Video

Video Library

  • The future of hacking and the underground economy

    How is the underground economy evolving, and what can security practitioners do to anticipate and respond to future threats? In this Face-off video, Hugh Thompson and Adam Shostack discuss the best...

  • Face-off: Information security management metrics

    Are metrics useful, or do they just distract security pros from the real issues at hand? In this video, Hugh Thompson and Adam Shostack discuss the necessity of metrics.

  • 419 baiters: Not all scam emails from Nigeria

    Almost everyone has received an email promising riches from African royalty, but not all 419 scam emails come from Africa. Learn how to prevent employees from getting suckered in by these scams.

  • Cyberespionage and cybercrime response

    In this video, Rober Rodriguez, chairman and founder of the Security Innovation Network (SINET), discusses the state of cybercrime and cyberespionage, and what enterprises need to do to secure them...

  • How to be a Chief Information Security Officer (CISO)

    If being a Chief Information Security Officer (CISO) is your dream job, this video is for you. Ernie Hayden, consultant and former CISO, gives advice on the essentials, including how to keep things...

  • Face-off: Is end-user education worth the effort?

    In this face-off, security experts Hugh Thompson, Founder of People Security, and Adam Shostack, co-author of "The New School of Information Security," discuss whether user security awareness trai...

  • Paypal account security: Ways to prevent phishing

    Paypal has become known as one of the top organizations when it comes to fighting phishing, mostly because its been a target of so many phishing scams. In this interview, Paypal CISO Michael Barret...

  • 201 CMR 17 compliance: What you need to know

    The new Massachusetts data protection law, 201 CMR 17, is known as one of the most stringent laws of its kind. In this interview, David Navetta of the Information Law Group discusses how enterprise...

  • Metasploit and software vulnerability testing

    Metasploit is a free tool that can be used to pen test for new and potentially damaging vulnerabilites. In this interview, H.D. Moore, creator of Metasploit, explains how the tool works and what it...

  • Bruce Schneier on cryptography and U.S. gov. infosec

    Author and leading security expertBruce Schneier digs into the topics of the current state of cryptography and whether or not companies should care about the U.S. government's release of portions o...

  • Re-evaluating QSA training

    Recently, the PCI QSA training process has come under scrutiny over the quality of individual PCI assessors. In part two of this interview, Bob Russo, General Manager of the PCI Security Standards ...

  • The future of PCI DSS

    Bob Russo, General Manager of the PCI Security Standards Council, discusses upcoming changes to the PCI DSS, including what new changes might be mandated, and when they might go into effect.

  • Assessing the botnet threat

    Botnet researcher Joe Stewart discusses the current threat levels presented by botnets and how to protect your enterprise from DDoS and other botnet attacks.

  • Face-off: Has social networking changed data privacy?

    In this exclusive conversation, security industry luminaries Hugh Thompson, founder of People Security, and Adam Shostack, author of "The New School of Information Security," discuss the state of s...

  • David Navetta on proposed DATA law

    Attorney David Navetta discusses the proposed DATA law, including the similarities and differences with existing state data privacy laws.

  • Cryptographer on SSL, encryption and cloud computing

    Cryptographer, Taher Elgamal of Axway Inc., the inventor and initial driving force behind SSL, explains how applications may be better adapted to defend against attacks.

  • Botnets, malware and capturing cybercriminals

    Malware isn't getting more sophisticated, but cybercriminals have better tools to control their botnets and deploy more targeted attacks, says Gunter Ollmann of Damballa, Inc.

  • VeriSign on DNSSEC support

    Joe Waldron, a product manager in VeriSign's Naming (DNS) Group, said engineers are testing and upgrading systems to support security extensions for DNS (DNSSEC).

  • Regulatory requirements driving role management

    Learn how implementing IAM technologies and strategies can help your enterprise achieve compliance with various regulations.

  • Security risk factors: Business partners and pandemics

    In this exclusive interview, Sara Santarelli gives tips on how to deal with the risks posed by business partners and possible pandemics, and how to assess your enterprise's exposure to these risks.