Episode Archive

56 episodes of Security Conversations since the first episode, which aired on December 6th, 2017.

  • Throwback: Zero-day exploit broker Chaouki Bekrar

    March 3rd, 2021  |  24 mins 42 secs
    exploit brokers, exploits, pwn2own, vupen, zero-day, zerodium

    This is the republication of an interview first conducted in March 2013 with then-VUPEN chief executive Chauki Bekrar. The audio file was lost in several podcast platform transfers and I'm glad to be able to retain this interview for historical purposes.

    The recording was conducted in the hallways of the CanSecWest Pwn2Own hacking contest in 2013 where Bekrar's team of hackers demo'd a zero-day attack against Microsoft Internet Explorer 10 on Windows 8, an exploit that bypassed all mitigations including the browser sandbox. We chat about the controversies surrounding the sale of zero-day vulnerabilities and exploits, his company’s business dealings and the work that goes into winning the CanSecWest Pwn2Own hacker contest.

    Please excuse the audio quality and background noise.

  • Selena Larson, Intelligence Analyst, Dragos

    September 16th, 2020  |  52 mins 17 secs
    blue team, ics, journalism, ransomware, red team, scada

    Journalist-turned-intel analyst Selena Larson joins the podcast to discuss the nuances of cybersecurity journalism, making the shift to analyzing intelligence and writing for a private audience, the ransomware epidemic, and the state of critical infrastructure security.

  • Fredrick Lee, Chief Security Officer, Gusto

    September 10th, 2020  |  41 mins 37 secs
    business continuity, compliance, corona virus, covid, crisis management, cybersecurity, pandemic, privacy, security

    Gusto chief security officer Fredrick 'Flee' Lee talks about his passion for democratizing security, solving problems for small businesses, the responsibilities of being a black security leader, and the people and experiences that influenced him along the way.

  • Zack Whittaker, Security Editor, TechCrunch

    September 1st, 2020  |  25 mins 45 secs
    journalism, news gathering, story-telling, writing

    TechCrunch security writer Zack Whittaker stumbled into journalism while in college and has carved a successful career covering cybersecurity the last decade. He joins the podcast to talk about landing at ZDNet out of university and some lucky breaks along the way. Zack also talks about the trials of living and working with Tourette syndrome.

  • Jason Chan, VP, Information Security, Netflix

    August 18th, 2020  |  31 mins 4 secs
    ciso, leadership, serverless, zero-trust

    Netflix security leader Jason Chan talks about the connections between ultra-marathons and running a robust security program, his view of the defender's top priorities, the talent shortage in cybersecurity, and the shifting patterns that drive secure code delivery.

  • Matt Honea, Senior Director, Cybersecurity, Guidewire

    August 11th, 2020  |  46 mins 36 secs
    cyber-insurance, data recovery, insurance, ransomware

    After a career in government that included physical security work for the U.S. State Department, Matt Honea transitioned to Silicon Valley and turned his attention to the cyber-insurance space. He joins the podcast for a frank discussion on cyber-insurance, ransomware payments and trends, and his opinions on innovation in security.

  • Andy Greenberg, Senior Writer, Wired

    August 11th, 2020  |  59 mins 47 secs
    journalism, news gathering, story-telling, writing

    Cybersecurity journalist and author Andy Greenberg joins the podcast to talk about his career as a journalist, the ins-and-outs of negotiating a big story with sources, the intricacies of writing a good book, and some of his biggest stories to date.

  • Brooke Pearson, Security Awareness, Uber

    June 17th, 2020  |  1 hr 1 min
    diplomacy, security, security awareness

    After a career in diplomacy at the U.S. State Department, Uber's Brooke Pearson headed to Silicon Valley to find a new path in cybersecurity. We chat about her early interest in Russia and international relations, a life-changing chance encounter during an airport layover, using non-traditional skills to find success in tech, and her passion for helping minorities find meaningful careers in security.

  • Tim MalcomVetter, Red Team Lead, Walmart

    May 4th, 2020  |  59 mins 34 secs
    blue team, offense vs defense, red team, simulated hacking attacks

    Tim joins the podcast to talk about red-team/blue team dynamics, the adversarial relationship between the two sides, the mentality of a determined attacker, and why everyone in cybersecurity should give jiu-jitsu a try.

  • Matt Suiche, Comae Technologies

    April 17th, 2020  |  42 mins 36 secs
    community building, entrepreneurship, memory forensics

    Hacker-turned-entrepreneur Matt Suiche reminisces about the hacking scene in France, his introduction to memory forensics, building a selling a company, and his passion for spreading security research in developing countries.

  • Jaime Blasco, AT&T Cybersecurity

    April 14th, 2020  |  31 mins 7 secs
    leadership, mentorship, threat intel

    AT&T Cybersecurity's Jaime Blasco talks about falling in love with security as a high-school student in Spain, finding a career path in pen-testing and offense, shifting to building defensive technologies and his current passion for exploring the value of machine learning.

  • Collin Mulliner, Security Engineer, Cruise

    April 3rd, 2020  |  33 mins 28 secs
    android, ios, mobile, palmos

    Mobile security research pioneer Collin Mulliner talks about the early days of hacking PalmOS devices, the current state of smartphone platforms, his work on securing self driving cars, and why he built and open-sourced a firmware analyzer tool.