Security Weekly Podcast Network (Audio)
SWN #388- Big Tech, Fighting a Junta, Keylogger in Microsoft , APT Hackers, Free Laundry, Joshua Marpet & more
May 21, 2024
Cybersecurity expert Joshua Marpet discusses critical vulnerabilities in Fluent Bit and QNAP NAS devices, activists in Myanmar fighting a junta, keylogger on Microsoft Exchange servers, APT hackers targeting South Korean companies, reused malicious code, threat hunting, Microsoft's co-pilot PCs, and security flaws in internet-connected laundry machines allowing free usage.
24:23
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Fluent Bit's critical memory corruption vulnerability CVE 20244323 impacted billions of cloud deployments, requiring version upgrades and vigilant monitoring.
- Activists in Myanmar face limitations in resisting military rule due to big tech dependencies, emphasizing the need for user-centric privacy-focused technology solutions.
Deep dives
Fluent bit tool vulnerability threatens cloud security
Fluent bit, an open-source data collector used for logging and metrics in cloud environments, faced a critical memory corruption vulnerability, CVE 20244323. This vulnerability posed significant risks, including crashing the service, information disclosure, and remote code execution, affecting billions of cloud deployments. Mitigation strategies involve upgrading to version 3.0.4, reviewing configurations, and ensuring timely updates from cloud providers.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
