Patch [FIXED] Tuesday – The Vulnerabilities That Defined 2024
Autonomous IT31 Joulu 2024

Patch [FIXED] Tuesday – The Vulnerabilities That Defined 2024

Join us for a special bonus episode of Patch [FIX] Tuesday, an hour-long compilation of the vulnerabilities that help shaped the cybersecurity landscape in 2024.

This episode recaps some the most critical and interesting exploits, from supply chain compromises to elevation of privilege threats targeting widely used platforms. Whether you're an IT administrator, security professional, or tech enthusiast, this episode provides valuable insights to stay ahead of evolving threats.

Here’s a list of vulnerabilities discussed in this episode, and be sure to tune into the Patch [FIX] Tuesday podcast on the second Tuesday of every month.

  1. Operation Triangulation (00:13)
  2. CVE-2024-21401: Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability (5:00)
  3. CVE-2024-21400: Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability (11:00)
  4. CVE-2024-3094: XZ/Liblzma Supply Chain Backdoor (17:08)
  5. CVE-2024-4671: Google Chrome Use-After-Free Vulnerability (30:00)
  6. CVE-2024-30078: Windows WiFi Driver Remote Code Execution Vulnerability(35:03)
  7. CVE-2024-38053: Windows Layer Two Bridge Network RCE (47:14)
  8. CVE-2024-38180: SmartScreen Prompt Remote Code Execution Vulnerability (53:12)
  9. CVE-2024-43491: Microsoft Windows Update Remote Code Execution Vulnerability (1:00:00)
  10. CVE-2024-43533: Remote Desktop Client Remote Code Execution Vulnerability (1:04:24)
  11. CVE-2024-5535: Microsoft Defender for Endpoint Remote Code Execution Vulnerability (1:07:35)
  12. CVE-2024-49093: Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability (1:09:36)

Jaksot(212)

Behind the Ticket – What to Do When Both Tools Are Right, E01

Behind the Ticket – What to Do When Both Tools Are Right, E01

A routine support ticket reveals a deeper truth about patch management. Your patching tool says "done," but your vulnerability scanner disagrees – so who's right? In this episode, Automox SVP of Custo...

18 Maalis 7min

Patch [FIX] Tuesday – March 2026 [SMB Is Back and ASLR Gets Shuffled], E29

Patch [FIX] Tuesday – March 2026 [SMB Is Back and ASLR Gets Shuffled], E29

March 2026's Patch Tuesday brings no active exploitations, but don't let that fool you. This month, Ryan Braunstein and Henry Smith break down why medium-severity vulnerabilities deserve your full att...

10 Maalis 21min

Automate IT – The Server Tango: Step In... and Now MySQL's Down, E14

Automate IT – The Server Tango: Step In... and Now MySQL's Down, E14

In this episode, Jeremy Maldonado shares his experiences and insights on server management, highlighting the importance of learning from mistakes, the power of automation, and finding balance between ...

3 Maalis 12min

Automate IT – The Myth of the All-Knowing IT Pro, E22

Automate IT – The Myth of the All-Knowing IT Pro, E22

The all-knowing IT pro is a myth. In this episode, Automox Senior Solutions Consultant Jeremy Maldonado breaks down why curiosity and asking for help are the real foundations of a successful IT career...

26 Helmi 11min

Product Talk – Bridging the CVE Gap with VulnCheck, E24

Product Talk – Bridging the CVE Gap with VulnCheck, E24

NIST is falling behind on vulnerability scoring — and the gap is growing. In this episode, Peter and Steph break down what that means for IT and security teams relying on CVE data to prioritize patchi...

24 Helmi 17min

Secure IT – Why There Are No 'Nos' in IT with Rich Casselberry, E15

Secure IT – Why There Are No 'Nos' in IT with Rich Casselberry, E15

In this episode of Automox's Secure IT podcast, host Jason Kikta welcomes back Rich Casselberry, VP of IT security at AT&I, to discuss key insights from the CISO Blueprint. The conversation emphasizes...

17 Helmi 9min

Patch [FIX] Tuesday – February 2026 [Chaos Engineering], E28

Patch [FIX] Tuesday – February 2026 [Chaos Engineering], E28

February's Patch Tuesday includes two actively exploited vulnerabilities you need to patch now. Ryan Braunstein breaks down a denial of service flaw in Windows Remote Access Connection Manager that ca...

10 Helmi 10min

Automate IT – Beyond the Spreadsheets: Asset Intelligence & Risk Scoring, E16

Automate IT – Beyond the Spreadsheets: Asset Intelligence & Risk Scoring, E16

In this episode of Automate IT, Jeremy Maldonado dives into the world of data-driven endpoint management, breaking down what it means to go “beyond the spreadsheets.” He explores how visibility, intel...

5 Helmi 9min

Suosittua kategoriassa Politiikka ja uutiset

uutiscast
aikalisa
ootsa-kuullut-tasta-2
rss-ootsa-kuullut-tasta
politiikan-puskaradio
tervo-halme
rss-podme-livebox
rss-vaalirankkurit-podcast
et-sa-noin-voi-sanoo-esittaa
otetaan-yhdet
the-ulkopolitist
rss-asiastudio
rikosmyytit
aihe
rss-merja-mahkan-rahat
rss-kaikki-uusiksi
rss-hyvaa-huomenta-bryssel
rss-aijat-hopottaa-podcast
rss-sanna-ukkola-show-verkkouutiset
rss-vain-talouselamaa