Connect with Learn Linux TV:
β¨
see all
On this podcast, Jay and Joao have discussed multiple times a situation where a threat actor submits a pull request that’s more than the project bargained for. And now, we have a situation where OpenSSH was (almost) backdoored by a commit by a maintainer of the xz project. Don’t miss this episode for all the details!
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
You may have heard of “technical debt”, but have you heard of “security debt”? In this episode, Jay and Joao will tell you all about it and why it’s a major issue for organizations.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Through a joint effort, the FBI as well as NCA struck a major blow to the Lockbit ransomware group. In this episode, Jay and Joao will discuss this story as well as the state of Linux in the enterprise/open-source landscape.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
Here’s a screenshot of the snarky message that was mentioned during the podcast.
When a threat actor breaks into a router and adds firewall rules that the owner didn’t approve of, that’s considered hacking. But when the FBI does it… …it isn’t?! In this episode Jay and Joao discuss a recent story where the FBI did exactly that, and they’ll also discuss how Microsoft has become the biggest “face palm” discussed on the podcast so far.
Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!
In this episode, Jay and Joao will discuss an update on the GTA source code theft, how much threat actors are making from ransomware, and more!
Thanks to TuxCare for sponsoring this podcast! Check out how they can make managing Linux servers much easier.
The Mirai botnet brought the entirety of the internet to its breaking point back in 2016, taking down many prominent web sites. Now, an article from Wired has emerged that reveals the full story behind the scenes – how the threat actors got started, how the events played out, as well as what they’re up to these days. Join Jay and Joao as they discuss this very interesting story!
Thanks to TuxCare for sponsoring this podcast! Check them out to see how they can help you level up your Linux administration!
In this episode, Jay and Joao catch up on recent stories. Among the topics they’ll discuss another version of CentOS going end of life (and why upgrading isn’t so straight-forward), the recent curl vulnerability, and more!
Thanks toΒ TuxCareΒ for sponsoring this podcast! Check out theirΒ Extended Lifecycle Support solutionΒ to keep your CentOS 7 installations supported with continued security updates while you plan your migration!
We’ve talked about Supply Chain Attacks on this podcast before, and in this episode Jay and Joao discuss another form of this popular attack vector – RepoJacking! RepoJacking occurs when a repository (such as one hosted on Github) changes information, and due to a link between the old repository info and the new – threat actors can take advantage of this. Join Jay and Joao for a discussion on this attack vector.
Thanks to TuxCare for sponsoring this episode! Check them out to see how they can help take your Linux Administration game to the next level.
There’s a multitude of ways you can lose money in Las Vegas, but this time it’s not from gambling. In this episode, Jay and Joao will discuss a recent and still developing story where MGM was the target of what appears to be a ransomware attack.
Thanks to TuxCare for sponsoring this podcast! Check them out and make your life as a SysAdmin much easier!
In this episode, Jay and Joao will discuss a recent discovery by Truffle Security that has found 4,500 websites that have exposed a very critical directory. In addition, the upcoming Common Vulnerability Scoring System (CVSS) update, which will bring to version 4.0 – along with some important changes you’ll need to understand.
Imagine needing to ask your government permission in order to perform tasks such as installing a security patch, implementing an Intrusion Detection System, updating firmware or upgrading your operating system? If this sounds too ridiculous to be true, then you’re right – it is ridiculous, but unfortunately it’s a real proposal. In the U.K., Investigatory Powers Act 2016 (IPA) has had an adjustment proposed that could potentially make securing your systems more difficult than it’s ever been. In this episode, Jay and Joao discuss how these potential changes will complicate pretty much everything.
In this episode, Jay and Joao talk about two recent news developments that may have important implications on the overall industry. First, In response to Microsoft’s recent Azure debacle, a US Senator calls for a probe to look into the matter. Second, our main story is yet another facepalm worthy idea from Google that aims to add “integrity” to our browsers, but it’s oddly lacking in said integrity and almost completely devoid of common sense. Google’s “Web Integrity Protection” seems to protect only their ad dollars while making browsing more tedious for the end-user. Will it pass? What is it exactly? Jay and Joao have all the answers in this episode!
