linux – Page 2 – Enterprise Linux Security Podcast

Enterprise Linux Security Episode 68 – The Barracuda Vulnerability

2023-06-21 by jay

Podcast: Play in new window | Download (Duration: 43:12 — 79.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

Don’t you just love e-mail? It’s the gift that keeps on giving, and this time managing e-mail is even more annoying for Barracuda’s customers, with CVE-2023-2868. This isn’t just any CVE, this is a complete system own by the threat actors. In fact, it’s so bad that the situation isn’t as simple as installing a patch. In this episode, Jay and Joao discuss this vulnerability and just how big of a deal it is.

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Relevant articles

CVE-2023-2868 article from Mandiant

Enterprise Linux Security Episode 63 – Their Cloud

2023-04-19 by jay

Podcast: Play in new window | Download (Duration: 46:57 — 86.0MB)

Subscribe: Apple Podcasts | Spotify | RSS

According to several sources, and confirmed by Western Digital themselves, there’s been a breach regarding the company’s cloud related offerings, such as “My Cloud” and various cloud-enabled storage products. Many of the details have yet to be revealed, but considering that Western Digital filed a 10-K form with the SEC, it’s very possible that it could be serious. In this episode, Jay and Joao discuss this story so far, with more specific details sure to come.

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Relevant Articles

Enterprise Linux Security Episode 61 – The Principle of Least Privilege

2023-03-29 by jay

Podcast: Play in new window | Download (Duration: 43:24 — 79.8MB)

Subscribe: Apple Podcasts | Spotify | RSS

With the recent takeover of the “Linus Tech Tips” YouTube channel, what can we learn? In this episode, Jay and Joao will discuss some of the ways you can prevent such an event from happening to you (and it’s not just YouTube that’s a target).

Download Links

MP3 version
MP3 version (lower bitrate, smaller size)
Ogg version

Enterprise Linux Security Episode 60 – AI Enhanced Security

2023-03-222023-03-22 by jay

Podcast: Play in new window | Download (Duration: 40:27 — 74.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

When it comes to Enterprise IT (and especially the security sector) we have our work cut out for us. As the workload increases, we look for tools and utilities to help us keep up with the demand. But what about artificial intelligence? As we discussed in a previous episode, AI is here to stay and will be making waves in security. In this episode, Jay and Joao dive in to just a few of the ways this tech might transform the security field and those that work within it (directly or indirectly).

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

Enterprise Linux Security Episode 59 – AlmaLinux OS

2023-03-15 by jay

Podcast: Play in new window | Download (Duration: 51:12 — 94.1MB)

Subscribe: Apple Podcasts | Spotify | RSS

AlmaLinux OS was created around the time of “that big CentOS” announcement, and has been a worthy solution for enterprises that wish to continue with Enterprise Linux, but without the fear of the distribution being changed into something else entirely. As a drop-in replacement for Red Hat, AlmaLinux OS continues to tackle new ground and builds a strong community. In this video, Jay and Joao are joined by Atalay Kelestemur who works on the project to discuss this distribution – and there may even be some surprises in store.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

ELevate (migration utility for switching between RHEL derivatives)
AlmaCare (enterprise support for AlmaLinux OS)

Enterprise Linux Security Episode 57 – Record Breaking DDoS Attacks

2023-03-222023-02-16 by jay

Podcast: Play in new window | Download (Duration: 41:47 — 76.9MB)

Subscribe: Apple Podcasts | Spotify | RSS

DDoS (Denial of Service) attacks are incredibly common, and apparently, are breaking records. In this episode, Jay and Joao discuss a recent blog post from Cloudflare regarding how popular this attack vector is becoming nowadays, as well as a quick refresher on Denial of Service attacks in general.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

Cloudflare mitigates record-breaking 71 million request-per-second DDoS attack

Enterprise Linux Security Episode 56 – Undercover Crypto Leaking

2023-02-082023-02-08 by jay

Podcast: Play in new window | Download (Duration: 42:40 — 78.5MB)

Subscribe: Apple Podcasts | Spotify | RSS

Ransomware is one of the absolute worst things that can happen to your organization, often resulting in weeks of downtime. We discussed Ransomware recently, and now we have an interesting and time-appropriate story – a popular ransomware group apparently had an imposter within their ranks.

Download links

MP3 version
MP3 version (lower bitrate, smaller file)
Ogg version

Relevant Articles

Enterprise Linux Security Episode 55 – Should You Trust Password Managers?

2023-02-082023-02-02 by jay

Podcast: Play in new window | Download (Duration: 47:43 — 87.7MB)

Subscribe: Apple Podcasts | Spotify | RSS

Passwords – for better or worse, they’re a reality and something we have to deal with. With the average person having many accounts, it’s gotten to the point where we just can’t manage these by ourselves. Password managers help us securely store these confidential secrets, but recently Lastpass (one of the most popular password managers) has suffered a breach. Although no actual passwords within vaults were cracked, recent events do raise a red flag. In this episode, Jay and Joao discuss whether or not you should trust password managers.

Live video version

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

LastPass Customers Need to Change All of Their Passwords

Enterprise Linux Security Episode 53 – Digital Twins

2023-02-082023-01-19 by jay

Podcast: Play in new window | Download (Duration: 37:06 — 68.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

By using clever infrastructure engineering strategies to increase reliability, you can minimize disruption and downtime for your organization. Another technique to consider is the concept of Digital Twin – having a full system clone/mirror you can use to test enhancements, perform a root-cause analysis, or more. In this episode, Jay and Joao discuss Digital Twins and how the concept can potentially help your organization.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

Digital Twin (Wikipedia article)
More malicious packages posted to online repository. This time it’s PyPI

Enterprise Linux Security Episode 52 – AISecOps

2023-03-222023-01-12 by jay

Podcast: Play in new window | Download (Duration: 39:59 — 73.6MB)

Subscribe: Apple Podcasts | Spotify | RSS

Note: There’s no video version for this episode, Jay’s camera stopped working near the beginning. It’s fixed now, but this episode is audio-only as a result.

Artificial intelligence seems to be all the rage nowadays, and not just in SciFi movies. Organizations can utilize AI to assist with difficult or time-consuming tasks. Now, AI has made its way into the security industry – and AI tools to check for security concerns are already starting to pop up. In this episode, Jay and Joao discuss AISecOps.

Download Links

MP3 version
MP3 version (lower quality, smaller file)
Ogg version

Relevant articles

Cisco App Dynamics (Note: This is not an endorsement – just an example of one of these solutions)