Last show of 2006!!  Today on a short show, Bret talks about Sony's settlement with seveal states, January 2007 is the month of Apple Security Bugs, Vista exploits selling for 50K, congressional aid caught trying to get his grades changed, a fast dictionary, hacker challanges and puzzles, email address that will expire in 15 mins, and a virtual collaboration whiteboard.

You still have time to submit you "where is Ovie" picture at www.multimediaforensics.com.

Happy New Year!!

On this festive pre-Christmas show Bret talks with Mike Younger and Geoff Michelli.  They talk about a Skype lie detector, mac changing utility, anonymous surfing websites, a pop3 aggrigator, secure notepad, the VA Army National Guard members personal data stolen on a laptop, class president at Cooper City High charged with chaging grades, Hackthissite.org founder sentenced to 24 months, interesting password article, imaging Windows memory, hack free zone, your browser information site, and how to hack a master lock at i-hacked.  How to make your bass say "PORK"?

Where is Ovie?!  Check out these submissions and enter the contest!!

http://multimediaforensics.com/viewtopic.php?t=43

The winner will get an autographed CyberSpeak mousepad!!

Today Bret has Mike Younger on the show.  Bret and Mike talk about spam statistics, IT background checks, Blackberry forensics, gmail mail fetcher, preview.local.live.com, and www.tmto.org.

Remember www.multimediaforensics.com!

Today Bret talks with Brian Dykstra, CIO and Director of Education at Mandiant, about the ediscovery rule changes.  Bret also talks about virtual machine detection in malware, spamgourmet, employee comensation, Encase version 6, Nigerian scam still works, FBI dropps boarding pass generator investigation, Parallels build 3036, proxy site lists, 30-essential pieces of free and open software for Windows.

Please take the time to give us a review on iTunes.

Drop by Brian Dykstra's site at www.virtualwar.com

Today we have a short Thanksgving weekend show. Bret talks about a Mac remote control program called iForgot, a decision by the Florida Supreme Court upholding the conviction of Michael Simmons, Hype-Free article on packing, F-Secure publishes IAdware, Virus in Second Life, Procmon from Microsoft, safe passwords, VIM Tips , MacSpoof, and Speed Talker video.

Don't forget to checkout www.multimediaforensics.com for more detailed show notes.

This show we interview Kris Kendall, Principal Consultant for Mandiant.  He talks about unpacking binaries when conducting malware analysis.   Bret talks about a recent court decision from the Military Courts of Appeals, Guidance Software settles complaint filed by the FTC, malware in the movies, malware on video cards, toon site www.homestarrunner.com, and a site with linux tutorials www.howtoforge.com.

Thanks again to Geoff Michelli our new Sound Engineer. 

Detailed show notes can be found at www.multimediaforensics.com

Today Bret talks with Jesse Kornblum, Principle Computer Forensics Engineer for ManTech's Computer Forensics and Intrusion Analysis Division, about his paper, Eploiting the Rootkit Paradox with Windows Memory Analysis. Complete show notes can be found here.

This short show we talk about upcoming interviews and some behind the scenes info from CyberSpeak.  Also checkout http://www.pcnames.com/ and http://www.cheapmacapps.com.

Bret

Today Mike and Bret talk about listener feedback, google fully adopting Writly, Tchnalign releases linux based computer forensics system, Purdue researchers receive funding for digital forensics, www.internetfrog.com, perian.org, and Mike says hi to Seth.

PS. You might have noticed that we have added a subscribe button to our page. This will allow listeners to donate $2 a month to help support the show. Thanks to all that have already chipped in!

Today we have an interview with Tom Gallagher, Microsoft Office Security Test Team Lead about his new book Hunting Security Bugs.  Tom tells an interesting story about how Microsoft almost balked at allowing some of the reverse engineering content in the book.  Bret and Mike talk about listener email, Firefox flaw joke, another conversation about hacking ATMs, the USB Hacksaw,  MySlax utility, www.dappit.com, and www.cl1p.net.

Interview with LiveView author, Brian Kaplan from CERT.  Also Bret talks about a zero-day Firefox exploit, a New Zealand man who recently escaped a hacking conviction, would you hire a black hat?, great TV shows online, and backtrack bootable CD at remote-exploit.org.

I apologize in advance for the audio quality of the interview with Brian Kaplan.  I tried my best to clean it up.

rm -rf *

Today Bret talks about listener experiences with LiveView (Harlan Carvey posted his experiences here and Richard Betlich posted here),  the Techno Forensics Conference 2006, the Highpoint X4 Multi-lane 4 Bay External SATA Enclosure with PCI-X Controller for multi-terrabyte external storage, an individual who posted his google search history, ATM manual and default password list, hunting phishers, security of Diabold's evoting machine, metadata tools, cross site scripting, escalating your privileges on a windows XP system, a real time HTML editor, and an airline ticket forecasting site. 

We are giving away a copy of Enemy at the Watercooler to the best listener email. 

Also, don't forget to support Mandiant First Response and go to SC Magazine's Best Computer Forensic Solution. VOTING IS NOW ON, check it out here.

Today Bret and Mike talk about Forensic Imaging issues.  We also discuss a man who reprograms an ATM, free forensics training, child porn found after 911 call, liveview, how to create a context menu to print filelistings in Windows XP, creating gmail spam filters, a Mac OS X disk inventory utility, and Techno Forensics 2006.

Show notes will be posted soon

This is a repeat of the September 3rd posting. There was a problem with the file being posted. If you have the September 3rd edition of the show with the Keith Jones interview you can delete this one.

Back from vacation.  This week we talk with Special Agent David Farquhar from the Federal Bureau of Investigations about his recent successful botnet case in Seattle Washington.  We also talk about the Motorola Q, DefCon, speedtest.net, thinkfree.com, and listener email.

This show we have a special guest Richard Bejtlich, founder of TAO Security, who talks about his security blog and his book Real Digital Forensics (see link on cyberspeak page).  Bret has a short show this week, Ovie is recovering from his Blackhat hangover (ok really he is working this weekend, but hangover sounds more interesting).  Bret talks about BlackHat 2006, changes on the cyberspeak site, Kevin Mandia's SC Magazine article "What pill can I take for cyber insecurity?",  and real time airport monitoring.

This show we interview Brian Contos, Chief Security Officer for ArcSight.  He talks about his new book Insider Threat: Enemy at the Watercooler.  Also on this show we discuss the new FBI computer crime survey results, Web Historian 1.3, new look to CyberSpeak site, and a couple of websites of the week.  This show is dedicated to Tim Poole's "bloody left mouse clicking finger."

This episode we have an exclusive talk with Jesse Kornblum about his new SSDeep tool for piecewise fuzzy hashing!!  This is a revolutionary way to approach computer forensics!  We also talk about antivirus solutions clamav and AVG, why antivirus doesn't work, CISCO to get  new vulnerabilities released at BlackHat, speedtest website, and how to make fake biometrically sound fingerprints.  Extra credit this show goes out to our Producer/Editor Tim Poole.

This show we speak with the Dark Tangent about changes this year for DEF CON and BlackHat. Also in this episode we discuss the UBS Painwebber logicbomb trial, consultant hacks FBI, two-factor authentication phishing attacks, Semantec says Windows Vista is less secure than Windows XP, throw away email accounts, truecrypt flash toutorial, sodaplay (let me know what this is), website to transer and share files, tv on the web, Xyloc devices, and a tool to obfuscate your email address in javascript code.  The show is 61 mins long.  This show is brought to you by the letter 45.

Today we send Ovie overseas and talk with Johnny Long.  Johnny talks about his upcoming talks at Blackhat and DEFCON this year.  We also cover how to detect if you are being spied on by the NSA, the VA gets it laptop back, and guess what, Microsoft is getting sued!

This week we talk about Mandiant's webinar, vmware, DOJ CCIPS, police using data brokers,  Blackhat,  the top 100 security tools, Windows call back, a Washington Post story incorrectly quoting Kevin Mandia, and ZoHoShow.

Show notes coming soon!?

We have Mr Younger back in the studio!  Bret gives out link to free MANDIANT webinar on database intrusions.  We talk about Microsoft updates, theft of laptops with sensitive data from AIG, Parallels on Apple, USB hacking, dumb ways to secure wireless, Skype integrated into Ebay, getting millions of pages indexed by Google, sushi USB drives, and research on quick hard drive destruction.  Websites of the day include National Institue of Justice and Zoomr geo-photo gallery.  Sorry for all the sound effects.  We (Bret) got carried away.

Bret discusses his quad-monitor display unit, Wal-Mart is a chick magnet, Mercury's Free Evidence Mover, Nic Harbor updating DCFLDD.  A story about Best Buy's Geek Squad failing to destroy old hard drives and they wind up at a flea Market. Eraser programs- Derick's Boot and Nuke, www.heidi.ie/eraser .  New version to Skeuthkit found at www.sleuthkit.org, and Harlan Carvey give a go-by for his Forensic Server Project which can be found at http://windowsir.blogspot.com/.  

This show we have a great inteview with Jesse Kornblum about memory analysis.  We also talk with Steve Bunting about LogParser 2.2 from Microsoft.  Ovie and Bret recite an Apple cartoon.

This show we have Mike Younger in the studio.  We talk with Mike about stuff.  Mike talks about stuff.  And then we talked about more stuff.

This week we have Mike Younger drop in on us.   We talk about Microsoft patch Tuesday, MAC vulnerabilities, Pentagon is hacked, Football player beats up nerd, ABC to start showing programs on the web, and free webbased storage.

The episode we talk with Steve Bunting about his new ENCE Study Guide.  We also talk about the UK hacker Gary McKinnon, Microsoft Live Answers, and Valley Schwag for $15 a month. Rep. Joe Barton of Texas, who chairs the House committee responsible for writing Internet and telecommunications law, has pledged to work on legislation related to mandatory data retention.  A 20-year-old California man has pleaded guilty to launching a bot network attack that compromised computers at a Seattle hospital and several universities.  We also discuss poor Patrick Kennedy and his recent memory loss after his traffic accident.  We also answer a question from George from In the Trenches podcast.  

A great web site pick of the week is at Remote Exploit.org. 

Sorry about the slip of a week, but we are now back on track.  We talk to Mark Rache columnist for Security Focus and Senior Vice President and Chief Security Counsel at Solutionary Inc. about his "Forensic felonies" article.  We also talk with Dave Merkel, Vice President of Products at MANDIANT about the release of First Response version 1.1, trojans that hold your computer for ransom, USB ported security applications, residential WiFi sharing, impossible to recover from spyware and viruses, Freenet version 0.7, and SecurityWizardry.com.

In this show we interview Jaime Florence from MicroForensics about Mercury, a new forensic text indexing product.  We also talk about the DOJ's initiative to fight child porn, Opera version 9 Beta, Texas Governor Issued executive order prohibiting P2P, Microsoft Live Drive, new wifi law, data retention for ISPs, video showing graffiti on Air Force One, and free 411. 

Upcoming Conferences:

LayerOne 2006
Apr 15-16, Los Angeles, CA
http://www.layerone.info/index.html
                2006 GFIRST Conference
                Apr 30-May 05, Orlando, FL
                http://www.us-cert.gov/GFIRST
                Computer and Enterprise Investigations Conference (CEIC) 2006
                May 03-06, Las Vegas, NV
                http://www.ceic2006.com

The show is about 1 hour 9 mins long.  Thanks to Brian for pointing out how to put links in the show notes!  Thanks to Tim for editing the show again!

In this show we discuss recent computer crime news, Micro Forensicâs Mercury indexing software, upcoming conferences and more.

SANS Fire 2006 July 5 - 13, 2006 Washington , DC- CyberSpeak Listeners get 5% off - that is a savings of $150+

CyberSpeal Listeners get $50.00 off purchase of Mercury - htt[://www.microforensics.com

Guidance Software has partnered with Sybex, a John Wiley imprint, to release the industryâs first in-depth study guide for EnCEâ

http://www.forensicswiki.org
http://www.dexterity.com/articles/overcoming-procrastination.htm

In this short show we talk about some Microsoft initiatives, shared access, deciphering information in the Windows/prefetch directory, live.com, expo.live.com.  Weâve been Zinged by www.podzinger.com.  We also briefly discuss a new indexing tool that works with EnCase called Mercury from www.microforensics.com â ALL CyberSpeak listeners can get $50 off by emailing the owner and saying that you heard about Mercury on CyberSpeak.   We also discuss Appleâs âBoot Campâ?.  Appleâs sanctioned application to dul boot and run Windows XP on your MacBook.  We also have a new SOUND engineer editing our podcast. 

In this short show we talk about some Microsoft initiatives, shared access, deciphering information in the Windows/prefetch directory, live.com, expo.live.com.  Weâve been Zinged by www.podzinger.com.  We also briefly discuss a new indexing tool that works with EnCase called Mercury from www.microforensics.com â ALL CyberSpeak listeners can get $50 off by emailing the owner and saying that you heard about Mercury on CyberSpeak.   We also discuss Appleâs âBoot Campâ?.  Appleâs sanctioned application to dul boot and run Windows XP on your MacBook.  We also have a new SOUND engineer editing our podcast. 

In this show we interview Harlan Carvey author of the Forensic Server Project. Also we talk about SansFire 2006, CyberSpeak is good for CISSP credits, piggybacking wireless, and cute overload.

In this show we give a walkthrough of MANDIANT's First Response tool. We also talk about Microsoft creating C# for the Mac, Firefox 2 Alpha 1, spray on fabric, on10.net, and listener email.

In this show we play the second part of our interview with Kris Kendal from Mandiant about malware analysis. Also we talk about the FBIs new computer system, reaffirmation of computer forensic tools, does gmail ever delete your email, RFID tag vulnerabilities and listener email. This show is 58 minutes 17 seconds.

This show Bret announces his marriage to Jill, we talk to forensic equipment manufactures at FOSE; James Wiebe from Wiebetech.com about 2 new devices, a CD/DVD automated imaging device and a new SCSI to fire wire 400 write block device. We also talk to Todd Bellows, a sales representative from LogiCube.com about the CellDek, a new cell phone imaging device and the new Triton which is the next generation LogiCube. We discuss free forensic tools, analysis of RAM, and GoodMail. Bret hacks his wife's Prius car area network (CAN). This show is 62 minutes.

This show we talk to Dave Merkel, Vice President of Products at MANDIANT. He talks about the release of their First Response tool for incident response. We also talk about Microsoft Anti-Spyware, Javascript bug in Gmail, where Bret shops for his clothes, and the color purple. This show is 51mins 46 secs.

This week part one of our talk with Kris Kendall from Mandiant about malware analysis. Also Mike Younger from Stroz Friedberg, LLC joins us for a chat. We cover a question about USC 2703, how to build a keylogger, and an update on the Washington Post story about the botmaster.

In this show we interview Bruce Potter founder of the Shmoo Group, a non-profit think-tank of computer security professionals. We also talk about Max OS X viruses, interview with a botmaster, indictment of a botmaster, file registary, Web Historian, and listener email.

In this show we talk again to Mr Jesse Kornblum. Also we discuss slipstreaming, dynamic drive partitioning, caffeine naps, and Google Desktop Beta 3. Bret and Ovie talk a little about their backgrounds. This show is approx 1hr 2mins.

This week we talk with Brian Carrier, author of File System Forensic Analysis. Also we dicuss NTFS performance, TOR FTK, and the TI-99/4a.

In this episode we interview President of Red Cliff Consulting, Mr. Kevin Mandia, about trends in incident response. Also we talk about the windows registry, what not to do when interviewing for a tech job, brief talk with Nicholas Harbour about new version of DCFLDD, and NSA document redaction guidelines.

This show features an interview with Johnny Long. Johnny talks about his work with GoogleHacking and his new book OS X for Hackers at Heart. Also in this episode, web based network tools, how to trace an email, more info on WMF vulnerability, and sticky note Firefox extension.

Microsoft Windows Silent Adhoc Network Advertisement Vulnerability. Last weekend Simple Nomad, hacker and security researcher, announced a new Windows wireless vulnerability during his "Hacking the Friendly Skies" presentation at ShmooCon 2006. CyberSpeak interviews Nomad about his findings and how to protect your systems. This show is abbreviated and is released out of sequence to get this information to our listeners quickly. We will be releasing our full length show as usual later this coming weekend.

This show features how to run other operating systems on your PC, Windows Password Reset, Pinball, Core Force Firewall, ZoHo Writer, Senuti, Windows Font Vulnerability and discussions on methods forensic examiners can use to process Email and large data sets.

This show features an interview with Helix creator, Mr. Drew Fahey. Also, new OpenOffice portable applications, what's a zero day, student arrested for recommending the F5 key and listener email.