linux – Enterprise Linux Security Podcast

Enterprise Linux Security Episode 83 – FBI/NCA vs Lockbit

2024-02-282024-02-21 by jay

Podcast: Play in new window | Download (Duration: 36:12 — 66.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

Through a joint effort, the FBI as well as NCA struck a major blow to the Lockbit ransomware group. In this episode, Jay and Joao will discuss this story as well as the state of Linux in the enterprise/open-source landscape.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download Links

/etc

Here’s a screenshot of the snarky message that was mentioned during the podcast.

Enterprise Linux Security Episode 82 – In the Name of the Law

2024-02-07 by jay

Podcast: Play in new window | Download (Duration: 45:57 — 84.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

When a threat actor breaks into a router and adds firewall rules that the owner didn’t approve of, that’s considered hacking. But when the FBI does it… …it isn’t?! In this episode Jay and Joao discuss a recent story where the FBI did exactly that, and they’ll also discuss how Microsoft has become the biggest “face palm” discussed on the podcast so far.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download links

Enterprise Linux Security Episode 80 – Stop Paying Threat Actors!

2024-01-192024-01-10 by jay

Podcast: Play in new window | Download (Duration: 41:33 — 76.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao will discuss an update on the GTA source code theft, how much threat actors are making from ransomware, and more!

Thanks to TuxCare for sponsoring this podcast! Check out how they can make managing Linux servers much easier.

Episode-Specific Links

Download Links

MP3 version
MP3 version (lower bitrate, smaller filesize)
Ogg version

Enterprise Linux Security Episode 79 – Top Ten Security Misconfigurations

2023-11-29 by jay

Podcast: Play in new window | Download (Duration: 44:23 — 81.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao will discuss a report earlier this year that reveals the “top 10 cybersecurity misconfigurations”. These ten common mistakes can make it trivial for a threat actor to gain access to your infrastructure, so it’s definitely a list everyone should pay close attention to.

Thanks to TuxCare for sponsoring this podcast! Check them out to see how they can help you level up your Linux administration!

Relevant Article

NSA and CISA reveal top 10 cybersecurity misconfigurations

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 78 – Mirai: The Untold Story

2023-11-15 by jay

Podcast: Play in new window | Download (Duration: 44:13 — 81.0MB)

Subscribe: Apple Podcasts | Spotify | RSS

The Mirai botnet brought the entirety of the internet to its breaking point back in 2016, taking down many prominent web sites. Now, an article from Wired has emerged that reveals the full story behind the scenes – how the threat actors got started, how the events played out, as well as what they’re up to these days. Join Jay and Joao as they discuss this very interesting story!

Thanks to TuxCare for sponsoring this podcast! Check them out to see how they can help you level up your Linux administration!

Relevant Article

Original article by Wired that follows the entire story

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 77 – Security News Sync

2023-11-08 by jay

Podcast: Play in new window | Download (Duration: 42:14 — 77.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao catch up on recent stories. Among the topics they’ll discuss another version of CentOS going end of life (and why upgrading isn’t so straight-forward), the recent curl vulnerability, and more!

Thanks to TuxCare for sponsoring this podcast! Check out their Extended Lifecycle Support solution to keep your CentOS 7 installations supported with continued security updates while you plan your migration!

Video-specific links

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 75 – RepoJacking

2023-09-27 by jay

Podcast: Play in new window | Download (Duration: 36:47 — 67.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

We’ve talked about Supply Chain Attacks on this podcast before, and in this episode Jay and Joao discuss another form of this popular attack vector – RepoJacking! RepoJacking occurs when a repository (such as one hosted on Github) changes information, and due to a link between the old repository info and the new – threat actors can take advantage of this. Join Jay and Joao for a discussion on this attack vector.

Thanks to TuxCare for sponsoring this episode! Check them out to see how they can help take your Linux Administration game to the next level.

Relevant Articles

GitHub Dataset Research Reveals Millions Potentially Vulnerable to RepoJacking

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 74 – Unlucky in Vegas

2023-09-132023-09-13 by jay

Podcast: Play in new window | Download (Duration: 41:52 — 76.7MB)

Subscribe: Apple Podcasts | Spotify | RSS

There’s a multitude of ways you can lose money in Las Vegas, but this time it’s not from gambling. In this episode, Jay and Joao will discuss a recent and still developing story where MGM was the target of what appears to be a ransomware attack.

Thanks to TuxCare for sponsoring this podcast! Check them out and make your life as a SysAdmin much easier!

Relevant Articles

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 73 – TruffleHog and CVSS version 4.0

2023-09-06 by jay

Podcast: Play in new window | Download (Duration: 43:19 — 79.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao will discuss a recent discovery by Truffle Security that has found 4,500 websites that have exposed a very critical directory. In addition, the upcoming Common Vulnerability Scoring System (CVSS) update, which will bring to version 4.0 – along with some important changes you’ll need to understand.

Relevant Articles

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 69 – Red Hat vs Enterprise IT

2023-06-28 by jay

Podcast: Play in new window | Download (Duration: 1:03:46 — 116.8MB)

Subscribe: Apple Podcasts | Spotify | RSS

When it comes to Linux in the Enterprise, we have quite a few challenges we have to overcome on a day to day basis to ensure we can depend on our technology. We never thought Red Hat themselves would some day become our opponent, but here we are. In this episode, Jay and Joao will discuss discuss the latest impulsive and irresponsible decision Red Hat has made – as well as how that decision results in the company undermining their own customer base, while alienating the Linux Community at the same time.

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Relevant Articles

Red Hat’s Announcement
Response from Jeff Geerling (frequent contributor to open-source)
Red Hat strikes a crushing blow against RHEL downstreams
Response from Mike McGrath (Red Hat) regarding these changes
Response from Learn Linux TV