The Enterprise Linux Security podcast will return August 21st, after a little Summer Break. We’ll be back soon!
jay
Enterprise Linux Security Episode 96 – Weaponized Workflows
Podcast: Play in new window | Download (Duration: 45:27 — 83.3MB)
Subscribe: Apple Podcasts | Spotify | RSS
In DevOps, there’s many great tools we appreciate – CI/CD workflows definitely being one of them. Github Workflows is one such tool, but vulnerabilities were recently found. Also, AT&T suffers a breach (and more!)
Relevant Articles
- Report Surfaces Thousands of Potential Vulnerabilities in GitHub Workflows
- Survey Finds Confidence in Data Security Despite Ransomware Scourge
- AT&T says criminals stole phone records of ‘nearly all’ customers in new data breach
- AT&T Says 110M Customers’ Data Leaked — Yep, it’s Snowflake Again
Download Links
Enterprise Linux Security Episode 95 – Polyfill
Podcast: Play in new window | Download (Duration: 40:33 — 74.3MB)
Subscribe: Apple Podcasts | Spotify | RSS
In this episode, Jay and Joao discuss several recent cybersecurity news stories, including Polyfill – which is another example of why supply chain attacks are something everyone should be paying attention to.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Relevant Articles
- China-Backed Threat Group Rapidly Exploits New Flaws
- Biggest Ever Password Leak – but is ObamaCare’s RockYou2024 Really NEW?
- Polyfill Becomes a Supply-Chain Risk to 100,000 Websites
Download Links
Enterprise Linux Security Episode 94 – regreSSHion
Podcast: Play in new window | Download (Duration: 35:51 — 65.7MB)
Subscribe: Apple Podcasts | Spotify | RSS
In this episode, Jay and Joao will discuss the recent regreSSHion vulnerability, which claims to be a path to root – although it might take a while. Also, recent developments with Teamviewer are also discussed.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Relevant Articles
- New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems
- regreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH server
- TeamViewer IT security update
Download Links
Enterprise Linux Security Episode 93 – Ticketmaster’s Weakest Link
Podcast: Play in new window | Download (Duration: 46:02 — 84.4MB)
Subscribe: Apple Podcasts | Spotify | RSS
In this episode, Jay and Joao discuss the recent breach suffered by Ticketmaster. Also, several new or updated news stories will be discussed.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Relevant Articles
- The Ticketmaster Data Breach May Be Just the Beginning
- Hackers Detail How They Allegedly Stole Ticketmaster Data From Snowflake
- New York Times Responds to Source Code Leak
- The kernel becomes its own CNA
Download Links
Enterprise Linux Security Episode 92 – Server Not Found
Podcast: Play in new window | Download (Duration: 43:52 — 80.4MB)
Subscribe: Apple Podcasts | Spotify | RSS
What would you do if your organization’s cloud servers were deleted? That’s exactly what happened to a Singaporean company, which found their servers wiped by a disgruntled employee. Plus, the FBI distributes over 7,000 unlock keys, and Europol launches their biggest botnet operation yet.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!Relevant Articles
Relevant Articles
- Largest ever operation against botnets hits dropper malware ecosystem
- A disgruntled ex-employee at a Singaporean IT firm caused carnage after deleting over 180 servers
- FBI Distributes 7,000 LockBit Ransomware Decryption Keys to Help Victims
- EU chat control law proposes scanning your messages
- Operation: Endgame
Download Links
Enterprise Linux Security Episode 91 – The Shared Responsibility Model
Podcast: Play in new window | Download (66.2MB)
Subscribe: Apple Podcasts | Spotify | RSS
In the last episode, we discussed a story where a company literally lost their cloud – at no fault of their own. But what is truly your responsibility when working with a cloud provider? What is their responsibility? In this episode, Jay and Joao discuss where the line is drawn between you and your cloud provider.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Download Links
Relevant Articles
Enterprise Linux Security Episode 90 – Dude, Where’s My Cloud?
Podcast: Play in new window | Download (Duration: 36:56 — 67.7MB)
Subscribe: Apple Podcasts | Spotify | RSS
In this episode, Jay and Joao talk about a story that’s every cloud administrator’s worst nightmare – your entire environment, backups, everything – gone. That’s exactly what happened to UniSuper, a customer of Google Cloud. In this cautionary tale, we’ll explore the case of the missing cloud.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Note: The video version of this episode was edited and re-uploaded, in order to fix audio issues.
Download Links
Relevant Articles
Enterprise Linux Security Episode 89 – Debunking Security Myths
Podcast: Play in new window | Download (Duration: 38:20 — 70.3MB)
Subscribe: Apple Podcasts | Spotify | RSS
There’s a lot for sysadmins to keep track of when it comes to security, so naturally there’s going to be some misconceptions every now and then. In this episode, Jay and Joao discuss some common misconceptions when it comes to security.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Download Links
Relevant Articles
Enterprise Linux Security Episode 88 – The 2024 Verizon DBIR
Podcast: Play in new window | Download (Duration: 38:05 — 69.7MB)
Subscribe: Apple Podcasts | Spotify | RSS
In this episode, Jay and Joao discuss the 2024 Verizon Data Breach Investigations Report (DBIR), which includes some interesting finds regarding threat actor motives, how user error impacts business, and more!
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Download Links
Relevant Articles
- Shortridge Makes Sense of the 2024 Verizon DBIR
- Original DBIR report from Verizon (warning: pay gate)