Adventures in Security

de Tom Olzak

Information Security Tips and Commentary

Episodios

Episode 56 - Suspect Interviewing Techniques

por Tom Olzak

Finding and dealing with rogue employees, crack WEP in less than 60 seconds, rainbow table LM password cracking, a really naive 419 scam victim, and tips on interviewing insider suspects.

Episode 55 - Recipe for Mobile Data Security

por Tom Olzak

SOX Television, an inexpensive file encryption utility, and using TPM, Bitlocker, and Active Directory to secure laptop data.

Episode 54 - IT Security Essential Body of Knowledge

por Tom Olzak

Security enhancements in XP SP3, review of native data encryption, properly classifying security tests, Swiss move quantum cryptography into production, and DHS releases IT Security Essential Body of Knowledge.

Episode 53 - Desktop Application Virtualization

por Tom Olzak

Information Security is about protecting the data,desktop application virtualization and application streaming

Episode 52 - Phishing Undercover

por Tom Olzak

Inexpensive lockable USB memory stick, risk management, large Web sites expose authentication tokens, phishing undercover, and attaining network-wide visibility.

Episode 51 - Computer Forensics Part 3

por Tom Olzak

Another government security foul-up, BlueFur Anti-phishing solution, Interpol security checklist, cracking a protected BIOS, and finding "hidden" data.

Episode 50 - Computer Forensics Part 2

por Tom Olzak

MOICE Office 2003 security plug-in, source routing infests IPv6, the continuing risk of removable storage, preparing for electronic evidence acquisition, preventing data leakage through swap and hibernation files.

Episode 49 - Computer Forensics Part 1

por Tom Olzak

Cisco NAC defaults create vulnerability, Vista may be no more secure than XP, Securing and initial processing of a crime scene.

Episode 48 - The Problem with NetBIOS

por Tom Olzak

Wireless RFID encryption, CarderIM, Banker Trojans, Cisco NAC vulnerabilities, data encryption, and NetBIOS challenges.

Episode 47 - Ad Hoc Wireless Networks

por Tom Olzak

Losing the war with malware, Xbox support team is a hole in the dyke, College campuses are wide open, External pen tests, Software assurance, and Protecting your laptop from ad hoc wireless networks.

Episode 46 - Security Leadership

por Tom Olzak

Bot driven spam, discretionary faxing, quantum leaps, Oracle security, 7 habits of effective security leaders, pros and cons of risk management

Episode 45 - Keep your eye on the data

por Tom Olzak

Vendor bullying, AV software evaluation, Fuzzing, new SPP issue, kernel malware, and data protection

Episode 44 - Virtual Server Security

por Tom Olzak

Key carrying photons, VoIP vulnerabilities, outsourcing security, memory debugging, Exchange DST woes, and hypervisor-based virtual server security

Episode 43 - Risk Management

por Tom Olzak

Commentary on iPods as criminal tools, users are not stupid, AJAX vulnerability monitoring, dangers of pirated software, and Risk Management

Episode 42 - Stepping up to meet security challenges

por Tom Olzak

Commentary on iPods in business, security as a process, and how some programming teams are stepping up to meet security challenges.

Episode 41 - Cyber-Espionage

por Tom Olzak

Customer Welfare vs. Vendor Public image, Establishing System Assurance, Cyber-espionage.

Episode 40 - Keystroke Dynamics (KD)

por Tom Olzak

Examination of biometrics in general. Introduction of Keystroke Dynamics as a low impact biometric alternative.

Episode 39 - The Home PC Threat

por Tom Olzak

The importance of choosing the right source for audit artifacts, and the growing threat of employee home PCs to the business enterprise

Episode 38 - Desperation doesn't justify bad security

por Tom Olzak

The importance of change management, the potential security risks when desperation enters the project lifecycle, how virtual floors can provide secure flexible business-to-business connectivity, and finally, a look at some ways to handle sensitive information once printed copied or faxed.

Episode 37 - Web Application Security, Part 8

por Tom Olzak

The vulnerabilities and safeguards associated with Application Denial of Service and Insecure Configuration Management