security podcast – Page 2 – Enterprise Linux Security Podcast

Enterprise Linux Security Episode 48 – New Malware, Old Vulnerabilities

2023-02-082022-12-15 by jay

Podcast: Play in new window | Download (Duration: 35:59 — 66.2MB)

Subscribe: Apple Podcasts | Spotify | RSS

While it’s certainly never a good thing to become the victim of a cyber-attack, it can be even more embarrassing if the CVE the threat actor used to get a foothold into your systems was patched a long time ago. In this episode, Jay and Joao discuss malware that’s currently taking advantage of vulnerabilities that were patched over a year ago! As important as software updates happen to be, why are so many organizations unable to keep up with them?

Download Links

MP3 version
MP3 version (lower bitrate, smaller file)
Ogg version

Relevant Articles

Shikitega – New stealthy malware targeting Linux

Enterprise Linux Security Episode 46 – Monitoring

2023-02-082022-10-28 by jay

Podcast: Play in new window | Download (Duration: 45:08 — 83.0MB)

Subscribe: Apple Podcasts | Spotify | RSS

If you’re in charge of maintaining servers and related equipment, what should you monitor? While monitoring is something that will grow and expand over time, Jay and Joao will give you some tips in this episode to get you started. Check out this episode for some tips on some of the baseline checks you should implement with your monitoring solution of choice.

Download Links

Enterprise Linux Security Episode 44 – Is Linux less of a Target?

2023-02-082022-09-29 by jay

Podcast: Play in new window | Download (Duration: 52:44 — 96.9MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao discuss how much of a target Linux is, as well as some myths surrounding Linux and security. Also, there will be some news updates as well.

Relevant Articles

Download Links

Enterprise Linux Security Episode 40 – Continuous Integration / Continuous Delivery

2023-02-082022-09-04 by jay

Podcast: Play in new window | Download (Duration: 59:08 — 108.6MB)

Subscribe: Apple Podcasts | Spotify | RSS

Continuous Integration/Continuous Delivery is huge concept when it comes to application deployment nowadays, and with good reason. Automating the compilation, testing, and other aspects of the development process increases efficiency and reliability. Security is another layer of a good CI/CD system, and in this episode, Jay and Joao discuss CI/CD and the security aspects of the popular deployment style.

Relevant Links

Unpacking Cloud-Based Cryptocurrency Miners That Abuse GitHub Actions and Azure Virtual Machines

Download Links

Enterprise Linux Security Episode 38 – De-anonymizing Ransomware Domains

2023-02-082022-08-05 by jay

Podcast: Play in new window | Download (Duration: 22:57 — 42.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

When Ransomware attacks begin spreading, how would officials go about finding the source? Most of the time, finding the culprit(s) behind cyber-attacks is a very challenging task. In this episode of Enterprise Linux Security, Joao and Jay discuss some methods that were recently used to de-anonymize ransomware domains.

Relevant Links

De-anonymizing ransomware domains on the dark web

Download Links

Enterprise Linux Security Episode 37 – System Administrator Appreciation Day 2022

2023-02-082022-07-29 by jay

Podcast: Play in new window | Download (Duration: 39:07 — 72.0MB)

Subscribe: Apple Podcasts | Spotify | RSS

System Administrators are the heroes we need, and in today’s episode of Enterprise Linux Security, we celebrate Sysadmin Day 2022 and the many people that work tirelessly to keep our servers running.

Relevant Links

Download Links

Enterprise Linux Security Episode 36 – First Live Episode!

2023-02-082022-07-22 by jay

Podcast: Play in new window | Download (Duration: 40:25 — 74.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

In episode 36 of the Enterprise Linux Security podcast, Jay and Joao record an episode live for the first time.

Download Links

Enterprise Linux Security Episode 35 – Top 25 Dangerous Software Weaknesses

2023-02-082022-07-11 by jay

Podcast: Play in new window | Download (Duration: 57:37 — 105.8MB)

Subscribe: Apple Podcasts | Spotify | RSS

In this episode, Jay and Joao discuss a recent report that identifies the “Top 25 most dangerous software weaknesses.” This list includes the usual suspects, as well as some very interesting findings as well. In addition, the descriptions of the common weaknesses serves as a good jumping in point if you’re new to this podcast.

Download Links

Relevant Articles

2022 CWE Top 25 Most Dangerous Software Weaknesses

Enterprise Linux Security Episode 33 – Patch your Confluence Server!

2023-02-082022-06-23 by jay

Podcast: Play in new window | Download (Duration: 40:57 — 75.3MB)

Subscribe: Apple Podcasts | Spotify | RSS

Atlassian software is constantly under attack, and often the source of many lost weekends for IT admins. Recently, a brand-new vulnerability has been discovered – CVE-2022-26134. This particular vulnerability is remotely exploitable, and has been listed as critical. In this episode, Jay and Joao discuss this vulnerability, as well as some of the struggles around Atlassian software in general.

Download Links

Relevant Articles

Confluence CVE-2022-26134

Enterprise Linux Security Episode 32 – MySQL for Everyone!

2023-02-082022-06-16 by jay

Podcast: Play in new window | Download (Duration: 45:37 — 83.9MB)

Subscribe: Apple Podcasts | Spotify | RSS

Are you a fan of MySQL? What if we told you that there’s an infinite supply of it online, right out in the open?! It’s literally as bad as it sounds! In this episode, Jay and Joao discuss how over 3.6 million MySQL instances are publicly available, as well as other forms of unintended public access.

Download Links

Relevant Articles

Over 3.6 million MySQL servers found exposed on the Internet