<!-- icx_story_begin --> <p><b>Podcasts for the week of Dec. 24, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_26_07.mp3"><b>Security Wire Weekly -- Dec. 26, 2007</b></a> <br> Senior News Writer Bill Brenner and News Editor Robert Westervelt discuss their most fascinating interviews of the year, in part 1 of the Top IT Security Interviews of 2007. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=1223&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_26_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_26_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_12_18_2007.mp3"><b>Security Squad: Top IT security trends of '07</b></a> <br>The SearchSecurity.com team discusses the top security trends of 2007. The TJX data security breach, PCI DSS, encryption, Storm's growth and sophistication, and industry consolidation dominated the news this year. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=1233&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Squad_12_18_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_12_18_2007.mp3">Download MP3</a></p> <p> <p><b>Podcasts for the week of Dec. 17, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Dec. 20, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_WirelessEncryptionTJX.mp3"><b>Lessons learned from TJX: Best practices for enterprise wireless encryption</b></a><br>The TJX data breach revealed all too well the weaknesses of the Wired Equivalent Privacy security model. The retailer's well-documented compromise of more than 94 million credit card numbers proved that intruders can easily take advantage of unprotected networks. In this tip, Mike Chapple reviews some best practices that will minimize an organization's exposure. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=450&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_WirelessEncryptionTJX.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_WirelessEncryptionTJX.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <br> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_19_2007.mp3"><b>Security Wire Weekly -- Dec. 19, 2007</b></a> <br> Chris Farrow of the PCI Security Vendor Alliance discusses the PCI DSS deadlines, how credit card companies plan to enforce them and how some merchants are getting extensions to comply. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=660&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_19_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_19_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of Dec. 10, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_12_07.mp3"><b>Security Wire Weekly -- Dec. 12, 2007</b></a> <br> PGP Director of Product Management John Dasher talks about the rising cost of security breaches as reflected in the latest Ponemon Institute study. Also Mozilla offers a look at the security enhancements of Firefox 3. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=845&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_12_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_12_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p><b>Podcasts for the week of Dec. 3, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Dec. 6, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/Cross_Build_Injection.mp3"><b>Cross-build injection attacks: Keeping an eye on Web applications' open source components</b></a><br>Web application developers' growing dependence on open source components has opened the door for attackers to insert malicious code into applications even as they are being built. Michael Cobb explores the emerging attack method called cross-build injection and explains why application architects may need to change their ways. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=480&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Cross_Build_Injection.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Cross_Build_Injection.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_5_2007.mp3"><b>Security Wire Weekly -- Dec. 5, 2007</b></a> <br> Computer forensics and accounting fraud investigator Michael Kessler of Kessler International discusses the latest threat landscape and how companies are locking down their sensitive data. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=845&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_5_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_12_5_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/SWW_Vista_12_03_07.mp3"><b>Security Wire Weekly – Windows Vista a year later</b></a> <br> Senior News Writer Bill Brenner talks to security analyst Rich Mogull and Microsoft's Shanen Boettcher about the ongoing compatibility challenges of Windows Vista and what's next. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=869&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/SWW_Vista_12_03_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/SWW_Vista_12_03_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p><b>Podcasts for the week of Nov. 26, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_28_07.mp3"><b>Security Wire Weekly -- Nov. 28, 2007</b></a> <br> SANS Top 20 Project Director Rohit Dhamankar talks about this year's SANS Top 20 attack trends report. Also, a summary of this week's news headlines. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=720&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_28_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_28_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p><b>Podcasts for the week of Nov. 19, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_21_2007.mp3"><b>Security Wire Weekly -- Nov. 21, 2007</b></a> <br> Senior News Writer Bill Brenner joins News Editor Robert Westervelt in a discussion on the Top 5 trends IT security pros should be thankful for in 2007. Also, a review of the week's top stories. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=1500&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_21_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_21_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p> <A HREF="http://searchsecurity.bitpipe.com/data/document.do?res_id=1195137905_943"><b>Countdown: What Could PCI DSS 2.0 bring?</b></a> <br><i>This week's featured podcast is from SearchSecurity.com's <a href="http://searchsecurity.techtarget.com/guide/securitySchool/0,296293,sid14_gci1261778,00.html">Compliance School</a>.</i> <br>Diana Kelley, vice president of research firm Burton Group, reveals the top five likely changes in store for "PCI DSS 2.0."<br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/data/document.do?res_id=1195137905_943"><i>Countdown: What Could PCI DSS 2.0 bring?</i></a><br><br> Check out the rest of Diana Kelley's lesson: <i><a href="http://searchsecurity.techtarget.com/guide/securitySchool/category/0,296296,sid14_tax308524,00.html">PCI DSS compliance: Two years later</a></i> </p> <p><b>Podcasts for the week of Nov. 12, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <A HREF="http://searchsecurity.bitpipe.com/data/document.do?res_id=1192810960_512"><b>Fact or fiction: Don't Forget About Your Intellectual Property</b></a> <br><i>This week's featured podcast is from SearchSecurity.com's <a href="http://searchsecurity.techtarget.com/guide/securitySchool/0,296293,sid14_gci1253271,00.html">Data Protection School</a>.</i> <br>Russell L. Jones of Deloitte and Touche explains how to truly protect an enterprise trade secret. <br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/data/document.do?res_id=1192810960_512"><i>Fact or fiction: Don't Forget About Your Intellectual Property</i></a><br><br> Check out the rest of Russell L. Jones' lesson: <i><a href="http://searchsecurity.techtarget.com/guide/securitySchool/category/0,296296,sid14_tax308274,00.html">Executing a data governance strategy</a></i> </p> <p> <b>Threat Monitor -- Nov. 15, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_Email_authentication_showdown.mp3"><b>iPhone security in the enterprise: Mitigating the risks </b></a><br>Email has long been a favorite method for malicious hackers looking to launch attacks, and one of the first steps in defending against vicious email threats lies in developing a strong email authentication strategy. In this tip, contributor Noah Schiffman discusses the two most popular and effective types of authentication systems, and unveils the positive and negative aspects of each approach. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=480&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_Email_authentication_showdown.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_Email_authentication_showdown.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_14_07.mp3"><b>Security Wire Weekly -- Nov. 14, 2007</b></a> <br> Senior News Writer Bill Brenner talks with security experts about how to respond to data breaches. Also, a summary of this week's news. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=630&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_14_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_14_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p><b>Podcasts for the week of Nov. 5, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_07_2007.mp3"><b>Security Wire Weekly: CSI 2007 coverage</b></a> <br> Senior News Writer Bill Brenner reports from the Computer Security Institute's CSI 2007 conference. Steve Orrin, director of security solutions at Intel, discusses the importance of building better security into products. Also, a review of the week's top stories. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=590&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_07_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_11_07_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Kaspersky_10_2007.mp3"><b>Security Newsmaker: Eugene Kaspersky</b></a> <br>Kaspersky Labs CEO Eugene Kaspersky discusses how his company is adjusting to help users meet the latest threats; and about why Russia -- his home turf -- tends to be at the center of many high-profile malware outbreaks. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=1080&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Kaspersky_10_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Kaspersky_10_2007.mp3">Download MP3</a> <p><b>Podcasts for the week of Oct. 29, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Nov. 1, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_iPhone_enterprise_risks.mp3"><b>iPhone security in the enterprise: Mitigating the risks </b></a><br>Since its flashy launch in June 2007, the Apple iPhone has certainly garnered a great deal of buzz. Almost immediately, hackers searched for exploitable flaws in the product, and they weren't disappointed. In this tip, Ed Skoudis examines iPhone-specific attacks and reveals how organizations can limit their exposure as the popular devices infiltrates the enterprise. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=480&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_iPhone_enterprise_risks.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_iPhone_enterprise_risks.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_31_07.mp3"><b>Security Wire Weekly -- Oct. 31, 2007</b></a> <br> Security experts discuss whether the TJX data breach illustrates the need to toughen the PCI Data Security Standard. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=495&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_31_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_31_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <p> <p><b>Podcasts for the week of Oct. 22, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_24_2007.mp3"><b>Security Wire Weekly -- Oct. 24, 2007</b></a> <br> Security researcher Adam Laurie warns of weaknesses in radio frequency identification technology (RFID). The researcher explains how easy it is to copy an RFID tag. Also a look at the week's news. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=704&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_24_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_24_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <br> <p> <A HREF="http://searchsecurity.bitpipe.com/data/document.do?res_id=1183684816_383"><b>Fact or Fiction: How to Layer Security Within your Messaging Architecture</b></a> <br><i>This week's featured podcast is from SearchSecurity.com's <a href="http://searchsecurity.techtarget.com/guide/securitySchool/0,296293,sid14_gci1244954,00.html">Integration of Networking and Security School</a>.</i> <br>John Burke, principal research analyst at Nemertes Research, discusses some common unified communications security myths. <br><br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/data/document.do?res_id=1183684816_383"><i>Fact or Fiction: How to Layer Security Within your Messaging Architecture</i></a><br> Check out the rest of John Burke's lesson: <i><a href="http://searchsecurity.techtarget.com/guide/securitySchool/category/0,296296,sid14_tax307679,00.html">Securing the converged infrastructure</a></i> </p> <p><b>Podcasts for the week of Oct. 15, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Oct. 18, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_third_party_AppPatching.mp3"><b>Developing a patch management policy for third-party applications</b></a><br>Enterprises may push the latest critical Windows patches once a month, but here's a dirty little secret: Most organizations don't bother patching their third-party applications. The diversity of client-side software -- including everything from Acrobat Reader to iTunes -- complicates matters, but security professionals shouldn't lose hope. Effective patch management for third-party products is possible, and contributor Ed Skoudis has the tools to do it. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=500&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_third_party_AppPatching.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_third_party_AppPatching.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_17_07.mp3"><b>Security Wire Weekly -- Oct. 17, 2007</b></a> <br> Paul Henry of Secure Computing warns of a new threat to companies with VoIP and Web 2.0 functionality, and a researcher questions the quality of a recent security update for AOL Instant Messenger. Also: Oracle patches security flaws across its product line. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=516&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_17_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_17_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <p><b>Podcasts for the week of Oct. 8, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_10_11_07.mp3"><b>Security Squad: Virtualization security; iPhone attacks; PCI DSS</b></a> <br>The SearchSecurity.com editorial team discusses the <a href= "http://searchsecurity.techtarget.com/columnItem/0,294698,sid14_gci1273755,00.html">debate brewing over the security of virtualization in the wake of VMware's success</a>. Other topics include <a href="http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1274060,00.html">HD Moore's attack platform for the iPhone</a> and the latest <a href="http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1273153,00.html">struggles with the Payment Card Industry Data Security Standards (PCI DSS)</a>. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=1233&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Squad_10_11_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_10_11_07.mp3">Download MP3</a></p> <p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_10_2007.mp3"><b>Security Wire Weekly -- Oct. 10, 2007</b></a> <br> Michelle Stewart, CISO at AirTran Airways, explains how high profile data security breaches and the Payment Card Industry Data Security Standards impact the airline's IT security priorities. Also a review of the week's news. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=610&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_10_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_10_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <p> <b>Hot Type -- Oct. 9, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/HotType_October_Provos.mp3"><b>Virtual Honeypots: From Botnet Tracking to Intrusion Detection</b></a><br> In the latest edition of "Hot Type: Security Books in Audio," author and Google senior staff engineer Niels Provos explains the cutting-edge technology that can keep an eye on the bad guys. After a quick Q&A, Provos reads from Chapter 6 of his book, <i>Virtual Honeypots: From Botnet Tracking to Intrusion Detection</i>. In his selection, the author reveals how the virtual tools can be used to collect and analyze malware. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=780&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/HotType_October_Provos.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br> <a href="http://media.techtarget.com/audioCast/SECURITY/HotType_October_Provos.mp3">Download MP3</a> <p> <i>After listening to the podcast, read an excerpt from</i> <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1275743,00.html">Chapter 11: Tracking Botnets</a>. <p><b>Podcasts for the week of Oct. 1, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Oct. 4, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_multipot.mp3"><b>How 'evil twins' and multipots seek to bypass enterprise Wi-Fi defenses </b></a><br>Enterprise Wi-Fi threats are an ever-present struggle for security managers, and the most simplistic attack methods are often the most effective. In this tip, contributor Noah Schiffman explains how "evil twin" attacks work and why its sister attack method, the multipot, can bypass wireless IPS with remarkable success. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=332&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_multipot.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_multipot.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_03_07.mp3"><b>Security Wire Weekly -- Oct. 3, 2007</b></a> <br> Code Green CEO Sreekanth Ravi explains why his company is gearing its latest data protection offering toward SMBs. Also, Google fixes a serious Gmail flaw. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=785&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_03_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_10_03_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <br> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Amini_09_28_07.mp3"><b>Security Newsmaker: Pedram Amini</b></a> <br>Pedram Amini, head of TippingPoint's security research group, co-wrote the recently-released book, "Fuzzing: Brute Force Vulnerability Discovery," and recently unveiled the new Sulley fuzzing framework. In this conversation, he talks about the book and explains how the Sulley framework will take fuzzing to the next level. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=774&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Amini_09_28_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Amini_09_28_07.mp3">Download MP3</a> <p><b>Podcasts for the week of Sept. 24, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_26_2007.mp3"><b>Security Wire Weekly -- Sept. 26, 2007</b></a> <br>Zulfikar Ramzan, senior principal researcher at Symantec, talks about the vendor's Internet Threat Report, including the rising use of crimeware. Also, a review of the week's news. <br> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=579&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_26_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_26_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of Sept. 17, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Sept 20, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_Windows_Update_attacks.mp3"><b>Windows Update attacks: Ensuring malware-free downloads </b></a><br>Attackers recently discovered how to exploit the Windows Update service to push malware onto targeted systems. Is the new attack possible because of a flaw in Windows Update itself? Or is it because users just aren't being careful? Michael Cobb investigates how malicious hackers have taken advantage of Windows Update. Fortunately, the fix is easier than you think. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_Windows_Update_attacks.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_Windows_Update_attacks.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_19_07.mp3"><b>Security Wire Weekly -- Sept. 19, 2007</b></a> <br>University of Washington CISO Kirk Bailey talks about AGORA, an alliance of IT security professionals he founded. Also, a look at the latest Windows zero-day flaw and a report on how attackers may be exploiting the widgets Web users take for granted. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_19_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_19_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of Sept. 10, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_12_2007.mp3"><b>Security Wire Weekly -- Sept. 12, 2007</b></a> <br>Eric Schultze, chief security architect of Shavlik Technologies, discusses Microsoft's latest round of updates. Yuval Ben Itzak talks about the growing use of crimeware rootkits. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_12_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_12_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <b>Hot Type -- Sept. 11, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/Thermos_VoIP_v2.mp3"><b>Securing VoIP Networks: Threats, Vulnerabilities, and Countermeasures</b></a><br> In our latest installment of "Hot Type: Security Books in Audio," Peter Thermos, author and CTO of Palindrome Technologies, reviews the current state of VoIP security. After a brief Q&A, Thermos reads from Chapter 3 of his book, <i>Securing VoIP Networks: Threats, Vulnerabilities and Countermeasures</i>. His selection reveals some of the most common attacks related to telephony services. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Thermos_VoIP_v2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <br> <a href="http://media.techtarget.com/audioCast/SECURITY/Thermos_VoIP_v2.mp3">Download MP3</a> <p> <i>After listening to the podcast, read an excerpt from</i> <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1271333,00.html">Chapter 6: Media Protection Mechansims</a>. <p><b>Podcasts for the week of Sept. 3, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- Sept 6, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/USB_analysis_toolkit_Threat_Monitor.mp3"><b>Fight viruses with your USB flash drive </b></a><br>Information security pros often spend much of their days away from their desks. So when malware strikes -- in the form of a worm, virus or worse -- it can be helpful to have a USB thumb drive loaded up with valuable remediation tools at the ready. In this tip, Ed Skoudis reveals his list of the most important weapons in any portable malware-defense kit -- and they're all free. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/USB_analysis_toolkit_Threat_Monitor.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/USB_analysis_toolkit_Threat_Monitor.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_05_07.mp3"><b>Security Wire Weekly -- Sept. 5, 2007</b></a> <br>TippingPoint security researcher Pedram Amini explains why the Sulley fuzzing framework is an important development in the quest to uncover software vulnerabilities. Also, a new flaw is found in Firefox and MIT fixes flaws in its widely-used Kerberos program. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_05_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_09_05_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Snyder_08_30_07.mp3"><b>Security Newsmaker: Window Snyder</b></a> <br>Mozilla security chief Window Snyder compares the security of her organization to that of her former employer, Microsoft. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Snyder_08_30_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Snyder_08_30_07.mp3">Download MP3</a> <p><b>Podcasts for the week of Aug. 27, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_29_2007.mp3"><b>Security Wire Weekly -- Aug. 29, 2007</b></a> <br>Kerry Bailey, Cybertrust's former senior vice president of global services, discusses his new role heading up the integration of Cybertrust into Verizon. Also, a review of the week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_29_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_29_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of Aug. 20, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_22_07.mp3"><b>Security Wire Weekly -- Aug. 22, 2007</b></a> <br>Cisco's Lynn Lucas talks about her company's wireless security challenges, and eEye Digital Security CEO Kamal Arafeh refutes rumors that his company is struggling. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_22_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_22_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of Aug. 13, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <br> <p> <b>Threat Monitor -- August 16, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/Windows_command_line.mp3"><b>Finding malware on your Windows box (using the command line) </b></a><br> Security professionals typically overlook the Windows command line, instead spending their time with more complex GUI-based forensics tools. In this tip, Ed Skoudis explains how just a few command-line tricks can help users closely examine the configuration of a Windows machine and discover whether a box is infected by malware. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Windows_command_line.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Windows_command_line.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_08_15_07.mp3"><b>Security Wire Weekly -- Aug. 15, 2007</b></a> <br>This week, F-Secure's Mikko Hypponen warns that the iPhone could inspire a surge in mobile malware threats. Also, Microsoft releases a mega security update, and TJX reports that costs associated with its massive data breach have soared to $225 million. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_08_15_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_08_15_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <b>Hot Type -- Aug. 14, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/Hot_Type_August_Sutton_v2.mp3"><b>Fuzzing: Brute Force Vulnerability Discovery</b></a><br> Fuzzing has evolved into one of today's most effective ways to test software security. Although there is no "correct" approach to the bug-finding technique, every fuzzing method has similar phases. In our latest installment of "Hot Type: Security Books in Audio," SPI Dynamics' security evangelist Michael Sutton reads from Chapter 2 of his book, <i>Fuzzing: Brute Force Vulnerability Discovery</i>, explaining each step in the testing process. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=790&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Hot_Type_August_Sutton_v2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br> <a href="http://media.techtarget.com/audioCast/SECURITY/Hot_Type_August_Sutton_v2.mp3">Download MP3</a> <p> <i>After listening to the podcast, read an excerpt from</i> <a href="http://searchsecurity.techtarget.com/general/1,295582,sid14_gci1266584,00.html">Chapter 21: Fuzzing Frameworks</a>. <p><b>Podcasts for the week of Aug. 6, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <br> <p> <a href="http://ehg-techtarget.hitbox.com/redirector.mp3?hb=DM5212192CBA83EN3;DM5212204PCA83EN3&cv.c4=DL|PODCAST_Security_Wire_Weekly_08_08_2007.mp3&cd=1&n=/podcast=&vcon=/searchSecurity/podcasts&hec=0&vjs=HBX0200u&fn=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_08_2007.mp3&target=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_08_2007.mp3"><b>Security Wire Weekly -- Aug. 8, 2007</b></a> <br>David Foote of Foote Partners shares his latest research on the value of IT security job skills and certifications. Also a wrap up of the news from Black Hat 2007. <br> <!-- <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url="http://ehg-techtarget.hitbox.com/redirector.mp3?hb=DM5212192CBA83EN3;DM5212204PCA83EN3&cv.c4=DL|PODCAST_Security_Wire_Weekly_08_08_2007.mp3&cd=1&n=/podcast=&vcon=/searchSecurity/podcasts&hec=0&vjs=HBX0200u&fn=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_08_2007.mp3&target=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_08_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> --> <p> <a href="http://ehg-techtarget.hitbox.com/redirector.mp3?hb=DM5212192CBA83EN3;DM5212204PCA83EN3&cv.c4=DL|PODCAST_Security_Wire_Weekly_08_08_2007.mp3&cd=1&n=/podcast=&vcon=/searchSecurity/podcasts&hec=0&vjs=HBX0200u&fn=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_08_2007.mp3&target=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_08_08_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <br> <br> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_08_06_07.mp3"><b>Security Wire Weekly, Black Hat Special Edition</b></a> <br>Security researchers Brian Chess and Jacob West of Fortify Software discuss penetration testing, secure software development and their latest book. Also, a researcher warns that attackers could threaten Vista users by exploiting Teredo, an IPv6 tunneling tool enabled by default in the latest Windows OS. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_08_06_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_08_06_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <!-- S T A R T O F B L A C K H A T --> <p><b>Podcasts for the week of July 30, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <br> <p> <b>Threat Monitor -- August 2, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_metamorphic_malware_V2.mp3"><b>Metamorphic malware sets new standard in antivirus evasion </b></a><br> Mutating computer viruses have been around for some time, but one type of malware possesses the ability to constantly rewrite its own code to successfully evade the most sophisticated antivirus systems. Noah Schiffman explains how metamorphic malware works, how it differs from polymorphic malware and which defense strategies are best for enterprises. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_metamorphic_malware_V2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_metamorphic_malware_V2.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_08_02_07.mp3"><b>Security Wire Weekly, Black Hat Special Edition for Aug. 2, 2007</b></a> <br>In this special Black Hat edition of Security Wire Weekly, PGP creator Phil Zimmermann and Peter Thermos of Palindrome Technologies unveil tools to improve VoIP security.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_08_02_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_08_02_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Black_Hat_2_08_01_2007.mp3"><b>Security Wire Weekly special: Security expert calls Web services research lacking</b></a> <br>Black Hat 2007 presenter Brad Hill, a principal security consultant with Information Security Partners, said little research is being done to test Web services security. Many holes are going unnoticed, he said. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Black_Hat_2_08_01_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Black_Hat_2_08_01_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <!-- E N D O F B L A C K H A T --> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_07_30_2007.mp3"><b>Security Squad: Apple iPhone security, Google's security moves</b></a> <br>SearchSecurity.com editors discuss the state of Apple iPhone security, Google's continued march into the security market and vulnerability disclosure in the wake of the eBay-like vulnerability auction site, WabiSabiLabi. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Squad_07_30_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_07_30_2007.mp3">Download MP3</a></p> <p> <p><b>Podcasts for the week of July 23, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_25_07.mp3"><b>Security Wire Weekly -- July 25, 2007</b></a> <br>Chris Haddad, director of technical architecture at the Burton Group, lays out some of the serious threats facing Web services and service oriented architecture development. Also, a review of the week's news.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_25_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_25_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of July 16, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <br> <p> <b>Threat Monitor -- July 18, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_UCommThreats.mp3"><b>Unified communications infrastructure threats and defense strategies </b></a><br> Unified communications systems promise exciting productivity gains for workers and cost savings for businesses, but many often underestimate the security threats facing them. John Burke outlines the dangers facing unified communications and how to mount an effective defense. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/TM_UCommThreats.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/TM_UCommThreats.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_18_07.mp3"><b>Security Wire Weekly -- July 18, 2007</b></a> <br>Amichai Shulman from Imperva describes a flaw his organization discovered in the Oracle E-Business Suite. The flaw was patched Tuesday as part of Oracle's July 2007 CPU. Also, a summary of this week's top IT security news.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_18_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_18_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of July 9, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_11_07.mp3"><b>Security Wire Weekly -- July 11, 2007</b></a> <br>Security researchers Tom Cross and David Dewey of IBM's Internet Security Systems X-Force research team discuss their team's discovery of the Microsoft Active Directory flaw and Microsoft's latest round of patches. Plus, a summary of the week's IT security news.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_11_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_07_11_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <br> <A HREF="http://searchsecurity.bitpipe.com/detail/RES/1183683770_114.html?src=pc_ssec_editorial_07_12_07"><b>Countdown: Plugging the Dam -- Understanding Where and How Content Leaks</b></a> Mike Rothman of Security Incite provides effective ways to keep your valuable company information from falling into the wrong hands. Learn about outdated data handling policies and what you can do to make sure these situations don't put your organization in an exposed position.<br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/detail/RES/1183683770_114.html?src=pc_ssec_editorial_07_12_07"><i>Countdown: Plugging the Dam -- Understanding Where and How Content Leaks.</i></a><br><br> </p> <p> <b>Hot Type -- July 10, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/searchsecurity_Hot_Type_Jaquith_July_V2.mp3"><b>Security Metrics: Replacing Fear, Uncertainty, and Doubt</b></a><br> In our latest installment of "Hot Type: Security Books in Audio," author and analyst Andrew Jaquith reads from Chapter 8 of his book, <i>Security Metrics: Replacing Fear, Uncertainty, and Doubt</i>. Jaquith explains how professionals can create a comprehensive scorecard that properly assesses an organization's security performance. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/searchsecurity_Hot_Type_Jaquith_July_V2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <br> <a href="http://media.techtarget.com/audioCast/SECURITY/searchsecurity_Hot_Type_Jaquith_July_V2.mp3">Download MP3</a> <p> <i>Need ways to improve the presentation of your security data? Read an excerpt from</i> <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1263412,00.html">Chapter 6: Visualization</a> <p><b>Podcasts for the week of July 2, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- July 5, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/ThreatMonitor_logic_bomb.mp3"><b>Investigating logic bomb attacks and their explosive effects </b></a><br> There are a lot of dirty and destructive pieces of software out there, but a logic bomb may cause some of the most damage. Triggered by the smallest of events, logic bombs can wreck computers, networks, and even an organization's precious profits. In this tip from our <a href="http://media.techtarget.com/audioCast/SECURITY/ThreatMonitor_logic_bomb.mp3">Ask the Experts</a> section, contributor Ed Skoudis explains how to prepare for a hacker's detonation. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/ThreatMonitor_logic_bomb.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/ThreatMonitor_logic_bomb.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <br> <p> <A HREF="http://searchsecurity.bitpipe.com/data/document.do?res_id=1182456920_174"><b>Countdown: Top 5 pitfalls of partner security management</b></a> <br><i>This week's featured podcast is from SearchSecurity.com's <a href="http://searchsecurity.techtarget.com/guide/securitySchool/0,296293,sid14_gci1261778,00.html">Compliance School</a>.</i><br> <br>Corporations are constantly teaming up with businesses and service providers to accomplish various tasks, but can these partnerships make a company more susceptible to corporate data breaches? In this brand-new Compliance School podcast, instructor Richard Mackey examines the top five potential dangers of an extended enterprise. <br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/data/document.do?res_id=1182456920_174"><i>Countdown -- Top 5 consumer authentication technologies on the market today</i></a><br> <i>This podcast is part of SearchSecurity.com's Compliance School lesson</i>: <a href="http://searchsecurity.techtarget.com/guide/securitySchool/category/0,296296,sid14_tax307275,00.html">Ensuring compliance across the extended enterprise</a><br> <p><b>Podcasts for the week of June 25, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1261205,00.html"><b>Burton Group Catalyst Conference 2007 Coverage:</b></a> <br> <br> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Burton_Special_06_28_2007.mp3"><b>Security Wire Weekly special edition -- Network security; identity management</b></a> <br>SearchSecurity.com reports from the Burton Group Catalyst Conference in San Francisco. Burton Group vice president Phil Schacter sums up the day's sessions on open and secure network architectures. Conference attendees talk about their security concerns including identity management and risk assessments. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Burton_Special_06_28_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Burton_Special_06_28_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_06_27_2007.mp3"><b>Security Wire Weekly special edition -- PCI audit</b></a> <br>SearchSecurity.com reports from the Burton Group Catalyst Conference in San Francisco. Diana Kelley, vice president and service director at the Burton Group, explains the scope of a PCI audit and how some auditors are pitching products and services. Dan Jones, director of IT at the University of Colorado, explains his school's ongoing PCI compliance initiatives. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_06_27_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_06_27_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_27_2007.mp3"><b>Security Wire Weekly -- June 27, 2007</b></a> <br>Cisco executives discuss the acquisition of security vendor IronPort, plus a look at how one IT shop moved into the Vista fast lane despite compatibility problems. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_27_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_27_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of June 18, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- June 21, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/06_21_07_MergerThreatsV2.mp3"><b>Mergers and acquisitions: Building up security after an M&A </b></a><br> Mergers and acquisitions are common headlines in today's information security world, and that's great news for malicious hackers and data thieves. When companies join forces, they often leave themselves open to attack. In this tip, contributor Ed Skoudis reviews the top merger-related threats and how to avoid them. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/06_21_07_MergerThreatsV2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/06_21_07_MergerThreatsV2.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_20_07.mp3 "><b>Security Wire Weekly -- June 20, 2007</b></a> <br>This week, former Microsoft CISO Karen Worstell talks about the current state of security. Also, a summary of this week's news including more consolidation in the security market with HP acquiring SPI Dynamics and PatchLink merging with SecureWave. (Runtime: 19:20) <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_20_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_20_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_McGraw_June07.mp3"><b>Newsmaker podcast: Gary McGraw</b></a> <br>In this SearchSecurity.com Newsmaker podcast, security luminary Gary McGraw talks about how online gaming threats can affect corporate IT shops. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Newsmaker_McGraw_June07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_McGraw_June07.mp3">Download MP3</a> <p><b>Podcasts for the week of June 11, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_13_2007.mp3"><b>Security Wire Weekly -- June 13, 2007</b></a> <br>Eric Schultze, chief security architect of Shavlik Technologies helps prioritize Microsoft's Patch Tuesday bulletins. Jack Danahy, founder and chief technology officer of Ounce Labs, discusses Microsoft's proactive security posture and how it has affected security in the software development lifecycle. Also, a summary of this week's news. (Runtime: 26.59) <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_13_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_13_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_06_08_2007.mp3"><b>Security Squad: Database security, encryption</b></a> <br><i>Information Security</i> magazine editors Neil Roiter and Michael Mimoso discuss <a href="http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1256773,00.html">Google's foray into the security market</a> and whether companies should turn to <a href="http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1241902,00.html">database encryption to meet the PCI Data Security Standard</a> in the wake of the TJX data security breach. Also the editors discuss whether the <a href="http://searchsecurity.techtarget.com/columnItem/0,294698,sid14_gci1238792,00.html">"month of" security flaw Web sites are helpful in securing software</a> or just shameless publicity by security researchers. And finally, SearchSecurity.com News Writer Bill Brenner provides analysis from the Gartner IT Security Summit in Washington. (Runtime: 23:51) <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Squad_06_08_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> </p> <p> <b>Hot Type -- June 12, 2007</b><br> <a href="http://media.techtarget.com/audioCast/SECURITY/searchsecurity_Hot_Type_Wysopal_June_2007_v2.mp3"><b>The Art of Software Security Testing: Identifying Software Security Flaws</b></a><br> Our "Hot Type: Security Books in Audio" podcast series offers free book excerpts from today's top information security authors. In our latest installment, Chris Wysopal, co-founder and chief technology officer of security firm Veracode, reads from Chapter 2 of the book <i>The Art of Software Security Testing: Identifying Software Security Flaws</i>. The deck is stacked heavily against the software developers, says Wysopal. In this podcast, Wysopal points out the most common software design vulnerabilities. The co-author details cryptography implementation, program attack surfaces, data input validation and much more. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=1080&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/searchsecurity_Hot_Type_Wysopal_June_2007_v2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br> <a href="http://media.techtarget.com/audioCast/SECURITY/searchsecurity_Hot_Type_Wysopal_June_2007_v2.mp3">Download MP3</a> <p> <i>After listening to the podcast, read an excerpt from</i> <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1260420,00.html">Chapter 11: Local Fault Injection</a>. <p><b>Podcasts for the week of June 4, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_06_2007.mp3"><b>Security Wire Weekly -- June 6, 2007</b></a> <br>Bryan Sartin, Cybertrust's vice president of investigative response, talks about his company's merger with Verizon. Bruce Schneier, chief technology officer of BT Counterpane, and Lloyd Hession, CSO of BT Radianz, talk about life after their mergers with British Telecom. Also, a review of the week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_06_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_06_06_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_06_05_2007.mp3"><b>Security Wire Weekly Special - New hacking technique</a><br> June 5, 2007</b> <br>In an interview at the Gartner IT Summit in Washington, Yuval Ben-Itzhak, chief technology officer of security vendor Finjan, talks about a newly discovered hacking technique used by attackers to avoid detection. (Runtime 3:56) <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_06_05_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_Special_06_05_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of May 28, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <A HREF="http://searchsecurity.bitpipe.com/detail/RES/1178890363_77.html?src=pc_ssec_editorial_05_16_07_c&li=57594"><b>Countdown -- Top 5 consumer authentication technologies on the market today</b></a> <br><i>This week's featured podcast is from the <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1193850,00.html">Identity and Access Management Security School</a>.</i><br> <br>In late 2005, the Federal Financial Institutions Examination Council (FFIEC) issued guidance stating single-factor authentication was no longer adequate for securing online banking transactions. This guidance did not specify what types of technologies would meet the requirement, but many vendors have scrambled to develop cost-effective and easy product offerings that can be deployed to the masses. In this podcast, Mark Diodati counts down the top five vendor options. <br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/detail/RES/1178890363_77.html?src=pc_ssec_editorial_05_16_07_c&li=57594"><i>Countdown -- Top 5 consumer authentication technologies on the market today</i></a><br> Check out the rest of Mark Diodati's lesson: <i><a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1254503,00.html">Next-generation attacks</a></i> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_31_07_mixdown.mp3"><b>Security Wire Weekly -- May 30, 2007</b></a> <br>Snort creator and Sourcefire founder Marty Roesch talks about last year's failed Check Point acquisition and his decision to take Sourcefire public. Also, a summary of this week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_31_07_mixdown.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_31_07_mixdown.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of May 21, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security360_Industry_Consolidation_05_24_07.mp3"><b>Security360 -- Industry Consolidation</b></a> <br>Andy Jones, a researcher with the UK-based Information Security Forum, explains how to develop an effective security strategy to deal with large projects and defend the budget. Paul Adamonis, director of security solutions at Forsythe Solutions Group, talks about how to navigate industry consolidation by developing a buying strategy; and Sandra Kay Miller gives her observations of the industry and explains why some companies may not fare well in this era of consolidation. (Runtime: 25:01). <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security360_Industry_Consolidation_05_24_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_23_07.mp3"><b>Security Wire Weekly -- May 23, 2007</b></a> <br>This week, security consultant Don Ulsch of Jefferson-Wells discusses the risk of blogging on company-owned mobile devices. Also, a summary of this week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_23_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_23_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <p><b>Podcasts for the week of May 14, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_Roundtable_05_18_07.mp3"><b>Security Squad: Patch Tuesday -- May 18, 2007</b></a> <br>SearchSecurity.com editors discuss whether Microsoft should abandon Patch Tuesday, whether blogging is a security threat to corporate systems, the state of Wi-Fi security and Verizon's acquisition of CyberTrust. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Squad_Roundtable_05_18_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Squad_Roundtable_05_18_07.mp3">Download MP3</a></p> <p> <p> <b>Threat Monitor -- May 17, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/05_17_07_Vista_security_flaws.mp3"><b>Windows Vista security flaws show progress, not perfection </b></a><br> Microsoft has touted Windows Vista as its most secure operating system ever. But if that's the case, why has it already been the subject of several high-profile security problems? As Ed Skoudis explains, despite its improvements, Vista's security posture is far from perfect. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/05_17_07_Vista_security_flaws.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/05_17_07_Vista_security_flaws.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_05_16_07_mixdown.mp3"><b>Security Wire Weekly -- May 16, 2007</b></a> <br>Core Security's Ivan Arce discusses the pros and cons of penetration testing, "month-of" flaw disclosure projects and hacking contests. Also, a summary of the week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_05_16_07_mixdown.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_05_16_07_mixdown.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of May 7, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_09_07.mp3"><b>Security Wire Weekly -- May 9, 2007</b></a> <br>Mark Allen, a patch analyst with Shavlik Technologies, discusses Microsoft's recent updates, including the zero-day DNS patch and the Exchange and Internet Explorer updates. Plus, a summary of this week's IT security news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_09_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_05_09_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <b>Hot Type -- May 8, 2007</b><br> <a href="http://SearchSecurity.bitpipe.com/detail/RES/1178214388_63.html?src=pc_ssec_sitepost_05_08_07"><b>Endpoint Security</b></a><br> In our latest installment of "Hot Type: Security Books in Audio," Mark S. Kadrich, president and CEO of The Security Consortium, reads from Chapter 4 of his book <i>Endpoint Security</i>. Kadrich explains how securing an endpoint is easy -- keeping it secure is the real challenge. <br> <p> <a href="http://SearchSecurity.bitpipe.com/detail/RES/1178214388_63.html?src=pc_ssec_sitepost_05_08_07">Download MP3</a> </p> <p><b>Podcasts for the week of April 30, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Roundtable_05_03_2007.mp3"><b>Security Squad Roundtable: Mac hacks -- May 3, 2007</b></a> <br>In the debut edition of SearchSecurity.com's Security Squad news-talk podcast, editors debate the growing concern about Apple security and whether Apple really cares about keeping its products secure, the emergence of Google hacking as an enterprise data security threat and the pros and cons of "dumbing down" the PCI Data Security Standard. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Roundtable_05_03_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Roundtable_05_03_2007.mp3">Download MP3</a></p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_05_02_07.mp3"><b>Security Wire Weekly -- May 2, 2007</b></a> <br>Sven Krasser from Secure Computing discusses new and dangerous techniques the bad guys are working into image spam. Plus, a summary of this week's IT security news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_05_02_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_05_02_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <A HREF="http://searchsecurity.bitpipe.com/detail/RES/1174826935_539.html?src=pc_ssec_editorial_04_17_07_c&li=51282"><b>Top 5 next-generation messaging attacks that antivirus systems can't catch</b></a> <br><i>This week's featured podcast is from <a href="http://searchsecurity.techtarget.com/general/1,295582,sid14_gci1220591,00.html?track=pod">Messaging Security School</a>.</i> <br>Malicious messaging attacks, such as worms and embedded code in Web pages, are wreaking havoc on enterprise IT systems. How do these attacks work and what can you do? In this podcast, guest instructor Mike Rothman counts down the top five next-generation messaging attacks that antivirus systems can't detect. <br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/detail/RES/1174826935_539.html?src=pc_ssec_editorial_04_17_07_c&li=51282"><i>Top 5 next-generation messaging attacks that antivirus systems can't catch</i></a><br> Check out the rest of Mike Rothman's lesson: <i><a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1250206,00.html">The changing threat of email attacks</a></i> <p><b>Podcasts for the week of April 23, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security360_04_27_2007.mp3 "><b>Security360: Endpoint encryption</b></a> <br>Burton Group senior analyst Trent Henry explains the most effective approach to endpoint security and the pros and cons of full disk encryption, Roger Herbst, a senior IT specialist with the Timken Company talks about how he led his company's deployment of full disk encryption on about 5,000 employee laptops, and Charles King, principal analyst of Pund-IT Research discusses Seagate's new encrypted hard drive. (Runtime: 20:43)<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security360_04_27_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security360_04_27_2007.mp3">Download MP3</a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_25_07.MP3"><b>Security Wire Weekly -- Apr. 25, 2007</b></a> <br>Steven Adler, leader of IBM's Data Governance Council, talks about how companies can respond to identity theft and data breaches. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_25_07.MP3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_25_07.MP3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Schmidt_April2007.mp3"><b>Security Newsmaker: Howard Schmidt</b></a> <br>In the third installment of SearchSecurity.com's 2007 Security Newsmakers podcast series, security luminary Howard Schmidt talks about his latest book and about the private sector's role in securing cyberspace. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Schmidt_April2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Newsmaker_Schmidt_April2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly and Security Newsmakers</a></p> <p><b>Podcasts for the week of April 16, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- April 19, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/04_19_07_Spam_reputation_system_v2.mp3"><b>Reputation systems gaining credibility in fight against spam</b></a><br> Now that nearly all organizations are employing some sort of antispam technology, spammers know their only hope for success lies with outwitting spam-detection strategies. But as Mike Rothman writes, the emergence of reputation-based systems is making it easier to weed out spam before it ever reaches the network gateway.<br> <i>View the rest of our brand-new</i> <a href="http://searchsecurity.techtarget.com/generic/0,295582,sid14_gci1220591,00.html">Messaging Security School</a><i> lesson</i>: <a href="http://searchsecurity.techtarget.com/general/0,295582,sid14_gci1250206,00.html">The changing threat of email attacks</a>. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/04_19_07_Spam_reputation_system_v2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/04_19_07_Spam_reputation_system_v2.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_18_2007.MP3"><b>Security Wire Weekly -- Apr. 18, 2007</b></a> <br>Ed MacNair, CEO of email security vendor Marshal, talks about spam, data breaches and the future of AV. Also, a look at the week's news.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_18_2007.MP3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_18_2007.MP3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of April 9, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <A HREF="http://searchsecurity.bitpipe.com/detail/RES/1174826935_539.html?src=pc_ssec_editorial_04_17_07_c&li=51282"><b>Countdown: Top 5 next-generation messaging attacks that antivirus can't catch</b></a> Mike Rothman of Security Incite Mike Rothman counts down the top five next-generation messaging attacks that antivirus can't catch. Better yet, he tells you how to stop them, too. <br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/detail/RES/1174826935_539.html?src=pc_ssec_editorial_04_17_07_c&li=51282"><i>Countdown: Top 5 next-generation messaging attacks that antivirus can't catch</i></a><br><br> </p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_11_07.mp3"><b>Security Wire Weekly -- Apr. 11, 2007</b></a> <br>This week security luminary Gary McGraw explains why attacks against online gamers are also a problem for IT shops. Also, a summary of the week's news headlines.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_11_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_04_11_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <b>Hot Type -- April 10, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/searchsecurity_hot_type_skoudis_plus_april_2007.mp3"><b>Counter Hack Reloaded</b></a><br> This edition of "Hot Type: Security Books in Audio" features a chapter from the book, <i>Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses</i>, published by Prentice Hall. Listen to security consultant and information security author Ed Skoudis as he explains how to detect application-level Trojan backdoors and even stealthier rootkits. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/searchsecurity_hot_type_skoudis_plus_april_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/searchsecurity_hot_type_skoudis_plus_april_2007.mp3">Download MP3</a> </p> <p><b>Podcasts for the week of April 2, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- April 5, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/04_05_07_TM_Polymorphic_Viruses.mp3"><b>Polymorphic viruses call for new antimalware defenses</b></a><br> Attackers are always looking for innovative ways to dodge antivirus software, and many of the bad guys are now creating polymorphic code to do just that. But it's not just the malware writers who are raising the bar. In this tip from our <a href="http://searchsecurity.techtarget.com/expert/KnowledgebaseCategory/0,289620,sid14_tax301708,00.html">Ask the Experts</a> section, contributor Ed Skoudis explains how antimalware vendors are responding to this emerging threat. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/04_05_07_TM_Polymorphic_Viruses.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/04_05_07_TM_Polymorphic_Viruses.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_04_04_2007.MP3"><b>Security Wire Weekly -- Apr. 4, 2007</b></a> <br>Security researcher Sean Barnum of Cigital, Inc. tells how IT professionals can use a set of attack patterns to keep enterprises a step ahead of digital miscreants. Also, a summary of the week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_04_04_2007.MP3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_04_04_2007.MP3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of March 26, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_03_28_07_mixdown.mp3"><b>Security Wire Weekly -- Mar. 28, 2007</b></a> <br>This week, Secure Computing CTO Paul Judge talks about how former CipherTrust customers are faring nearly nine months after that company was absorbed by Secure Computing. Also, a summary of the week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_03_28_07_mixdown.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/audioCast/SECURITY/Security_Wire_Weekly_03_28_07_mixdown.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of March 19, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_21_07.mp3"><b>Security Wire Weekly -- Mar. 21, 2007</b></a> <br>This week, IT pros talk about how to go from IT geek to security rock star, while industry experts discuss the difficulties of deploying NAC. Also, a summary of the week's news. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_21_07.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_21_07.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p> <b>Hot Type -- March 20, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/Gary_McGraw_Software_security.mp3"><b>Software Security -- Identifying software security flaws and bugs</b></a><br> In the latest edition of "Hot Type: Security Books in Audio," Cigital CTO Gary McGraw reads a selection from his book <i>Software Security: Building Security In</i>. Download this podcast today to learn about the software issues plaguing software design. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Gary_McGraw_Software_security.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Gary_McGraw_Software_security.mp3">Download MP3</a> </p> <p> <b>Hot Type -- March 20, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/Gary_McGraw_Software_security2.mp3"><b>Software Security -- The three pillars</b></a><br> "Hot Type: Security Books in Audio" continues with Cigital CTO Gary McGraw, as he reads another chapter excerpt from his book <i>Software Security: Building Security In</i>. In this audio podcast, McGraw explains his three-pillar approach to safe software development. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Gary_McGraw_Software_security2.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Gary_McGraw_Software_security2.mp3">Download MP3</a> </p> <p><b>Podcasts for the week of March 12, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <b>Threat Monitor -- March 15, 2007</b><br> <a href="http://media.techtarget.com/searchSecurity/downloads/03_15_07_TM_VoIP_exploits.mp3"><b>Plentiful VoIP exploits demand careful consideration</b></a><br> Enterprise VoIP vendors may tout "plug-and-play" products that are ready to run right out of the box, but those vendors may not be taking security into consideration. As information security threats expert Ed Skoudis writes, there are many potential VoIP threat vectors, but packet-based telephony services can be secured with due diligence and adherence to best practices. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/03_15_07_TM_VoIP_exploits.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/03_15_07_TM_VoIP_exploits.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/ThreatMonitor">Subscribe to Threat Monitor</a> </p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security360_03_15_2007.mp3"><b>Security360: SOA and Web Services Security</b></a> <br>SearchSecurity.com's Security360 podcast offers fresh perspectives -- from vendors, experts and infosec pros -- on a variety of complex information security issues. In our debut episode, we examine the state of security for service-oriented architectures and Web services. ZapThink analyst Jason Bloomberg offers an overview of the security issues unique to SOA environments, while executives from SAP and Oracle discuss how they address SOA security in their software. (Runtime: 29:45)<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security360_03_15_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security360_03_15_2007.mp3">Download MP3</a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_14_2007.mp3"><b>Security Wire Weekly -- Mar. 14, 2007</b></a> <br>Michael Sutton of SPI Dynamics introduces a software-testing technique called fuzzing and discusses how it can be applied to the software development cycle. Also, Apple releases a mega-fix, Go Daddy investigates a DDoS attack and IT pros report few daylight-saving time problems.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_14_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_14_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly</a></p> <p><b>Podcasts for the week of March 5, 2007</b><br> <img src="http://media.techtarget.com/searchSecurity/images/emailHeader-gradient.gif"></p> <p> <A HREF="http://searchsecurity.bitpipe.com/detail/RES/1171559587_765.html?src=pc_ssec_Custom1_03_09_07_c&li=48950"><b>Countdown: Top 5 mobile spyware misconceptions</b></a><br> Sandra Kay Miller of <i>Information Security</i> magazine counts down the top five mobile malware myths. <br><img src="/digitalguide/images/wav-icon.gif"> Listen to <a href="http://searchsecurity.bitpipe.com/detail/RES/1171559587_765.html?src=pc_ssec_Custom1_03_09_07_c&li=48950"><i>Countdown: Top 5 mobile spyware misconceptions</i></a><br><br> </p> <a href="http://media.techtarget.com/searchSecurity/downloads/SearchSecurity_Newsmakers_Garcia_03_09_2007.mp3"><b>Security Newsmaker: Greg Garcia</b></a> <br>In Episode 2 of our Security Newsmakers podcast series, <i>Information Security</i> magazine's Michael Mimoso and Marcia Savage, ask cyber security chief Greg Garcia about his priorities moving forward and get his take on the current threat environment. Garcia attended RSA Conference 2007 in February and told conference attendees that government, enterprises and academia need to work together to fight growing Internet threats. <br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/SearchSecurity_Newsmakers_Garcia_03_09_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/SearchSecurity_Newsmakers_Garcia_03_09_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techtarget/fHup">Subscribe to Security Wire Weekly and Security Newsmakers</a></p> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_07_2007.mp3"><b>Security Wire Weekly -- Mar. 7, 2007</b></a> <br>This week, IT professional Alphonse Edouard discusses what he's doing to prepare his company for this weekend's change to daylight-saving time, and whether it will interfere with his security patching. Plus, a troubled McAfee hires a new CEO and Mozilla fixes another Firefox flaw.<br> <p> <embed src="http://odeo.com/flash/audio_player_tiny_gray.swf" quality="high" name="audio_player_tiny_grayiCopy" allowscriptaccess="always" wmode="transparent" type="application/x-shockwave-flash" flashvars="audio_id=2306432&audio_duration=31.817&valid_sample_rate=true&external_url=http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_07_2007.mp3" pluginspage="http://www.macromedia.com/go/getflashplayer" align="middle" height="25" width="145"> <br /><a style="font-size: 9px; padding-left: 35px; color: #6a99fe; letter-spacing: -1px; text-decoration: none" href="http://odeo.com/audio/3593303/view">powered by <strong>ODEO</strong></a> <p> <a href="http://media.techtarget.com/searchSecurity/downloads/Security_Wire_Weekly_03_07_2007.mp3">Download MP3</a> | <a href="http://feeds.feedburner.com/techt