Host Unknown Supports The Little People


Host Unknown Proudly Sponsors BSidesLondon

*Press Release*

2nd June 2016

Host Unknown, the undisputed leader in information-security based videos made by three random men based out of London is unwavering in supporting the community.

The trio who podcast, act, sing, and dance have delighted and educated the information security scene for the past several years.

Sole Founder Javvad Malik was on the original committee that founded BSides London explained the rationale behind sponsoring the event that takes place on the 8th of June 2016 at the ILEC Conference Centre in London.

“I’m so proud of what BSides has achieved over the last few years. From the humble beginnings in 2011, I’ve seen it grow almost as fast as Andy’s waistline. But simply delivering awesome talks and being a beacon of coolness doesn’t pay the way for conferences and we felt it was time to give back in a more direct way.”

Sole Founder Andrew Agnês elaborated further, “We looked at everything that is important to make a conference happen. Venue, speakers, crew, tickets, catering, after-parties – the works. I made the executive decision to support the conference in the most meaningful way possible – and that was to supply lanyards and badge ribbons. The real measure of how successful a conference is.”

Sole Founded Thom Langford added, “When you have piles of money and Panama is no longer a viable investment option, you can get bored very quickly. Even after my great grandfather contracted Delirium Tremens, he continued to support his community. I’d like to think he’s proud of me continuing his legacy today.”

IMG_1026 (1)

Version 3 Version 2

*About Host Unknown*

Host Unknown is an information security educational / entertainment group from London, England. It was the pioneer and most significant popularisers of Infosec-Rap and is widely considered one of the seminal groups (based in London) in the history of information security. The group has endured controversy owing to their lyrics which many security managers viewed as being disrespectful of their trade, as well as its glorification of certifications and risk management. The group was subsequently banned from many IRC and sub-Reddit channels. In spite of this, the group has amassed 50,000 YouTube views.

Accepting Risks

risksOne could argue that life is all a series of risks. Sometimes we remain in a state of ignorant bliss. Other times, we are aware of risks and take measures to mitigate it. But sometimes we choose to accept the risk.

Accepting risk is not a bad thing. Quite the opposite. Without risk acceptance, there would be no innovation. The reservoir of great ideas would dry up and bankers would have to make do make ends meet with mere six figure bonuses. Risk acceptance is the grown up thing to do. “We understand the risk, and chose to accept it. It’s the cost of doing business.”

But the question is whether some of the risks businesses accept are “unreasonable”. Like creating a toy that captures children’s information. Such as their name, address, birthday, photo, parents details, and allergies – then taking this information and putting it on an insecure website.  We don’t mean a website that is accessible over HTTP minus the S. But a website so insecure that it makes OWASP training websites look ‘military grade secure’ by comparison.

Thankfully though, whenever a company is breached and millions of customer records are exposed – a company can merely shrug and say sorry.  All the time while assuring they ‘take security seriously’.  Customers don’t like it.  Troy Hunt will upload the data to and the world will grit their teeth and take it.  This is the seedy world of corporate risk acceptance.  The terrifying underbelly of cyber-actuarial tables (if such a thing exists).

The point is that you can’t innovate and deliver new functionality to customers by building a secure website. Or waste precious time ensuring your hardware is hacker-proof. If you do, your competitors will have leapfrogged you.  Not to mention, no customer would want to pay a premium on your offering just because you say it’s more secure than the others.

Or maybe the real question is “how secure do I need it to be?”.

Host Unknown presents: Accepted the Risk (A Risk Management strategy for removing blockers to productivity)

Why waste time remediating when you can simply accept the risk?

@HostUnknownTV bring to life a Risk Manager who gets the balance of risk management very wrong.  Are the CISA auditors being inflexible or did Javvad skip a module on his CRISC?

Love it? Hate it? Leave a comment below!


Produced by Mahmoud El-Azzeh @mantheycallmoo

Directed by Mahmoud El-Azzeh

Director of Photography – Caleb Wissun-Bhide

1st Assistant Cameraman – Iustin Filip-Mucenic

Editor – Lara Blanco

VFX and Colour Grading – Timothy Greenfield



Javvad Malik

Andy Agnês

Thom Langford


Dancers provided by Epika Dance

Emiko Jane Ishii




Pauline Singh

Lee Munson


An Elazayan Films Production

Now even more ways to get your Host Unknown Goodness

HU Podcast LogoNever let it be said that Host Unknown jumps on a bandwagon; they prefer to create their own path in this industry, and do things their way, whatever the personal cost. It explains a lot.

Therefore, Host Unknown is proud to announce the release of their very first “iAudioBlog”, an entirely new way of disseminating their unique viewpoints of the information security industry to even more of the masses discerning listening public. The more cynical of you may see this as simply a Podcast, but Host Unknown think of it as so much, much more than that. Even just getting the three egos into one room was challenging enough, let alone having to restrain Andy from his infosec tourettes, stop Jav from dominating everything by mentioning his new employer at every turn, and stop Thom falling asleep at regular intervals. How they even managed to get special guests to appear on such a show like this is simply just another sign of how committed they are to their craft.

Unfortunately host Unknown have had to conform to the strictures of modern iAudioBlog listening and have submitted their pilot blog to iTunes for review and dissemination through their “Podcast” channel. As soon as it is published we will inform everyone, but if you can wait, you can listen to it right her, right now!

Of course, this now means you can vote for Host Unknown in more than just the Best Security Video Blog, but also the Best Security Podcast. Host Unknown consider this a very reasonable quid pro quo.

Look out for our iAudioBlog on iTunes soon!


And the winner is…

Kidman_2490255bThe problem with running a competition with our presenters is that all to often they are all talk and no trousers (or shorts in Andy’s case). We didn’t think it was too much to ask for them to get together over lunch last week and decide who the winners are of our fabulous prize draw.

We were disappointed again.

Fingers were pointed, excuses were given and tempers were raised by Javvad, Thom and Andy respectively.

We can now however announce the winners after some quick executive decisions were made,so, in no particular order:

IMG_4775Thom’s “Frankie Says Relax” T shirt, sunglasses and exclusive signed photograph are hereby awarded to…




IMG_4778Javvad’s beard (made with real hair) goes to…




FullSizeRenderAnd finally the prize of Andy’s (inspiration) wood goes to…


(Andy will be returning your “lost” USB stick momentarily)

Congratulations everyone and thank you for taking part. Your comments will of course be taken vert, very seriously. Please contact us to arrange for delivery (2nd class) and don’t forget to send us a photo of you with your wonderful prizes!