Risky Business

By: Patrick Gray
Listen for free

  • Summary

  • Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
    Copyright 2007-2024 Patrick Gray
    Show more Show less
Politics & Government
Show more Show less
activate_Holiday_promo_in_buybox_DT_T2
Episodes
  • Wide World of Cyber: SentinelOne's Chris Krebs on Chinese cyber operations

    Wide World of Cyber: SentinelOne's Chris Krebs on Chinese cyber operations
    Dec 13 2024

    In this edition of the Wild World of Cyber podcast Patrick Gray sits down with SentinelOne’s Chief Intelligence and Public Policy Officer Chris Krebs to talk all about Chinese cyber operations.

    They look at the Salt Typhoon and Volt Typhoon campaigns, the last 20 years of Chinese operations, and the evolution of the cyber roles of China’s Ministry of State Security and People’s Liberation Army.

    It’s a very dense hour of conversation!

    This podcast was recorded in front of an audience at the Museum of Contemporary Art in Sydney.

    This episode is also available on Youtube.

    Show notes
      Show more Show less
      Less than 1 minute
    • Risky Business #774 -- Cleo file transfer appliances under widespread attack

      Risky Business #774 -- Cleo file transfer appliances under widespread attack
      Dec 11 2024
      On this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: Cleo file transfer products have a remote code exec, here we go again!Snowflake phases out password-based authChinese Sophos-exploit-dev company gets sanctionedRomania’s election gets rolled back after Tiktok changed the outcomeAMD’s encrypted VM tech bamboozled by RAM with one extra address bitSome cool OpenWRT researchAnd much, much more. This week’s episode is sponsored by Thinkst, who love sneaky canary token traps. Jacob Torrey previews an upcoming Blackhat talk filled with interesting operating system tricks you can use to trigger canaries in your environment. You wont believe the third trick! Attackers hate him! This episode is also available on Youtube. Show notes Cleo Software Actively Being Exploited in the Wild CVE-2024-50623 | HuntressBlue Yonder investigating data leak claim following ransomware attack | Cybersecurity DiveSnowflake to phase out single-factor authentication by late 2025 | Cybersecurity DiveTreasury Sanctions Cybersecurity Company Involved in Compromise of Firewall Products and Attempted Ransomware Attacks | U.S. Department of the TreasuryAnother teenage hacker charged as feds continue Scattered Spider crackdown | The Record from Recorded Future NewsGermany arrests suspected admin of country’s largest criminal marketplace | The Record from Recorded Future NewsFCC, for first time, proposes cybersecurity rules tied to wiretapping law | CyberScoopRussian state hackers abuse Cloudflare services to spy on Ukrainian targets | The Record from Recorded Future NewsCloudflare’s pages.dev and workers.dev Domains Increasingly Abused forRomania annuls presidential election over alleged Russian interference | The Record from Recorded Future NewsEU demands TikTok 'freeze and preserve data' over alleged Russian interference in Romanian elections | The Record from Recorded Future NewsResearch Note: Meta’s Role in Romania’s 2024 Presidential Election - CheckFirstKey electricity distributor in Romania warns of ‘cyber attack in progress’ | The Record from Recorded Future NewsBackdoor slipped into popular code library, drains ~$155k from digital wallets - Ars TechnicaAMD’s trusted execution environment blown wide open by new BadRAM attack - Ars TechnicaNew dog, old tricks: DaMAgeCard attack targets memory directly thru SD card reader – PT SWARMTelegram partners with child safety group to scan content for sexual abuse materialApple hit with $1.2B lawsuit after killing controversial CSAM-detecting tool - Ars TechnicaCompromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection - Flatt Security ResearchHow do I turn on the Do Not Track feature? | Firefox Help
      Show more Show less
      1 hr and 2 mins
    • Risky Biz Soapbox: Enterprise Yubikeys can now be pre-registered

      Risky Biz Soapbox: Enterprise Yubikeys can now be pre-registered
      Dec 8 2024

      In this interview Patrick Gray talks to Yubico’s COO and President Jerrod Chong about a new Yubikey feature: pre-registration.

      You can now ship pre-registered Yubikeys to your staff so you don’t need to rely on your staff to enrol them. They’ve achieved this with really slick Okta and Entra ID integrations.

      Jerrod also talks about a recent trip to Singapore and concerns he has about the cybersecurity of critical infrastructure in the energy sector.
      Show more Show less
      30 mins

    What listeners say about Risky Business

    Average customer ratings
    Overall
    • 5 out of 5 stars
    • 5 Stars
      2
    • 4 Stars
      0
    • 3 Stars
      0
    • 2 Stars
      0
    • 1 Stars
      0
    Performance
    • 5 out of 5 stars
    • 5 Stars
      2
    • 4 Stars
      0
    • 3 Stars
      0
    • 2 Stars
      0
    • 1 Stars
      0
    Story
    • 5 out of 5 stars
    • 5 Stars
      2
    • 4 Stars
      0
    • 3 Stars
      0
    • 2 Stars
      0
    • 1 Stars
      0

    Reviews - Please select the tabs below to change the source of reviews.

    Audible.com reviews

    Amazon reviews
    No Reviews are Available