Radio Free Security

In our March episode, the LiveSecurity analyst team discusses two months worth of InfoSec news during our Security Story of the Month segment. We cover new weaknesses in a cipher associated with SSL and TLS, more zero day Java exploits, a severe sentence in a cyber security trial, the largest DDoS attack ever seen, and more. We also debut a funny, security-themed Thrift Shop parody song made by WatchGuard employees. So get comfy, adjust your volume, and enjoy the show.

During this month's Security Story of the Month segment the LiveSecurity analyst team discusses the biggest InfoSec stories from January. Topics include wide-spread Java zero days, a nasty new advanced malware campaign called Red October, some industry-wide Universal Plug and Play vulnerabilities, and much more. Also stay tuned for What's Up With WatchGuard, where WatchGuard's XTM appliance product manager unveils some exciting new security hardware. Settle down, adjust your volume, and enjoy the show.

Last episode, we reviewed our 2012 security prediction results. This time we unveil WatchGuard's 2013 security predictions. They cover topics like life-threatening hardware hacks, mobile device pick-pockets, cyber strike-back, zombie browsers, and much more. Whether or not these predictions come true, the episode explores many real infosec trends that everyone, from the smallest consumer to the largest enterprise CSO, will face in 2013. Join us for a glimpse into the future of cyber security.

We're nearing the end of the year, which means it's prediction time. In the first of two special episodes, the Radio Free Security team looks back at our 2012 security forecasts. Did our predictions for the year ring true, or were they epic fails? Join Corey Nachreiner and the co-hosts from the Security Story of the Month to find out. The discussion covers a bevy of topics, including mobile malware, APTs, BYOD, virtualization, location awareness, infrastructure attacks, and much more. Whether you're curious how our predictions did, or you just want to review the most relevant security issues from 2012, this episode is for you... And don't forget to join us next time, when we reveal our 2013 predictions.

In October's Security Spotlight, Ben Brobak and Corey Nachreiner unveil the secret culprit for most security breaches. More importantly, they discuss firewall policy best practices that will help you avoid such breaches. Also, learn about WatchGuard's new RapidDeploy capability in an interview with Product Manager, Johnni Aguirre. Finally, we discuss cyber espionage accusations, new nation-state sponsored malware, and some major DDoS attacks in this episode's Security Story of the Month segment. We cover a lot in this episode, so sit down, relax, and enjoy the show.

Digital network attacks that can blow up generators, shut down power grids, or damage nuclear facilities seem like the stuff of science fiction. However, we currently live in a world where nation-states launch just such attacks against one another, and may escalate them in the future. In this episode, Nachreiner interviews an industry expert from Alstom Grid about SCADA and ICS systems, and the ramifications of digital attacks against physical infrastructure. Nachreiner also joins two other WatchGuard security experts to identify the Security Story of the Month. They talk about stolen digital certificates, Internet Explorer zero day, and a big network breach, to decide which story has the greatest ramifications for the industry. Join us for another exciting episode of Radio Free Security.

August's abbreviated episode includes an exciting Security Story of the Month segment and a trip down memory lane, with the Tip-o-matic 650. In this month's security news recap, Richard Gilmour, Christian Garland, and Corey Nachreiner highlight the most concerning security stories and incidents from August. The segment includes a new advanced persistent threat, some paradigm shifting malware, and a highly critical Java zero day vulnerability that attackers are exploiting in the wild. Be sure to listen for the latest defenses. We also dust off an old Tip-o-matic 650 clip. Listen to past Radio Free Security hosts share a few security best practices that are still relevant today. So grab a seat, get comfortable and click play.

In July's Security Spotlight, guest host Ben Brobak interviews Corey Nachreiner about the most interesting briefings he attended at this year's Black hat security conference. They discuss the implications of some of these new threats and share security tips along the way. This episode's "Security Story of the Month" also shares a Blackhat and Defcon theme, with many of the biggest stories coming from these two popular security conferences. A roundtable of WatchGuard experts discuss NFC attacks, router rooting, and a serious problem with MS-CHAPv2 authentication. Tune in to learn all about Blackhat, Defcon, and the most important security news from July.

Ben and Corey discuss the Flame worm in this month's Security Spotlight. What does this malware do, how does it spread, and how can you protect yourself from this type of advanced attack. They also discuss the evidence suggesting that Flame is a government sponsered cyber attack, and what that means for the future of network and information security. Also stay tuned for the "Security Story of the Month," where the LiveSecurity team chat about the Linkedin breach, Apple's new security stance, and intellectual property swiping malware. For your latest dose of security news and education, listen to this month's episode.

In this month's Security Spotlight, Corey and Peter discuss Application Control; What is it? What can you do with it? And how do you get started? Learn how this powerful new security tool can increase your network visibility and control tenfold. Next, learn about the latest industry news during the "Security Story of the Month." Richard, Chris, and Corey discuss upcoming cyber legislation, paid security patches, and Android drive-by downloads. There's lots to learn, so be sure to listen in.

In this month's Security Spotlight, Corey chats with WatchGuard's Director of Product Management about the history of virtualization and its security ramifications. He also learns about WatchGuard's upcoming virtual security solutions. Next, listen in on the "Security Story of the Month," where Christian, Chris, and Corey talk about cyber legislation, big breaches, and a nasty Mac botnet. So sit down, relax, and enjoy the show.

In this episode, we return to our regular format. During the first segment, Corey interviews guest expert, Dean Colpitts, to discuss practical ways IT administrators can manage and secure Mobile devices. Next up? The return of "The Security Story of the Month". Tim, Richard, and Corey explore three big security stories from the month, and decide which is the most important. Grab a hot beverage, get comfy, and check out this month's show.

Last episode we looked back at WatchGuard's 2011 security predictions. Now it's time to look towards the future. Do you know what security threats and trends you should expect this year? If not, join Corey Nachreiner, Ben Brobak, and Tim Helming to find out. We'll cover many topics, from malware on app stores, to power plants with viruses. We'll also try to share a few security tips along the way. So grab a cup of joe, sit back, and enjoy the show.

Radio Free Security returns after two years radio silence! In this episode, Corey Nachreiner looks back at WatchGuard's 2011 security predictions with Tim Helming and Ben Brobak, to see how well - or how badly - we did. Topics covered include, Cyberwar, APTs, Facebook links, and more. Did we call the year correctly, and what did we learn from the results. Listen and find out.

In this double dose of Radio Free Security, Senior Network Security Analyst Corey Nachreiner, CISSP, and WatchGuard Trainer Nathan Buff talk about two months worth of security stories. Topics include; the latest zero day exploits, security problems plaguing Facebook, the latest Conficker updates, and the BBC's questionable use of a malicious botnet. Also, Gary Spiteri, a Sales Engineer for WatchGuard, shares a talk he heard about whether or not you can get ROI on your security expenditures. He shares some tips that should help you stretch your security budget in these tough economic times. Finally, we open our mailbag to answer WebBlocker questions posed by one of our listeners. Hosted by Corey Nachreiner, CISSP.

In the inaugural 2009 episode of Radio Free Security, Senior Network Security Analyst Corey Nachreiner, CISSP, and WatchGuard Trainer Nathan Buff talk about a huge industry data breach, a fast spreading worm with potential to become a botnet, and a broken cryptographic hash function. Nat Hillary, a Product Manager for WatchGuard, shares the top ten myths about PCI compliance, which may convince you that PCI compliance isn't as herculean a task as you might have feared. (Learn more about PCI at WatchGuard's Retail page). Finally, we open our mailbag to share some of our listeners' security predictions for 2009. Hosted by Corey Nachreiner, CISSP.

Senior Network Security Analyst Corey Nachreiner, CISSP, and Information Security Analyst Scott Pinzon, CISSP, host their second annual Security Predictions episode. They assess and score the six predictions they made in December 2007 about 2008; issue several predictions of what will NOT happen in 2009; and predict six new trends to anticipate this year. Seth Fogie, a leading mobile malware researcher, guests. The wide-ranging discussion touches on such topics as IPv6, SSL/HTTPS, social networking, botnet innovations, cloud computing, mobile computing, cyber-legislation, cyber riots, DNS SEC, eating crow, and much more. Music by Hardly Art.

Senior Network Security Analyst Corey Nachreiner, CISSP, details the happy results of Internet Service Providers (ISPs) shutting down McColo.com, but he questions the methods used. Danny McPherson, Vice President and CSO of Arbor Networks, discusses some surprising findings in his annual Worldwide Infrastructure Security Report, which details what the largest Internet data carriers worry about. Oleg Kalugin, former Major General in the Soviet KGB, details how Russia bugged the US Senate, the Foreign Relations Committee, Henry Kissinger, and even Kissinger's fiancee. Hosted by Scott Pinzon, CISSP.

WatchGuard trainers answer a network administrator's question about how to lock down a high school's network. Greek researcher Elias Athanasopoulos explains how social networking sites such as Facebook could be easily transformed into "Facebots" that sustain Denial of Service attacks against targets on the Web. WatchGuard introduces a new wireless bridge to help you securely connect to the Internet via 3G. Corey Nachreiner, CISSP, discusses security trends, and in his Security Story of the Month, covers the worst Microsoft vulnerability in two years. Hosted by Scott Pinzon, CISSP.

Dave Piscitello, Senior Security Technologist for ICANN and a member of the Anti-Phishing Workgroup (APWG), describes how scam artists utilize second-level domain names to make it harder for authorities to take down scam web sites. Mark Waldstein and Scott Pinzon, CISSP, discuss security trends, including a TCP/IP stack vulnerability rumored to potentially take down the Internet. And a new segment called "Geek to Geek" spotlights a barbershop quartet that sings about Star Trek. Hosted by Scott Pinzon, CISSP.