Episode 38: Ashley Madison Fallout, FTC Ruling and Talking Vulnerabilities with Secunia’s Kasper Lindgaard

August 28, 2015

The fallout from the Ashley Madison breach continues to dominate cybercrime discussion.  A U.S. Federal appeals court ruled on Monday that the FTC has the authority to punish firms for failing to protect their customers' data. A 2012 hack of Nerve.com was brought back into the news alongside new breaches at Web.com and Thomson Holidays. And a variety of new cyber advisories were issued and arrests were made. 

This week's guest is Kasper Lindgaard, director of research at Denmark-based Secunia, and we chat about vulnerabilities from the first half of 2015 including trends related to zero days, Flash, OpenSSL and mobile. The interview starts at 22:45.

Episode 37: Special Report - Cybercrime Trends and Tactics From the First Half of 2015

August 21, 2015

In this special edition of the podcast, the SurfWatch Labs team returns from break to reflect on the 2015 Mid-Year Cyber Risk Report: trends that emerged from the data, cybercriminal tactics that have shifted, and the primary avenues of approach that malicious actors are using the steal data from a wide variety of organizations. 

SurfWatch Labs chief security strategist Adam Meyer joins the podcast to discuss those mid-year takeaways and one major question highlighted by the data: if the highest risk area is the user environment and the most exposed vulnerability is the user themselves, why do many organizations often spend the least amount of effort taking care of those areas?