Enterprise Linux Security Episode 86 – The ‘xz’ Fiasco

Play

On this podcast, Jay and Joao have discussed multiple times a situation where a threat actor submits a pull request that’s more than the project bargained for. And now, we have a situation where OpenSSH was (almost) backdoored by a commit by a maintainer of the xz project. Don’t miss this episode for all the details!

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Download Links

Relevant Articles

Enterprise Linux Security Episode 83 – FBI/NCA vs Lockbit

Play

Through a joint effort, the FBI as well as NCA struck a major blow to the Lockbit ransomware group. In this episode, Jay and Joao will discuss this story as well as the state of Linux in the enterprise/open-source landscape.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download Links

/etc

Here’s a screenshot of the snarky message that was mentioned during the podcast.

Enterprise Linux Security Episode 81 – The VMware Graveyard

Play

Here we are, yet again, with an industry problem caused by the decision of just one software vendor. This time it’s VMware that’s causing a ruckus. In recent news, it’s been reported that VMware will be killing off 56 (yes, 56) of their stand-alone products, and that’s on top of the news that broke late last year regarding changes in their licensing model. In this episode, Jay and Joao discuss these recent VMware-related shenanigans.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Related Articles

Download Links

Enterprise Linux Security Episode 80 – Stop Paying Threat Actors!

Play

In this episode, Jay and Joao will discuss an update on the GTA source code theft, how much threat actors are making from ransomware, and more!

Thanks to TuxCare for sponsoring this podcast! Check out how they can make managing Linux servers much easier.

Episode-Specific Links

Download Links

Enterprise Linux Security Episode 79 – Top Ten Security Misconfigurations

Play

In this episode, Jay and Joao will discuss a report earlier this year that reveals the “top 10 cybersecurity misconfigurations”. These ten common mistakes can make it trivial for a threat actor to gain access to your infrastructure, so it’s definitely a list everyone should pay close attention to.

Thanks to TuxCare for sponsoring this podcast! Check them out to see how they can help you level up your Linux administration!

Relevant Article

Download Links

Enterprise Linux Security Episode 77 – Security News Sync

Play

In this episode, Jay and Joao catch up on recent stories. Among the topics they’ll discuss another version of CentOS going end of life (and why upgrading isn’t so straight-forward), the recent curl vulnerability, and more!

Thanks to TuxCare for sponsoring this podcast! Check out their Extended Lifecycle Support solution to keep your CentOS 7 installations supported with continued security updates while you plan your migration!

Video-specific links

Download Links

Enterprise Linux Security Episode 74 – Unlucky in Vegas

Play

There’s a multitude of ways you can lose money in Las Vegas, but this time it’s not from gambling. In this episode, Jay and Joao will discuss a recent and still developing story where MGM was the target of what appears to be a ransomware attack.

Thanks to TuxCare for sponsoring this podcast! Check them out and make your life as a SysAdmin much easier!

Relevant Articles

Download Links

Enterprise Linux Security Episode 70 – The Red Hat Saga Continues

Play

The ongoing saga with Red Hat continues, and now that some time has passed since their controversial announcement, we now have statements from other distributions, including (but not limited to) Oracle and SUSE. In this episode, Jay and Joao talk about the recent developments on this story, and also touch on some trouble that Fortigate has been having nowadays.

Download Links

Relevant Articles

Enterprise Linux Security Episode 68 – The Barracuda Vulnerability

Play

Don’t you just love e-mail? It’s the gift that keeps on giving, and this time managing e-mail is even more annoying for Barracuda’s customers, with CVE-2023-2868. This isn’t just any CVE, this is a complete system own by the threat actors. In fact, it’s so bad that the situation isn’t as simple as installing a patch. In this episode, Jay and Joao discuss this vulnerability and just how big of a deal it is.

Download Links

Relevant articles

Enterprise Linux Security Episode 66 – Job Security

Play

In this episode, Jay and Joao discuss another form of security, job security! Throughout the series, we’ve advised and educated on enhancing the security of your enterprise network, but in this episode the focus is on YOU. Specifically, how to safeguard yourself from turnover, raise awareness of your importance to your organization, and how to navigate potential “awkward” conversations that System Administrators may find themselves having with their boss. Don’t miss this episode!

Download links