether companies should turn to database encryption to meet the PCI Data Security Standard in the wake of the TJX data security breach. Also the editors discuss whether the "month of" security flaw Web sites are helpful in securing software or just shameless publicity by security researchers. And finally, SearchSecurity.com News Writer Bill Brenner provides analysis from the Gartner IT Security Summit in Washington. (Runtime: 23:51)

Download Security Squad

Security Wire Weekly / July 11, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 11 Jul 2007 16:13:00 -0700

Security researchers Tom Cross and David Dewey of IBM's Internet Security Systems X-Force research team discuss their team's discovery of the Microsoft Active Directory flaw and Microsoft's latest round of patches. Plus, a summary of the week's IT security news.

Download Security Wire Weekly

Security Wire Weekly special edition -- PCI audit

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 5 Jul 2007 05:39:00 -0700

SearchSecurity.com reports from the Burton Group Catalyst Conference in San Francisco. Diana Kelley, vice president and service director at the Burton Group, explains the scope of a PCI audit and how some auditors are pitching products and services. Dan Jones, director of IT at the University of Colorado, explains his school's ongoing PCI compliance initiatives.

Download Security Wire Weekly

Security Wire Weekly special edition -- Network security; identity management

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 5 Jul 2007 05:37:00 -0700

SearchSecurity.com reports from the Burton Group Catalyst Conference in San Francisco. Burton Group vice president Phil Schacter sums up the day's sessions on open and secure network architectures. Conference attendees talk about their security concerns including identity management and risk assessments.

Download Security Wire Weekly

Security Wire Weekly / June 27, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 27 Jun 2007 08:00:00 -0700

Cisco executives discuss the acquisition of security vendor IronPort, plus a look at how one IT shop moved into the Vista fast lane despite compatibility problems.

Download Security Wire Weekly

Security Wire Weekly / June 20, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 20 Jun 2007 09:20:00 -0700

This week, former Microsoft CISO Karen Worstell talks about the current state of security. Also, more consolidation in the security market with HP acquiring SPI Dynamics and PatchLink merging with SecureWave.

Download Security Wire Weekly

Security Wire Weekly – June 13, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 13 Jun 2007 09:03:00 -0700

Eric Schultze, chief security architect of Shavlik Technologies helps prioritize Microsoft’s Patch Tuesday Bulletins. Jack Danahy, chief technology officer and founder of Ounce Labs discusses Microsoft’s proactive security posture and how it has affected security in the software development lifecycle. Also, a summary of this week's news.

Download Security Wire Weekly

Security Wire Weekly / June 6, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 7 Jun 2007 05:11:00 -0700

Senior News Writer Bill Brenner reports from the Gartner IT Summit in Washington. Bryan Sartin, Cybertrust’s vice president of investigative response talks about his company’s merger with Verizon. Bruce Schneier, chief technology officer of BT Counterpane, and Lloyd Hession, CSO of BT Radianz talk about life after their mergers with British Telecom. Also, a review of the week’s news.

Download Security Wire Weekly

Security Wire Weekly Special - New Hacking Technique

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Tue, 5 Jun 2007 11:30:00 -0700

In this brief interview at the Gartner IT Summit in Washington, Yuval Ben-Itzhak, chief technology officer of security vendor Finjan talks about a newly discovered hacking technique used by attackers to avoid detection. (Runtime 3:56)

Download Security Wire Weekly Special Edition

Security Squad Roundtable: Wi-Fi security; Patch Tuesday

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 31 May 2007 04:34:00 -0700

SearchSecurity.com editors discuss whether Microsoft should abandon Patch Tuesday, whether blogging is a security threat to corporate systems, the state of Wi-Fi security and Verizon's acquisition of CyberTrust.

Download Security Squad Roundtable

Security Wire Weekly / May 30 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 30 May 2007 14:05:00 -0700

Snort creator and Sourcefire founder Marty Roesch talks about last year's failed Check Point acquisition and his decision to take Sourcefire public. Also, a summary of this week's news.

Download Security Wire Weekly

Security360 -- Industry Consolidation

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Tue, 29 May 2007 05:01:00 -0700

Andy Jones, a researcher with the UK-based Information Security Forum, explains how to develop an effective security strategy to deal with large projects and defend the budget. Paul Adamonis, director of security solutions at Forsythe Security talks about how to navigate industry consolidation by developing a buying strategy; and Sandra Kay Miller gives her observations of the industry and explains why some companies may not fare well in this era of consolidation. (Runtime: 25:01).

Download Security360

Security Wire Weekly / May 23, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Thu, 24 May 2007 04:52:00 -0700

Security consultant Don Ulsch of Jefferson-Wells discusses the risk of blogging on company-owned mobile devices. Also, a summary of this week's news.

Download Security Wire Weekly

Security Wire Weekly / May 16, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 16 May 2007 10:38:00 -0700

Core Security's Ivan Arce discusses the pros and cons of penetration testing, "month-of" flaw disclosure projects and hacking contests. Also, a summary of this week's news.

Download Security Wire Weekly

Security Wire Weekly / May 9, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 9 May 2007 15:34:00 -0700

Mark Allen, a patch analyst with Shavlik Technologies discusses Microsoft’s recent updates, including the zero-day DNS patch and the Exchange and Internet Explorer updates. Plus, a summary of this week's IT security news.

Download Security Wire Weekly

Security Squad Roundtable: Mac hacks / May 3, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Tue, 8 May 2007 08:00:00 -0700

In the debut edition of SearchSecurity.com's Security Squad roundtable news-talk podcast, editors debate the growing concern about Apple security and whether Apple really cares about keeping its products secure, the emergence of Google hacking as an enterprise data security threat and the pros and cons of "dumbing down" the PCI Data Security Standard.

Download MP3

Security Wire Weekly / May 2, 2007

rwestervelt@techtarget.com (SearchSecurity.TechTarget.com) — Wed, 2 May 2007 11:10:00 -0700

Sven Krasser from Secure Computing discusses new and dangerous techniques the bad guys are working into image spam. Plus, a summary of this week's IT security news.

Download Security Wire Weekly.