Enterprise Linux Security – Page 2

Enterprise Linux Security Episode 58 – Tales from the Red Team

2023-03-08

Tasks that penetration testers and security analysis perform in order to expose security weaknesses may seem like a mysterious and complicated art. Most of the time, these tasks are considered “secret sauce” and unless you work for a red team, you may not be aware of what it may look like while someone attempts to gain access from the outside. In this episode, Jay and Joao discuss a report released by CISA, that provides a very detailed account at what goes into this type of work. This report is definitely a must-read, and this episode is a must-listen!

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks
Ticket Granting Tickets (one of the strategies used by CISA)https://learnlinux.link/golden-ticket

Enterprise Linux Security Episode 53 – Digital Twins

2023-02-082023-01-19

By using clever infrastructure engineering strategies to increase reliability, you can minimize disruption and downtime for your organization. Another technique to consider is the concept of Digital Twin – having a full system clone/mirror you can use to test enhancements, perform a root-cause analysis, or more. In this episode, Jay and Joao discuss Digital Twins and how the concept can potentially help your organization.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

Digital Twin (Wikipedia article)
More malicious packages posted to online repository. This time it’s PyPI

Enterprise Linux Security Episode 50 – The Many Faces of Patching

2023-02-082022-12-29

When it comes to patching, were you aware that there’s more than one type of patch? In this episode of Enterprise Linux Security, Jay and Joao discuss the various types of patching that’s performed today.

Download Links

Relevant Articles

The Many Faces of Patching

Enterprise Linux Security Episode 49 – The Code is Open, But Who’s Looking at It?

2023-02-082022-12-22

Open-Source is great – with code being open, everyone has access to it. That means that the code can be audited – and that makes it more secure, right? Well, possibly. In the recent talk “The Code is Open, But Who’s Looking at it?” Joao discusses the concept in detail. This talk was recorded at OSAD 2022. New episodes of Enterprise Linux Security will resume after the holidays. But for now, enjoy the talk!

Download Links

MP3 version
MP3 version (lower bitrate, smaller file)
Ogg versio

Enterprise Linux Security Episode 48 – New Malware, Old Vulnerabilities

2023-02-082022-12-15

While it’s certainly never a good thing to become the victim of a cyber-attack, it can be even more embarrassing if the CVE the threat actor used to get a foothold into your systems was patched a long time ago. In this episode, Jay and Joao discuss malware that’s currently taking advantage of vulnerabilities that were patched over a year ago! As important as software updates happen to be, why are so many organizations unable to keep up with them?

Download Links

MP3 version
MP3 version (lower bitrate, smaller file)
Ogg version

Relevant Articles

Shikitega – New stealthy malware targeting Linux