SSCC 74 – fighting hi-tech crime, Kelihos botnet, iCode for USA, Amazon Silk tablet, Mac malware and the BEAST

Sophos Security Chet Chat logoThis week, Chester Wisniewski discusses the interesting and important stories of the week with Paul Ducklin, Head of Technology, Asia Pacific, at Sophos.

Chet and Duck talk about:

* co-operating to fight hi-tech crime;

* tackling the Kelihos botnet;

* taking on zombified home users to fight bots at source in the USA;

* weighing up the risks of the new, low-cost Amazon Silk tablet;

* and understanding the BEAST.

If you haven’t been following security news lately, the BEAST is a recently released proof-of-concept toolkit which can extract encrypted data from SSL3/TLS1 sessions.

The vulnerability it uses was addressed with an update to the TLS standards five years ago; Chet and Duck discuss some of the reasons why we’re still stuck in the TLS 1.0 mud.

Listen now:

(30 September 2011, duration 16:23 minutes, size 15.7 MBytes)

Don’t want to listen online? Download the podcast for later:

Download Podcast

Sophos podcasts are also available via Stitcher, on iTunes or from our own podcast RSS feed.