Enterprise Linux Security Episode 78 – Mirai: The Untold Story

Play

The Mirai botnet brought the entirety of the internet to its breaking point back in 2016, taking down many prominent web sites. Now, an article from Wired has emerged that reveals the full story behind the scenes – how the threat actors got started, how the events played out, as well as what they’re up to these days. Join Jay and Joao as they discuss this very interesting story!

Thanks to TuxCare for sponsoring this podcast! Check them out to see how they can help you level up your Linux administration!

Relevant Article

Download Links

Enterprise Linux Security Episode 77 – Security News Sync

Play

In this episode, Jay and Joao catch up on recent stories. Among the topics they’ll discuss another version of CentOS going end of life (and why upgrading isn’t so straight-forward), the recent curl vulnerability, and more!

Thanks to TuxCare for sponsoring this podcast! Check out their Extended Lifecycle Support solution to keep your CentOS 7 installations supported with continued security updates while you plan your migration!

Video-specific links

Download Links

Enterprise Linux Security Episode 73 – TruffleHog and CVSS version 4.0

Play

In this episode, Jay and Joao will discuss a recent discovery by Truffle Security that has found 4,500 websites that have exposed a very critical directory. In addition, the upcoming Common Vulnerability Scoring System (CVSS) update, which will bring to version 4.0 – along with some important changes you’ll need to understand.

Relevant Articles

Download Links

Enterprise Linux Security Episode 68 – The Barracuda Vulnerability

Play

Don’t you just love e-mail? It’s the gift that keeps on giving, and this time managing e-mail is even more annoying for Barracuda’s customers, with CVE-2023-2868. This isn’t just any CVE, this is a complete system own by the threat actors. In fact, it’s so bad that the situation isn’t as simple as installing a patch. In this episode, Jay and Joao discuss this vulnerability and just how big of a deal it is.

Download Links

Relevant articles

Enterprise Linux Security Episode 59 – AlmaLinux OS

Play

AlmaLinux OS was created around the time of “that big CentOS” announcement, and has been a worthy solution for enterprises that wish to continue with Enterprise Linux, but without the fear of the distribution being changed into something else entirely. As a drop-in replacement for Red Hat, AlmaLinux OS continues to tackle new ground and builds a strong community. In this video, Jay and Joao are joined by Atalay Kelestemur who works on the project to discuss this distribution – and there may even be some surprises in store.

Download Links

Relevant Articles

Enterprise Linux Security Episode 57 – Record Breaking DDoS Attacks

Play

DDoS (Denial of Service) attacks are incredibly common, and apparently, are breaking records. In this episode, Jay and Joao discuss a recent blog post from Cloudflare regarding how popular this attack vector is becoming nowadays, as well as a quick refresher on Denial of Service attacks in general.

Download Links

Relevant Articles

Enterprise Linux Security Episode 56 – Undercover Crypto Leaking

Play

Ransomware is one of the absolute worst things that can happen to your organization, often resulting in weeks of downtime. We discussed Ransomware recently, and now we have an interesting and time-appropriate story – a popular ransomware group apparently had an imposter within their ranks.

Download links

Relevant Articles

Enterprise Linux Security Episode 51 – Samba in the Kernel, What Could Possibly Go Wrong?!

Play

Adding unnecessary components to the Kernel is generally a bad idea, as it increases its threat surface. In this episode, Jay and Joao discuss a recent story that’s a perfect example of why it’s important to keep this under control. A vulnerability was recently discovered in the Linux kernel that scored the highest possible rating, and it all started when ksmbd was added.

Download Links

Relevant Articles

Enterprise Linux Security Episode 50 – The Many Faces of Patching

Play

When it comes to patching, were you aware that there’s more than one type of patch? In this episode of Enterprise Linux Security, Jay and Joao discuss the various types of patching that’s performed today.

Download Links

Relevant Articles

Enterprise Linux Security Episode 48 – New Malware, Old Vulnerabilities

Play

While it’s certainly never a good thing to become the victim of a cyber-attack, it can be even more embarrassing if the CVE the threat actor used to get a foothold into your systems was patched a long time ago. In this episode, Jay and Joao discuss malware that’s currently taking advantage of vulnerabilities that were patched over a year ago! As important as software updates happen to be, why are so many organizations unable to keep up with them?

Download Links

Relevant Articles