Podcast 44 - Russia, Blackberry, RIAA, PI, Spyware

• Techworld: BlackBerry Servers Ripe for the Hacking
• Creating bootable USB drives for capturing the contents of memory
• Software Radio Attacks and Zero-Power Defenses
• PIN Entry Device (PED) vulnerabilities
• www.notacon.org
• Trend Micro Hit by Massive Web Hack
• Judge Rules Against Accused Spyware Distributor
• Michigan says MediaSentry (RIAA) lacks necessary PI license
• How To Think Like An Online Con Artist
• NATO Equates Cyber Attacks to Missile Attacks (March 7, 2008)
• Brief: Phone "swatter" gets 30 months
• Russian serfs paid $3 a day to break CAPTCHAs

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Doug Landoll, CISSP

Podcast 38 - Shmoocon Promo, CA, Sears, WiFi

• Shmoocon Ticket Giveaway
  
• SANS certifications
• Numbers: ITIL, COBIT and More; Who Uses What?
• Sears: Come see the softer side of spyware
• CA’s Web Site Hacked by Malware Authors
• WiFi piggybacking
• Packing.org gone but check out handgunlaw.us
  
• State Hacking/Computer Security Laws

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Ben Spader, CISSP
• Jeff Pettorino, CISSP
• Doug Landoll, CISSP

Podcast 35 - PGP, Mafia, Botnet, Passwords

• Microsoft switching SharePoint to claims-based authentication
• PGP Whole Disk Encryption - Barely Acknowledged Intentional Bypass
• Hard Drive Imports to be Banned?
• The Russian Mafia Doesn't Like Spam Either
• Firewall Secures Battlefield Communications
• Details of Hijacked 24/7 Ad Server Emerge
• Storm Botnet Divides, Preps for Sale to Spammers
• Cafe Latte Attack Steals Data from Wi-Fi PCs
• Default Manufacturer Passwords for a Ton of Devices
• Comcast Admits Delaying, Not Blocking, P2P Traffic

• Jim Tiller for (ISC)2 board of Directors - if you are a CISSP please "Vote for Jim"

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Ben Spader, CISSP

Podcast 33 - ArcSight, Privacy, Toys, Onion, Credit, Blow

• iPhone Turned into Pocket-Sized Hacking Platform
• Ruling Eases Government’s Efforts for Cell Phone Tracking
• Hackers Post Techniques for Reversing iPhone Upgrade
• Gun Safe Zone on you tube
• Whistleblower laws
• Suit: Employee Fired for Reporting Breach
• Opt-out from pre-approved credit applications
• October is the fourth annual National Cyber Security Awareness Month
• Your Digg username is probably "too secure" for American Express
• Bluetooth Headset
• Go Ahead (Bomb New York)

• Jim Tiller for (ISC)2 board of Directors - if you are a CISSP please "Vote for Jim"

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Ben Spader, CISSP

Podcast 32 - China

• Jim Tiller for (ISC)2 board of Directors - if you are a CISSP please "Vote for Jim"
• Pentagon Hacked by Chinese Military
• China accused of cyberattacks on New Zealand
• France Complaining of China Hacks Too
• Brief: China claims hackers stole its secrets too
• Group releases free iPhone unlock hack
• Names, Contact Info on TD Ameritrade Customers Compromised
• TJX Data Criminal Gets Five Years in Prison
• Jack Thompson Decides He's In GTA IV
• Windows worm targets Skype users
• And why I don't drink French Vodka! French Diplomat Softens Tone on Iran Nuke Program
• Note: Episode 31 had sound issues but I will try to salvage as much as I can and post it.
  

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Erik Moon, CISSP
• Jim Tiller, CISSP

Podcast 30 - iPhone, China, Germany, Sony

• The Chinese want to buy Seagate, and the US Govt is worried for a reason
• Keeloq cracked
• Why Apple Can't Stop iPhone Hackers
• Unlocking the iPhone Could Invite DMCA Suit
• German Gov’t PCs Hacked, China Offers to Investigate
• Read How to Break Forensics
• Deja vu: Sony uses rootkits, charges F-Secure
• UN Serves Keylogger, Trojan After Online Attack
• http://www.moanmyip.com/
  
• Caller ID Spoofing to be Made Illegal in the USA
• Moran Webb Webbalert video podcast
• Server with top-secret data stolen from Forensic Telecommunications Services
• PCI Compliance Book Review [Anatoly one of the authors]
• Update on New German Laws on Cybercrime
  
  

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Erik Moon, CISSP
• Jeff Pettorino, CISSP

Podcast 29 - China, NASA, DefCon, Hacking, Beer

• White House High-Security Locks Broken: Bumped and Picked at DefCon
• http://www.bananasecurity.com/
• Bush Signs Law to Widen Reach for Wiretapping
  
• Using Face Recognition Instead of a PIN Number
• NASA Hacker Wins Right to Extradition Hearing
• Crashing e-passport RFID readers
• Shanghai Cooperation War Games
• Hacking Attacks Against Banks Up 81 percent, Says Study
• Simple Hack Can Unlock Most Any Office Door
• PDF Spammers Get Creative, Says Vendor
• Teaching hacking helps students, professors say
• And Tetleys Beer And Mentos

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Erik Moon, CISSP

Podcast 28 - Senate, iPhone, FBI, LinkedIn

• (IN)SECURE Magazine Issue 12
• P2P App Causes Police Security Disaster
• Linkedin spurns bug bounty hunter
• Senate to Hold Hearing on Security of Voting Machines
• Security Team Claims Successful iPhone Hack
• Sen. Harry Reid of Nevada announced his plan to prevent “campus based digital theft”
• Ben Rothke reviews Frank Abagnale's The Ultimate Identity Theft Prevention Plan
• FBI Remotely Installs Spyware to Trace Bomb Threat
• Major Security Hole In Samsung Linux Drivers
• http://www.freedom-to-tinker.com/
• And Pet Peeve of the Month
  

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP
• Erik Moon, CISSP
• Jeff Pettorino, CISSP

Podcast 27 - Spyware, FBI, DRM, Viruses

• FBI, Military Names Used in E-Mail Scams
• Microsoft Music Copy Protection Cracked Again
• Click-to-Call Bug Found in iPhones
• The Soft Underbelly? - Database Security
• Adobe Flash exploit could log keystrokes
• The Computer Virus Turns 25 in July
• Linux MPX Multi-touch Table May Become Alternative Microsoft Surface
• Court rules that Feds can read e-mail, IP addresses without warrant
• Metro 8-Year-Old Shows Up On No-Fly Terrorist List

Hosts

• Gene Naftulyev, CISSP
• Anatoly Elberg, CISSP

Podcast 26 - Robots, Pentagon, Cops, iPhone, Breaches

• Los Alamos reels from a string of security lapses
• AK-47 Inventor Doesn't Lose Sleep
• AnyFlash by Gene
• Military Robots (UGVs) Unmanned Ground Vehicles
• Microsoft Security One of the Worst Jobs in Science
• Data Breaches Start at the Gas Station, Analyst Says
• Pentagon Shuts Down Systems After Cyberattack
• Cops Who Started 'Hackers Are Us' Service Convicted
• 800 Break-ins at Dept. of Homeland Security!!
• Recognizing Your Own Handwriting As A Password
• Social Engineering - An Attack Vector Most Intricate to Tackle!
• With iPhone launch, a hacker's to-do list
• Brief: Cybercrime busts net data-theft suspects
• Taser-armed robots for civilian and military use

Hosts

• Gene Naftulyev, CISSP
• Ben Spader, CISSP
• Erik Moon, CISSP
• Anatoly Elberg, CISSP

Podcast 23 - China, BBB, MS, ISO 27000, CPO, Army

• China Readying Cyberweapons
• Better Business Bureau targeted malware spam, (Fri, May 25th)
• Brief: BBB Trojan nabs more than 1,400 victims
• Microsoft Unveils 'Surface,' Computerized Coffee Table
• Consulting Licence Offer From Redseal - Security Risk Manager (SRM)
• Researchers: 307-digit key crack endangers 1024-bit RSA
• Hack My Son's Computer, Please
• ISO 2700: Security Asleep?
• Public Key Cryptography
• Why Your Company Needs a Chief Privacy Officer
• German Lab Tests Antivirus Programs
• GAO Criticizes FBI Network Security
• Army Bloggers

Hosts

• Gene Naftulyev, CISSP
• Ben Spader, CISSP

Podcast 22 - Nigeria, Japan, Estonia, AACS, TJX, VoIP, Games

• Nigeria-Style Scam Borrows Line from George Clooney
• Hacker Steals 22,000 IDs from US University
• Japanese Military School Raided over Aegis Data Leak
• Alcatel-Lucent Reports Personal Data of Employees Lost or Stolen
• Estonia’s E-Government and E-Commerce Sagging Under Prolonged Cyber Attack
• Latest AACS revision defeated a week before release
• Hundreds Click On 'Click Here to Get Infected' Ad
• Brief: TJX: Breach cost company $17 million to date
• Ubuntu Ultimate Edition is Cool
• VoIP Security Testing Tools List from VoIPSA
• Symantec: Chinese hackers grow in number, skills

Hosts

• Gene Naftulyev, CISSP
• Jeff Pettorino, CISSP

Podcast 21 - Hoaxes, TJX, TSA, Phishing, Guns

• Fun story about hoaxes
• Brief: Report: TJX thieves exploited wireless insecurities
• TSA Lost Sensitive Data on 100,000 Employees
• Laptop With Staff Data Stolen from UK Hospital
• Trojan Impersonates Windows Activation Program to Steal Data
• BBC Broadcast HD-DVD key
• A Foolproof Way To End Bank Account Phishing?
• (IN)SECURE Magazine Issue 11
• Teacher fined for Microsoft piracy
• NRA Opposes Checking Gun Buyers Against Terror Watch Lists

Hosts

• Gene Naftulyev, CISSP
• Erik Moon, CISSP
• Jim Tiller, CISSP

Podcast Special #5 - Security Certifications

• Special about security certifications
  

Hosts

• Gene Naftulyev, CISSP
• Erik Moon, CISSP
• Jim Tiller, CISSP

Podcast 20 - HD-DVD, Cryptography, data breach, China

• Hacker Scheme Steals Sponsored Google Links
• HD-DVD Processing Key
• Quantum cryptography is hacked
• Hackers figure out how to get into SAT-NAV
• Bot Infections Surges to 1.2 Million
• GAO report targets data breach guidelines
• Don't let compliance drive security, Spinelli says
• MySpace goes to China
• Astronauts to have sex in space??
• Banks sue TJX

Hosts

• Gene Naftulyev, CISSP
• Erik Moon, CISSP
• Jim Tiller, CISSP

Podcast 19 - Gene, Mooner and Jeff talk about Privacy, Shmoocon, and China

• Secret link to Shmoocon Videos
• Attack Puts Routers, Cell Phones at Risk
• US to Attack Identity Theft
• Network Security Portal, RSS Alerts Possible for EU SMBs
• Thousands of Social Security Numbers Exposed by Federal Department
• Mac Security Violated by Hacker
• What, When and How to Respond to a Data Breach
• Double-Edged Sword for Student Privacy and Search Warrants
• Network Monitoring, Space Invaders Style
• Billy Hoffman interview on Jikto in 90 minute video podcast Shmoocon special
• China aims to further tame Web
• http://www.lifelock.com/
• No Privacy in Home PC at Work

Hosts

• Gene Naftulyev, CISSP
• Erik Moon, CISSP
• Jeff Pettorino, CISSP

Podcast 18 - Gene, Jim and Jeff talk about Security

• Bank proves they can count to two, and that they don't understand what 2 factor means
• Wacko gets a year in resort for messing with Sub code
• Wire taps get interesting in DE
• US agencies get 'C-' for computer security
• Skype and Corporate Network Security
• Experian notes jump in UK identity-theft reports

Hosts

• Gene Naftulyev, CISSP
• Jim Tiller, CISSP
• Jeff Pettorino, CISSP

Podcast 16 - Ben, Jim and Gene talk about stolen cards, patches, WEP, Vista and another con

• New Security Conference http://www.theblackandwhiteball.co.uk
• 20 Computers Missing From US Counter-Nuke Intelligence Office
• Microsoft Patches ANI Security Flaw
• TJX says info from 45.7M cards stolen
  
• http://www.greatfirewallofchina.org/
• More companies than ever are employing a dedicated chief security officer
• New Attack Could Hit Embedded Devices
• Researcher Has New Attack For Embedded Devices
• (in)Secure 1.10 Magazine - Infosec E-zine Released
• WEP Wireless Security Protocol Inadequate for Sensitive Data
• Which Employees Pose the Biggest Risk?
• Microsoft leans on Vista SP1 site

Off Topic

• Itunes SUCKS
• anapod.com
  

Hosts

• Gene Naftulyev, CISSP
• Ben Spader, CISSP
• Jim Tiller, CISSP
  

Podcast 15 (Special #4) - Shmoocon Review Day 3 by Mooner and Gene

• Mooner and Gene talk about impressions of Day 3 of Shmoocon
• We will return to our normal weekly format next week!
  

Hosts

• Gene Naftulyev, CISSP
• Erik Moon, CISSP
  

CPE Update

I just double checked the ISC2 website and according to the official CISSP Recertification Guidelines, Security Conferences count toward credits at 1CPE/hr

Conferences
CISSPs earn 1 CPE credit for each hour of attendance at a conference. Security conferences qualify as Group “A” CPEs. Other educational conferences qualify as Group “B” CPEs.

Since Mooner and I recorded the speakers we saw, there is the auditable proof of our attendance. Of course everyone can get CPE credits for watching the presentations once they are up online.