Speaking of Security – The RSA Blog and Podcast

The level and sophistication of advanced threats is a constantly moving target pitting the advantages of smart and patient attackers against security teams that often times can’t possibly know what to look for when an attacker employs specialized techniques and tools designed to cloak their movements. What happens when an attacker doesn’t have to rely on malware to infiltrate their target or when an attacker is able to successfully blend in like a legitimate insider? In this edition of the Speaking of Security Podcast, Tom Chmielarski, Practice Lead in RSA’s Advanced Cyber Defense Services shares some of the attack techniques he’s seen used in real breach cases, along with best practices used in the detection and defense of these advanced attacks.

• 

In this edition of the RSA Speaking of Security Podcast, Tom Chmielarski, Practice Lead with RSA’s Advanced Cyber Defense consulting practice, talks about specific threat intelligence strategies that organizations can take in the defense against malware and advanced attackers. Tom is one of the lead consultants bringing RSA’s Next Generation Security Operations Design and Implementation [...]

• 

Great deals abound online for holiday shoppers during the hottest time of year where e-commerce merchants are looking to cash in on what is projected to be a US$1.25 billion spending spree just on Cyber Monday alone. Where the money goes, so do cybercriminals who are also looking to make illicit gains of their own using clever ruses such as phishing emails and web pages that promote discounts and offers that are too good to be true when in reality they are harvesting credit card numbers, stealing identities and anything else that can be turned into cash. Rueben Rodriguez from RSA’s Identity Data & Protection group joins the Speaking of Security podcast to talk about what consumers and online merchants need to look out for to avoid getting fooled by cybercriminals this holiday shopping season.

• 

Amy Blackshaw, Sr. Product Marketing Manager for RSA’s Identity Protection and Verification business talks about the burgeoning issue of Account Takeover fraud of online bank accounts through malware and sophisticated attacks. Amy also discusses new features being introduced in the newest version of the RSA Adaptive Authentication solution to help banks and their customers protect against these threats.

• 

Angel Grant, a member of RSA’s Identity and Data Protection product marketing team and an oft-quoted expert in the media on cybercrime against consumers and online banking, returns to the Speaking of Security podcast to talk about online fraud trends in healthcare, highlighting what information hackers are after and what they’ve been observed doing with it.

• 

With the theft of an estimated 50 million passwords from various breaches at major web site operators in 2012, the industry is ripe for a transformative approach to one of its most pressing security problems. RSA Labs Chief Scientist Dr. Ari Juels and RSA Senior Product Marketing Manager Liz Robinson join the podcast to describe the new RSA Distributed Credential Protection software, a first-of-its-kind innovation from RSA that distributes and randomizes secrets to help protect from bulk password credential loss.

• 

RSA’s latest Security Brief provides insights from security leaders and other industry executives for how organizations can transform traditional security into an early warning system for advanced threats. RSA’s CISO, Eddie Schwartz highlights the capabilities needed in next-generation information security strategies- including hot topics like “big data” security analytics: using vast volumes of information from diverse sources to detect security threats based on behaviors and context, not signatures.

• 

RSA’s Peter Tran talks to Speaking of Security about new Advanced Cyber Defense Services being offered to help orgnanizations in North America and Europe create proactive strategies for defending their digital assets against a wide range of threats, and provide incident response expertise designed to help customers react aggressively to active attacks and critical incidents.

• 

Software security industry consortium SAFECode recently released a comprehensive set of guidelines and tools for software developers everywhere employing Agile software development methods. SAFECode members Reeny Sohndi of EMC and Edward Bonver of Symantec talk through the highlights and numerous benefits of SAFECode’s latest “Software Security Guidance for Agile Practitioners” white paper.

• 

The worldwide attention on the 2012 Olympic Summer Games has provoked interest from the fraudster underground to leverage the Games to launch myriad phishing and social media attacks on unwitting fans to spread malware and steal personal information. RSA’s Angel Grant talks about the different types of online scams to watch out for around the Olympic Games.

•