Risky Business

Risky Business

risky.biz
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.


Biz Soap Box: Identity as the new perimeter
Sep 22
As regular listeners know, these Soap Box podcasts are wholly sponsored. That means everyone you hear in a Soap Box podcast, paid to be here. But that’s ok, because we manage to book very interesting guests into these things, like today’s guest, Sami…
Business #599 — You get domain admin! And YOU get domain admin!
Sep 15
On this week’s show Patrick and Adam discuss the week’s security news, including: Russia, China, Iran having a red hot go at US political orgs Crowdstrike drops report, telcos having a bad time MSS owning US government with dumb bugs DoJ indicts Iranian…
Business #598 — China closing the “cyber gap” with USA
Sep 8
On this week’s show Patrick and Adam discuss the week’s security news, including: Why integrity and availability are key to developing a COVID vaccine China closing the “cyber gap” with USA ASPI publishes research on TikTok, WeChat censorship Belarusian…
Biz Soap Box: Canary’s Royal origin story
Sep 2
This is a sponsored podcast. Today we’re chatting with a very special guest, Haroon Meer. Haroon is the founder of Thinkst Canary. Some call it a deception company, but he doesn’t, as you’ll hear. He says Canary is a detection company and the distinction…
Business #597 — Alex Stamos talks news, Pompeo’s “clean networks” initiative
Sep 1
On this week’s show Patrick and Alex discuss the week’s security news, including: NZ stock exchange felled by DDoS attack DNI cancels in-person election security briefings for Democats Russians didn’t hack Michigan voter data Sendgrid having a bad time of…
Business #596 — DoJ gives Uber breach response one star
Aug 25
On this week’s show Patrick and Adam discuss the week’s security news, including: Former Uber CSO Joe Sullivan charged with obstruction of justice Whitehouse to concede WeChat carveouts for US operations in China A bunch of news that sounds like it’s from…
Business #595 — NSA and FBI document GRU’s Linux malware for them
Aug 18
On this week’s show Patrick, Adam and Sherrod DeGrippo discuss the week’s security news, including: NSA and FBI doxx GRU malware. Lol. Malicious Azure app snags SANS staffer Oracle to acquire TikTok? Trump weighs Snowden pardon Much, much more This week’s…
Business #594 — How ESNIs will change censorship and NDR
Aug 11
On this week’s show Patrick and Adam discuss the week’s security news, including: WeChat joins TikTok in the naughty corner TLS 1.3 with ESNI will have a massive impact on censorship AND security Belarus goes dark after dodgy election Capital One fined…
Business #593 — China promises “mortal combat in the tech realm”
Aug 4
On this week’s show Patrick and Adam discuss the week’s security news, including: Trump’s war on TikTok (featuring guest Alex Stamos) Twitter hackers caught. Pretty embarrassing stuff, really. NSO implants target Easter Bunny Garmin may need a good OFAC…
Biz Soap Box: Yubico Chief Solutions Officer Jerrod Chong
Jul 29
Soap Box is the wholly sponsored podcast series we do here at Risky.Biz. That means everyone you hear on this podcast paid to be here. In this podcast you’re going to hear my latest interview with Jerrod Chong, Yubico’s Chief Solutions Officer. Hardware…
Business #592 — We’re back. Did we miss anything?
Jul 28
On this week’s show Patrick and Adam discuss the week’s security news, including: Two Chinese nationals charged with freelancing for MSS Russia, China hacking COVID-19 research The world dodged a bullet on the Windows DNS bug Twitter blue tick pwnapalooza…
Biz Soap Box: Facebook, under the hood
Jul 8
Normally these Soap Box podcasts – which are wholly sponsored – feature vendors trying to sell you stuff. But this time we’re doing something different: This podcast is an interview with two senior Facebook staffers: Pedro Canahuati, VP of Engineering…
Business #591 — EncroChat user experience includes getting owned, going to prison
Jul 7
On this week’s show Patrick and Adam discuss the week’s security news, including: The latest on the EncroChat hack-related arrests Details about the fresh F5 and Citrix bugs Natanz go boom Paying Wastedlocker ransoms violates Treasury sanctions North…
Biz Soap Box: No magic wand for business email compromise (BEC)
Jul 1
This edition of the Soap Box podcast is brought to you by Proofpoint. Today’s guest is Proofpoint’s EVP of Cybersecurity Strategy, Ryan Kalember, and the topic is business email compromise, or BEC. BEC is a big deal, generating billions of dollars in…
Business #590 — REPOST: It turns out we’re not SAML experts
Jun 30
On this week’s show Patrick and Adam discuss the week’s security news, including: Inside the new American “e2ee busting” bill Julian Assange hit with (another) superseding indictment Trustwave uncovers sneaky Chinese accounting software backdoor Much,…
Business #589 — Why Microsoft’s steep E5 license pricing is a national security risk
Jun 23
On this week’s show Patrick and Adam discuss the week’s security news, including: Australia “under attack” - a wrap Microsoft releases more security protections for E5 customers US to introduce “anti encryption” bill Shady encrypted phone company owned by…
Feature podcast: Inside BellTrox’s hacker-for-hire operation
Jun 18
This podcast is brought to you by the Cyber Initiative at the Hewlett Foundation. They gave us a grant so we can do these podcast interviews that have relevance to cyber policy, so big thanks to the Cyber Initiative at the Hewlett Foundation for funding…
Business #588 — Catastrophic bugs to plague ICS for years
Jun 16
On this week’s show Patrick and Adam discuss the week’s security news, including: Facebook commissioned custom 0day to de-cloak child sex predator IP stack bugs to plague IoT, ICS for years Sandworm was doxxed by the NSA and hardly anyone noticed Congress…
Business #587 — Full scale of Indian hacking-for-hire revealed
Jun 9
On this week’s show Patrick and Adam discuss the week’s security news, including: Full scale of Indian hacker-for-hire firm revealed IBM exits facial recognition Contact tracing apps flop Much, much more This week’s show is brought to you by AttackIQ.…
Biz Soap Box: A better way to provision access to production environments
Jun 3
The Soap Box podcasts we run here at Risky.Biz are wholly sponsored affairs – everyone you hear in a soap box podcast, paid to be here. The idea is vendors get to come on to the show and chat about their products, what their stuff does, the thinking…