Security Weekly Podcast Network (Audio) You Should Just Patch - PSW #869
Apr 10, 2025
This week’s discussion highlights the urgent need for regular software patches to combat rising cybersecurity threats. The hosts dive into malware issues on Android devices and the implications of recent changes in NSA leadership. They also tackle the importance of addressing overlooked vulnerabilities and the complexities of software patch management. Ethical concerns around employee monitoring, the challenges of PCI compliance, and API security vulnerabilities are examined, emphasizing the necessity of collaboration to enhance cybersecurity practices.
AI Snips
Chapters
Transcript
Episode notes
Patching Advice
- Patch all systems regularly, especially internet-facing devices like VPN concentrators.
- You can't predict future exploits, so patching is crucial.
Patching Challenges
- Patching isn't simple due to resource constraints and potential operational risks like crashing systems.
- Organizations often rely on vulnerability scanners, but those are insufficient for unknown exploits.
Prioritize Patching
- Prioritize patching internet-facing devices, as attackers target credentials on those systems.
- Newer software versions often have smaller attack surfaces due to security improvements.