Segment 1: Interview with Rob Allen
It's the Year of the (Clandestine) Linux Desktop!
As if EDR evasions weren't enough, attackers are now employing yet another method to hide their presence on enterprise systems: deploying tiny Linux VMs. Attackers are using Hyper-V and/or WSL to deploy tiny (120MB disk space and 256MB memory) Linux VMs to host a custom reverse shell and reverse proxy.
In this segment, we'll discuss strategies and mitigations to battle this novel technique with Rob Allen from Threatlocker.
Segment Resources:
This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them!
Segment 2: Topic - Threat Modeling Humanoid Robots
We're entering the age of human-shaped robots, so it seems like a good time to talk about the fact that they ALREADY HAVE CVEs assigned to them. I guess this isn't a terrible thing - John Connor might have had an easier time if he could simply hack the terminators from a distance...
Resources
Segment 3: Weekly News
Finally, in the enterprise security news,
- A $435M venture round
- A $75M seed round
- a few acquisitions
- the producer of the movie Half Baked bought a spyware company
- AI isn't going well, or is it?
- maybe we just need to adopt it more slowly and deliberately?
- ad-blockers are enterprise best practices
- firewalls and VPNs are security risks, according to insurance claims
- could you power an entire house with disposable vapes?
All that and more, on this episode of Enterprise Security Weekly.
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-433
