jay 
Podcast: Play in new window | Download (Duration: 41:47 — 76.9MB)
Subscribe: Apple Podcasts | Spotify | RSS
DDoS (Denial of Service) attacks are incredibly common, and apparently, are breaking records. In this episode, Jay and Joao discuss a recent blog post from Cloudflare regarding how popular this attack vector is becoming nowadays, as well as a quick refresher on Denial of Service attacks in general.
Podcast: Play in new window | Download (Duration: 42:40 — 78.5MB)
Subscribe: Apple Podcasts | Spotify | RSS
Ransomware is one of the absolute worst things that can happen to your organization, often resulting in weeks of downtime. We discussed Ransomware recently, and now we have an interesting and time-appropriate story – a popular ransomware group apparently had an imposter within their ranks.
Relevant Articles
Podcast: Play in new window | Download (Duration: 47:43 — 87.7MB)
Subscribe: Apple Podcasts | Spotify | RSS
Passwords – for better or worse, they’re a reality and something we have to deal with. With the average person having many accounts, it’s gotten to the point where we just can’t manage these by ourselves. Password managers help us securely store these confidential secrets, but recently Lastpass (one of the most popular password managers) has suffered a breach. Although no actual passwords within vaults were cracked, recent events do raise a red flag. In this episode, Jay and Joao discuss whether or not you should trust password managers.
Podcast: Play in new window | Download (Duration: 49:19 — 90.6MB)
Subscribe: Apple Podcasts | Spotify | RSS
Ransomware – an extremely frustrating security threat that can cause business disruption, data loss, as well as long work days during the recovery process. But how do you recover from such an event? In this foundational episode, Jay and Joao discuss some tips on how to deal with this, tips you’ll hopefully never need but are good to have nonetheless.
Podcast: Play in new window | Download (Duration: 37:06 — 68.3MB)
Subscribe: Apple Podcasts | Spotify | RSS
By using clever infrastructure engineering strategies to increase reliability, you can minimize disruption and downtime for your organization. Another technique to consider is the concept of Digital Twin – having a full system clone/mirror you can use to test enhancements, perform a root-cause analysis, or more. In this episode, Jay and Joao discuss Digital Twins and how the concept can potentially help your organization.
Podcast: Play in new window | Download (Duration: 39:59 — 73.6MB)
Subscribe: Apple Podcasts | Spotify | RSS
Note: There’s no video version for this episode, Jay’s camera stopped working near the beginning. It’s fixed now, but this episode is audio-only as a result.
Artificial intelligence seems to be all the rage nowadays, and not just in SciFi movies. Organizations can utilize AI to assist with difficult or time-consuming tasks. Now, AI has made its way into the security industry – and AI tools to check for security concerns are already starting to pop up. In this episode, Jay and Joao discuss AISecOps.
Podcast: Play in new window | Download (Duration: 42:31 — 78.2MB)
Subscribe: Apple Podcasts | Spotify | RSS
Adding unnecessary components to the Kernel is generally a bad idea, as it increases its threat surface. In this episode, Jay and Joao discuss a recent story that’s a perfect example of why it’s important to keep this under control. A vulnerability was recently discovered in the Linux kernel that scored the highest possible rating, and it all started when ksmbd was added.
Podcast: Play in new window | Download (Duration: 35:32 — 65.4MB)
Subscribe: Apple Podcasts | Spotify | RSS
When it comes to patching, were you aware that there’s more than one type of patch? In this episode of Enterprise Linux Security, Jay and Joao discuss the various types of patching that’s performed today.
Podcast: Play in new window | Download (Duration: 30:54 — 56.9MB)
Subscribe: Apple Podcasts | Spotify | RSS
Open-Source is great – with code being open, everyone has access to it. That means that the code can be audited – and that makes it more secure, right? Well, possibly. In the recent talk “The Code is Open, But Who’s Looking at it?” Joao discusses the concept in detail. This talk was recorded at OSAD 2022. New episodes of Enterprise Linux Security will resume after the holidays. But for now, enjoy the talk!
Podcast: Play in new window | Download (Duration: 35:59 — 66.2MB)
Subscribe: Apple Podcasts | Spotify | RSS
While it’s certainly never a good thing to become the victim of a cyber-attack, it can be even more embarrassing if the CVE the threat actor used to get a foothold into your systems was patched a long time ago. In this episode, Jay and Joao discuss malware that’s currently taking advantage of vulnerabilities that were patched over a year ago! As important as software updates happen to be, why are so many organizations unable to keep up with them?