Videos
-
Android security issues point to Android platform security concerns
Video: Researcher Dan Guido discusses mobile attacks and Android security issues, highlighting Android platform security concerns like app downloads.
-
Dave Shackleford on improving internal pen testing methodology
Video: Learn how to improve your pen testing methodology in the areas of reconnaissance, scanning, enumeration, penetration and reporting.
-
Peter Kuper on IT and the economy; IT security spending outlook
In this special keynote, In-Q-Tel's Peter Kuper analyzes the state of IT and the economy in 2012, and the resulting IT security spending outlook.
-
PCI compliance guidance fueling technology investments, expert says
Despite no update to PCI DSS until the end of 2013, merchants are busy with compliance initiatives, explains Diana Kelley of SecurityCurve.
-
Andrew Hay on steps in an MDM comparison
Expert Andrew Hay discusses security threats putting mobile devices at risk and lists the steps in an MDM comparison.
-
Ira Winkler on business data privacy issues on the Internet
Video: Ira Winkler explains how companies often unknowingly share too much information on the Internet, weakening their competitive positions.
-
Mike Mitchell on the near-term plans of the PCI standards council
Video: The PCI SSC plans to create more SIGs around hot topics, and offer more training options in the coming year.
-
Brian Contos on detecting rootkits with hardware-based security
Hardware-based security tools can help security teams detect rootkits that are used by attackers to hide malware below the operating system.
-
Jeremiah Grossman on making hard information security budget decisions
IT investments and IT security investments are often out of alignment. Jeremiah Grossman suggests ways to get the infosec budget back on track.
-
Gartner's Greg Young on enterprise IPv6 security issues
Video: Gartner Research VP Greg Young discusses enterprise IPv6 security issues, including why IPv6 transitions introduce new risks.
-
Malware detection and prevention fundamentals
Learn about the state of the malware landscape as it pertains to small and medium sized businesses and get a rundown on the most common types of malware.
-
Understanding the insider threat
In this video, Dawn Cappelli, a member of the Technical Staff in CERT at Carnegie Mellon University's Software Institute, outlines three different types of intentional insider threats.
-
Top secure authentication trends: Cloud biometrics, next-generation authentication
In this video, Ant Allan discusses secure authentication trends, including next-generation authentication options and cloud biometrics possibilities.
-
Webcast: Conduct network forensic analysis to uncover digital crimes
Experts Sherri Davidoff and Jonathan Ham discuss how network forensic analysis exposes the evidence of digital crimes, plus conducted user Q&A.
-
Video: Software Reliability: Building Security In
In this video, learn state-of-the-art techniques for building a secure software development process.
-
Holistic security for database-centric applications
In this exclusive video presentation, Nemertes Research Senior Vice President and Founding Partner Andreas Antonopoulos provides an executive overview of the security issues of securing database-centric applications and the key tactics essential to success.
-
Screencast: Employ the FOCA tool as a metadata extractor
Mike McLaughlin demos the FOCA tool as a metadata extractor to expose the 'hidden' data users often post on their own websites.
-
Screencast: Burp Suite tutorial highlights Burp Proxy, other key tools
In this screencast, Mike McLaughlin offers a short Burp Suite tutorial, including the key features of this powerful pen testing tool: Burp Proxy.
-
Webcast: Building a data management program for PCI DSS standards
In this special presentation, expert Mike Chapple explores how to build a data management program in support of enterprise PCI DSS compliance.
-
Screencast: How to use GHDB to identify security holes, Googledorks
In this screencast, Mike McLaughlin uses the Google Hacking Database (GHDB) to identify Googledorks and other security vulnerabilities.
-
Katie Moussouris of Microsoft on vulnerability disclosure, ISO standard
Katie Moussouris discusses coordinated vulnerability disclosure, the Microsoft Blue Hat Prize and developing an ISO vulnerability disclosure standard.
-
Ira Winker: Does recent hacktivism news justify enterprise hacktivism defense?
Information security expert Ira Winkler discusses hacktivism news, in the wake of Anonymous and LulzSec, and justifies why enterprise hacktivism defense isn't needed.
-
Webcast: DNS security best practices; securing DNS infrastructure
Char Sample details three key methods for securing DNS, including how to monitor an enterprise’s DNS infrastructure traffic.
-
Video: PCI liability, HIPAA enforcement rule, breach notification laws
Attorney David Navetta discusses why PCI liability matters to card brands, the effect of the HIPAA enforcement rule and breach notification laws.