Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec Defensive Security Podcast Episode 333
Dec 20, 2025
Dive into the alarming 700% rise in hypervisor ransomware and discover why these systems are prime targets. Learn about critical vulnerabilities, such as the React deserialization issue and Log4Shell's lingering presence. Hear tips on improving security through authentication and segmentation, plus the discussion on the dangers of AI coding tools. The need for cautious AI adoption is emphasized, along with how to secure LLMs against manipulation. Overall, a mix of pressing threats and practical security advice awaits!
AI Snips
Chapters
Transcript
Episode notes
Hypervisors As High-Value Targets
- Hypervisors are attractive ransomware targets because they lack typical endpoint protections and monitoring.
- Once compromised they enable rapid, wide encryption with minimal lateral movement required.
Harden And Segment Hypervisor Management
- Follow vendor hardening guides and CIS benchmarks for hypervisors and keep them updated.
- Implement segmentation and limit management-plane access to reduce attack surface and blast radius.
Patch Fast Or Risk Platform Compromise
- React deserialization flaws can be weaponized extremely fast once disclosed and PoC code appears.
- Rapid patching can cause operational disruption but may be the defensible choice for platform providers.