Patch [FIXED] Tuesday – The Vulnerabilities That Defined 2024

Autonomous IT

Player FM - Internet Radio Done Right

הוסף לפני two שנים

תוכן מסופק על ידי Automox. כל תוכן הפודקאסטים כולל פרקים, גרפיקה ותיאורי פודקאסטים מועלים ומסופקים ישירות על ידי Automox או שותף פלטפורמת הפודקאסט שלהם. אם אתה מאמין שמישהו משתמש ביצירה שלך המוגנת בזכויות יוצרים ללא רשותך, אתה יכול לעקוב אחר התהליך המתואר כאן https://he.player.fm/legal.

Biscuits & Jam

1
Wyatt Flores’s Red Dirt Roots 43:43

לפני 18 ימים43:43

הפעל מאוחר יותר

רשימות

לייק

אהבתי

43:43

Wyatt Flores is a 23-year-old singer-songwriter from Stillwater, Oklahoma, who’s making a name for himself in the Red Dirt music scene, building on the musical legacy of his home state. He grew up on a ranch in a working-class family where he was surrounded by musicians, often hearing them play cowboy songs around a campfire. His father, a drummer, built him a stage in the backyard when he recognized his talent, and his Uncle Bobby taught him how to play guitar. Now Wyatt is playing in front of thousands of fans, singing at the Grand Ole Opry, and writing songs that are winning audiences with their honesty, heart, and vulnerability. His debut album, Welcome to the Plains, explores the rough—and sometimes violent—side of growing up in rural Oklahoma, but it also shows a talent for storytelling and a wry sense of humor. Sid talks to Wyatt about why he’s so happy to be back in Stillwater after a couple of years in Nashville, the mental health struggles he’s openly shared with his fans, the family member he wants to have on his podcast, and why his favorite food is a breakfast burrito. Learn more about your ad choices. Visit podcastchoices.com/adchoices…

לפני שנה 1:13:19

MP3•בית הפרקים

Join us for a special bonus episode of Patch [FIX] Tuesday, an hour-long compilation of the vulnerabilities that help shaped the cybersecurity landscape in 2024.

This episode recaps some the most critical and interesting exploits, from supply chain compromises to elevation of privilege threats targeting widely used platforms. Whether you're an IT administrator, security professional, or tech enthusiast, this episode provides valuable insights to stay ahead of evolving threats.

Here’s a list of vulnerabilities discussed in this episode, and be sure to tune into the Patch [FIX] Tuesday podcast on the second Tuesday of every month.

Operation Triangulation (00:13)
CVE-2024-21401: Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability (5:00)
CVE-2024-21400: Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability (11:00)
CVE-2024-3094: XZ/Liblzma Supply Chain Backdoor (17:08)
CVE-2024-4671: Google Chrome Use-After-Free Vulnerability (30:00)
CVE-2024-30078: Windows WiFi Driver Remote Code Execution Vulnerability(35:03)
CVE-2024-38053: Windows Layer Two Bridge Network RCE (47:14)
CVE-2024-38180: SmartScreen Prompt Remote Code Execution Vulnerability (53:12)
CVE-2024-43491: Microsoft Windows Update Remote Code Execution Vulnerability (1:00:00)
CVE-2024-43533: Remote Desktop Client Remote Code Execution Vulnerability (1:04:24)
CVE-2024-5535: Microsoft Defender for Endpoint Remote Code Execution Vulnerability (1:07:35)
CVE-2024-49093: Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability (1:09:36)

147 פרקים

#Tech #News #Tech News #Automox

Patch [FIXED] Tuesday – The Vulnerabilities That Defined 2024

Autonomous IT

published לפני שנה

שתפו

MP3•בית הפרקים

Join us for a special bonus episode of Patch [FIX] Tuesday, an hour-long compilation of the vulnerabilities that help shaped the cybersecurity landscape in 2024.

Here’s a list of vulnerabilities discussed in this episode, and be sure to tune into the Patch [FIX] Tuesday podcast on the second Tuesday of every month.

Operation Triangulation (00:13)
CVE-2024-21401: Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability (5:00)
CVE-2024-21400: Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability (11:00)
CVE-2024-3094: XZ/Liblzma Supply Chain Backdoor (17:08)
CVE-2024-4671: Google Chrome Use-After-Free Vulnerability (30:00)
CVE-2024-30078: Windows WiFi Driver Remote Code Execution Vulnerability(35:03)
CVE-2024-38053: Windows Layer Two Bridge Network RCE (47:14)
CVE-2024-38180: SmartScreen Prompt Remote Code Execution Vulnerability (53:12)
CVE-2024-43491: Microsoft Windows Update Remote Code Execution Vulnerability (1:00:00)
CVE-2024-43533: Remote Desktop Client Remote Code Execution Vulnerability (1:04:24)
CVE-2024-5535: Microsoft Defender for Endpoint Remote Code Execution Vulnerability (1:07:35)
CVE-2024-49093: Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability (1:09:36)

147 פרקים

#Tech #News #Tech News #Automox

All episodes

1
Automox Insiders – Ted Harapat, Tales of the Linux Firefighter, E03 13:49

לפני 1 day13:49

13:49

In this episode of IT Insiders , host Maddie Regis sits down with Ted Harapat, Senior Systems Engineer at Automox, for a candid and compelling look into the world of Linux, cybersecurity, and the origins of IT careers. Ted shares how a midnight knock on his window sparked a decades-long journey into IT, what it’s like to support and expand Automox’s Linux agent, and why Linux isn't as intimidating as it seems. 🔥 Highlights: How Ted got into IT thanks to a surprise 1 a.m. “interview” Behind the scenes of supporting 2x Linux distributions at Automox Ted’s dual life as an IT expert and volunteer firefighter Why exploring config files is the best way to learn Linux Whether you're a sysadmin, Linux enthusiast, or just here for the pirate jokes, this episode is packed with insights and fun. Don’t miss it! This episode originally aired March 15, 2024…

1
Executive IT – Balancing Security, Usability, and Speed | E05 17:45

לפני 3 ימים17:45

17:45

How can IT and the business work better together—without sacrificing speed, security, or sanity? In this episode of Executive IT , host Evan Kiely is joined by Volker Otto, a seasoned IT executive, to explore how teams can bridge the gap between user experience and technical requirements. They dive into the rise of business relationship managers, mapping the end-user journey, balancing risk with usability, and the power of proactive communication. Whether you're in IT, operations, or leadership, this episode offers real-world insights on building stronger, more strategic partnerships across the organization.…

1
Hands-on IT – Fostering Creativity in IT: Listen Monkey, Listen. E08 23:13

לפני 9 ימים23:13

23:13

In this episode, Landon Miles interviews Jon Levenson, the manager of content and community at Automox, about the importance of creativity in IT and how to foster a creative environment. Jon shares his background as a former actor and how he fell into tech, as well as his experience in copywriting and podcast writing. They discuss the key elements of creating a creative environment, such as putting the work first and fostering collaboration. Jon also shares techniques for offering feedback and inspiring creativity, including the Liz Lerman Critical Response Structure. Jon and Landon discuss the importance of inviting coworkers to engage in creative work and the value of listening and creating a space for sharing ideas without fear of judgment. Links: - Liz Lerman Critical Response Process - We Can Do Hard Things Podcast This podcast originally aired August 8, 2024.…

1
Patch [FIX] Tuesday – June 2025: [WebDAV Attacks, SSH Hijacks, and macOS Sandbox Escapes], E20 17:08

לפני 11 ימים17:08

17:08

June’s Patch [FIX] Tuesday unpacks a lighter-than-usual Windows patch cycle — but don’t get too comfortable. Join Automox cybersecurity experts as they break down high-risk vulnerabilities across macOS and Windows, including: A chained SSH vulnerability (CVE-2025-26465 & CVE-2025-26466) that allows memory exhaustion and bypasses host key verification A WebDAV remote code execution flaw (CVE-2025-33053) actively exploited in the wild Multiple macOS threats, from sandbox escapes to keychain access and privilege escalation The team also shares patching strategies, mitigation tips, and password hygiene advice you’ll want to follow.…

1
Hands-On IT – Making End Users Happy (and Maintaining Your Sanity), E19 8:08

לפני 15 ימים8:08

8:08

Is tech easier than people? For many IT pros, the answer is a resounding yes. In this episode, Landon Miles tackles one of IT’s biggest challenges: managing user expectations while maintaining your own mental wellbeing. You’ll learn how to balance empathy with efficiency using proven frameworks like ITIL, SRE, and the NIST Cybersecurity Framework. Discover the people skills that drive career growth—active listening, clear communication, and trust-building—and why vulnerability (yes, that kind) belongs in your IT toolkit.…

1
Automate IT – 5 Steps to Effectively Communicating with Your Executive Team, E13 9:24

לפני 17 ימים9:24

9:24

In this episode of the Automate IT podcast, Jeremy Maldonado discusses the importance of engaging with executive teams and the necessity of clear communication within organizations. He emphasizes the value of understanding team dynamics, preparing effectively for discussions, and aligning goals with organizational priorities to foster collaboration and drive success. This episode originally aired February 4, 2025.…

1
CISO IT – RSA 2025: Identity Is the New Threat Vector, E19 11:12

לפני 23 ימים11:12

11:12

RSA 2025 revealed a shift: identity is now a primary threat vector in cloud security. In this episode, Jason Kikta breaks down the key takeaways from the conference—why identity has overtaken malware, how threat actors exploit service accounts and IDPs, and what this means for modern defense strategies. Plus, Jason shares observations on the evolving risk landscape and whether Black Hat will follow RSA’s lead. Whether you're a CISO, CTO, or security architect, this episode is your briefing on where the industry is headed.…

1
Product Talk – Simplified Patch Tuesday Scheduling & Beta Channel Controls, E17 16:28

לפני 24 ימים16:28

16:28

In Episode 17 of Product Talk , Peter Pflaster and Steph Rizzuto walk you through the latest enhancements in the Automox console that help you work smarter — not harder. Discover how the new Agent Configuration settings let you choose between stable and beta release channels, control auto-upgrades, and manage endpoint behavior — all without submitting a support ticket. Then, explore the updated patching analytics dashboards . You can measure mean time to remediate (MTTR), track patch impact and performance, and identify exactly where to improve your risk mitigation strategy. You'll also get a sneak peek at upcoming summer releases, including 300+ new device inventory data points and a redesigned device details page. Plus, scheduling policy now syncs automatically with Patch Tuesday — with flexible offsets. Tune in to stay ahead of vulnerabilities, streamline your workflows, and make data-driven decisions across your IT environment.…

1
Hands-On IT – 3 Tips to Make Your Endpoint Data Work for You, E18 5:42

לפני 30 ימים5:42

5:42

In this episode of Hands-On IT , Landon Miles shares 3 tactical tips to help you make smarter decisions with your endpoint data. Learn how to cut through alert fatigue, streamline your reporting, and use historical insights to predict and prevent future issues. Whether you're managing a few hundred devices or thousands across mixed OS environments, these strategies will help you reduce noise, boost visibility, and run a more secure, efficient operation.…

1
Automox Insiders – Data Trivia and Endpoint Truths, E17 22:15

לפני 5 weeks22:15

22:15

In this episode of Automox Insiders , host Maddie Regis sits down with Peter Pflaster and Kelly Carlson from Automox’s product marketing team to explore how data transforms endpoint management. From mean time to remediate (MTTR) to device compliance and unexpected user activity trends, they break down the metrics IT pros should watch — and why clear, actionable reporting is critical for both security and executive buy-in. Plus, the trio wraps up with a round of data trivia to prove that yes, data can be fun.…

1
Executive IT – The Gatekeeper Myth: Why Procurement Is Your Biggest Ally, E04 14:01

לפני 5 weeks14:01

14:01

Procurement is no longer just a gatekeeper — it’s a strategic driver in IT and security decisions. In this episode of Executive IT , host Evan Kiely sits down with Courtney Adams, a veteran procurement leader, to explore how smart procurement empowers better, faster, and more secure tech investments. From understanding true cost drivers to leveraging proof-of-value trials, Courtney shares actionable advice on navigating vendor pressure, aligning tools with business maturity, and avoiding risk. Whether you're evaluating new security tools or just looking to streamline your tech stack, this episode is packed with data-driven insights to help you make better buying decisions.…

1
Patch [FIX] Tuesday – May 2025: [Please Don’t Click That. Experts Review New Threats], E19 11:55

לפני 6 weeks11:55

11:55

Mayday. Mayday. May Patch Tuesday? This month’s episode dives into four key Windows vulnerabilities you need to address — from scripting engine memory corruption in legacy Internet Explorer components to remote code execution risks in Remote Desktop and Visual Studio. Ryan Braunstein and Mat Lee unpack what each CVE means for your environment, how attackers might exploit them, and what you can do to stay secure. If your org still leans on that one app tied to Internet Explorer, relies heavily on RDP, or builds with Visual Studio, this one’s for you.…

1
Autonomous IT, Live! – Spring Into Automation: Clean Up Tech Debt & Refresh Your IT Operations, E03 34:18

לפני 6 weeks34:18

34:18

In this episode of Autonomous IT, Live! , Landon Miles hosts leads a three-part discussion focused on spring cleaning your IT systems, workflows, and personal well-being. You’ll hear candid, practical insights from IT professionals tackling burnout, technical debt, and infrastructure hygiene head-on. This live show originally aired April 16, 2025 💼 Segment 1: Work-life balance in IT Eric Fonseca (Union School District) and Ashlyn Davis (Automox) talk about setting healthy boundaries, offloading low-value tasks through automation, and building sustainable practices that support both productivity and peace of mind. 🧱 Segment 2: Taming technical debt Colby Hall and Henry Smith from Automox unpack what technical debt looks like in practice, where it hides, and how it can turn into operational and security risk. They share real-world strategies for identifying, triaging, and resolving issues for long-term efficiency. 🔧 Segment 3: SRE spring cleaning tasks Jeremy Maldonado, Ted Harapat, and Spencer Pothier deliver a checklist of spring cleaning tasks for site reliability engineering teams — from reducing alert fatigue and removing unused infrastructure to tightening up service level objectives and minimizing toil. Ideal for teams managing cloud environments and uptime-critical systems.…

1
Teach IT – MFA Essentials: A Quick Guide for Everyone, E03 2:30

לפני 7 weeks2:30

2:30

Think your password is enough? Think again. In this episode of Teach IT , we break down what multi-factor authentication (MFA) really is — and why it’s one of the smartest ways to secure your accounts. You’ll learn how MFA works, the difference between SMS codes, authenticator apps, biometrics, and physical security keys, and why phishing-resistant MFA matters more than ever. Whether you're an IT pro looking to share smart security tips with employees, friends, or family — or just trying to stay safe online yourself — this quick guide to MFA will help you make smarter security choices.…

1
Automate IT – Beyond the Spreadsheets: Asset Intelligence & Risk Scoring, E16 9:02

לפני 7 weeks9:02

9:02

In this episode of Automate IT, Jeremy Maldonado dives into the world of data-driven endpoint management—breaking down what it means to go “beyond the spreadsheets.” He explores how visibility, intelligent reporting, asset intelligence, and risk scoring can transform how IT teams manage and secure their environments. Drawing from his own journey into the IT space, Jeremy unpacks practical strategies for improving compliance, prioritizing threats, and empowering IT teams to play offense — not just defense. Whether you're an IT pro or just endpoint-curious, this episode will give you fresh perspective on managing smarter, not harder.…

ברוכים הבאים אל Player FM!

Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.