August 28, 2015
The fallout from the Ashley Madison breach continues to dominate cybercrime discussion. A U.S. Federal appeals court ruled on Monday that the FTC has the authority to punish firms for failing to protect their customers' data. A 2012 hack of Nerve.com was brought back into the news alongside new breaches at Web.com and Thomson Holidays. And a variety of new cyber advisories were issued and arrests were made.
This week's guest is Kasper Lindgaard, director of research at Denmark-based Secunia, and we chat about vulnerabilities from the first half of 2015 including trends related to zero days, Flash, OpenSSL and mobile. The interview starts at 22:45.
August 21, 2015
In this special edition of the podcast, the SurfWatch Labs team returns from break to reflect on the 2015 Mid-Year Cyber Risk Report: trends that emerged from the data, cybercriminal tactics that have shifted, and the primary avenues of approach that malicious actors are using the steal data from a wide variety of organizations.
SurfWatch Labs chief security strategist Adam Meyer joins the podcast to discuss those mid-year takeaways and one major question highlighted by the data: if the highest risk area is the user environment and the most exposed vulnerability is the user themselves, why do many organizations often spend the least amount of effort taking care of those areas?