podcast – Enterprise Linux Security Podcast

Enterprise Linux Security Episode 95 – Polyfill

2024-07-10 by jay

Podcast: Play in new window | Download (Duration: 40:33 — 74.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao discuss several recent cybersecurity news stories, including Polyfill – which is another example of why supply chain attacks are something everyone should be paying attention to.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download Links

Enterprise Linux Security Episode 93 – Ticketmaster’s Weakest Link

2024-06-26 by jay

Podcast: Play in new window | Download (Duration: 46:02 — 84.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao discuss the recent breach suffered by Ticketmaster. Also, several new or updated news stories will be discussed.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download Links

Enterprise Linux Security Episode 92 – Server Not Found

2024-06-19 by jay

Podcast: Play in new window | Download (Duration: 43:52 — 80.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

What would you do if your organization’s cloud servers were deleted? That’s exactly what happened to a Singaporean company, which found their servers wiped by a disgruntled employee. Plus, the FBI distributes over 7,000 unlock keys, and Europol launches their biggest botnet operation yet.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!Relevant Articles

Relevant Articles

Download Links

Enterprise Linux Security Episode 86 – The ‘xz’ Fiasco

2024-04-10 by jay

Podcast: Play in new window | Download (Duration: 51:35 — 94.5MB)

Subscribe: Apple Podcasts | Spotify | RSS

On this podcast, Jay and Joao have discussed multiple times a situation where a threat actor submits a pull request that’s more than the project bargained for. And now, we have a situation where OpenSSH was (almost) backdoored by a commit by a maintainer of the xz project. Don’t miss this episode for all the details!

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Download Links

Relevant Articles

Enterprise Linux Security Episode 83 – FBI/NCA vs Lockbit

2024-02-282024-02-21 by jay

Podcast: Play in new window | Download (Duration: 36:12 — 66.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

Through a joint effort, the FBI as well as NCA struck a major blow to the Lockbit ransomware group. In this episode, Jay and Joao will discuss this story as well as the state of Linux in the enterprise/open-source landscape.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download Links

/etc

Here’s a screenshot of the snarky message that was mentioned during the podcast.

Enterprise Linux Security Episode 81 – The VMware Graveyard

2024-01-31 by jay

Podcast: Play in new window | Download (Duration: 49:12 — 90.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

Here we are, yet again, with an industry problem caused by the decision of just one software vendor. This time it’s VMware that’s causing a ruckus. In recent news, it’s been reported that VMware will be killing off 56 (yes, 56) of their stand-alone products, and that’s on top of the news that broke late last year regarding changes in their licensing model. In this episode, Jay and Joao discuss these recent VMware-related shenanigans.

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Download Links

Enterprise Linux Security Episode 80 – Stop Paying Threat Actors!

2024-01-192024-01-10 by jay

Podcast: Play in new window | Download (Duration: 41:33 — 76.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao will discuss an update on the GTA source code theft, how much threat actors are making from ransomware, and more!

Thanks to TuxCare for sponsoring this podcast! Check out how they can make managing Linux servers much easier.

Episode-Specific Links

Download Links

MP3 version
MP3 version (lower bitrate, smaller filesize)
Ogg version

Enterprise Linux Security Episode 75 – RepoJacking

2023-09-27 by jay

Podcast: Play in new window | Download (Duration: 36:47 — 67.4MB)

Subscribe: Apple Podcasts | Spotify | RSS

We’ve talked about Supply Chain Attacks on this podcast before, and in this episode Jay and Joao discuss another form of this popular attack vector – RepoJacking! RepoJacking occurs when a repository (such as one hosted on Github) changes information, and due to a link between the old repository info and the new – threat actors can take advantage of this. Join Jay and Joao for a discussion on this attack vector.

Thanks to TuxCare for sponsoring this episode! Check them out to see how they can help take your Linux Administration game to the next level.

Relevant Articles

GitHub Dataset Research Reveals Millions Potentially Vulnerable to RepoJacking

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Enterprise Linux Security Episode 69 – Red Hat vs Enterprise IT

2023-06-28 by jay

Podcast: Play in new window | Download (Duration: 1:03:46 — 116.8MB)

Subscribe: Apple Podcasts | Spotify | RSS

When it comes to Linux in the Enterprise, we have quite a few challenges we have to overcome on a day to day basis to ensure we can depend on our technology. We never thought Red Hat themselves would some day become our opponent, but here we are. In this episode, Jay and Joao will discuss discuss the latest impulsive and irresponsible decision Red Hat has made – as well as how that decision results in the company undermining their own customer base, while alienating the Linux Community at the same time.

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Relevant Articles

Red Hat’s Announcement
Response from Jeff Geerling (frequent contributor to open-source)
Red Hat strikes a crushing blow against RHEL downstreams
Response from Mike McGrath (Red Hat) regarding these changes
Response from Learn Linux TV

Enterprise Linux Security Episode 68 – The Barracuda Vulnerability

2023-06-21 by jay

Podcast: Play in new window | Download (Duration: 43:12 — 79.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

Don’t you just love e-mail? It’s the gift that keeps on giving, and this time managing e-mail is even more annoying for Barracuda’s customers, with CVE-2023-2868. This isn’t just any CVE, this is a complete system own by the threat actors. In fact, it’s so bad that the situation isn’t as simple as installing a patch. In this episode, Jay and Joao discuss this vulnerability and just how big of a deal it is.

Download Links

MP3 version
MP3 version (lower bitrate, smaller file size)
Ogg version

Relevant articles

CVE-2023-2868 article from Mandiant

Relevant Articles

Download Links

Relevant Articles

Download Links

Download Links

Download Links

Relevant Articles

Relevant Articles

Download Links

/etc

Related Articles

Download Links

Episode-Specific Links

Download Links

Relevant Articles

Download Links

Download Links

Relevant Articles

Download Links

Relevant articles