Patch [FIXED] Tuesday – The Vulnerabilities That Defined 2024
Autonomous IT31 Des 2024

Patch [FIXED] Tuesday – The Vulnerabilities That Defined 2024

Join us for a special bonus episode of Patch [FIX] Tuesday, an hour-long compilation of the vulnerabilities that help shaped the cybersecurity landscape in 2024.

This episode recaps some the most critical and interesting exploits, from supply chain compromises to elevation of privilege threats targeting widely used platforms. Whether you're an IT administrator, security professional, or tech enthusiast, this episode provides valuable insights to stay ahead of evolving threats.

Here’s a list of vulnerabilities discussed in this episode, and be sure to tune into the Patch [FIX] Tuesday podcast on the second Tuesday of every month.

  1. Operation Triangulation (00:13)
  2. CVE-2024-21401: Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability (5:00)
  3. CVE-2024-21400: Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability (11:00)
  4. CVE-2024-3094: XZ/Liblzma Supply Chain Backdoor (17:08)
  5. CVE-2024-4671: Google Chrome Use-After-Free Vulnerability (30:00)
  6. CVE-2024-30078: Windows WiFi Driver Remote Code Execution Vulnerability(35:03)
  7. CVE-2024-38053: Windows Layer Two Bridge Network RCE (47:14)
  8. CVE-2024-38180: SmartScreen Prompt Remote Code Execution Vulnerability (53:12)
  9. CVE-2024-43491: Microsoft Windows Update Remote Code Execution Vulnerability (1:00:00)
  10. CVE-2024-43533: Remote Desktop Client Remote Code Execution Vulnerability (1:04:24)
  11. CVE-2024-5535: Microsoft Defender for Endpoint Remote Code Execution Vulnerability (1:07:35)
  12. CVE-2024-49093: Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability (1:09:36)

Episoder(206)

Hands-On IT – Virtualization, IT Support, and... Home Labs? How Automox Techies Use Automox, E07

Hands-On IT – Virtualization, IT Support, and... Home Labs? How Automox Techies Use Automox, E07

In this episode of the Hands-On IT podcast, Landon Miles interviews Anthony Maxwell, who is a software engineer at Automox. They discuss Anthony's journey from IT operations to software engineering, a...

28 Okt 202526min

CISO IT – Dmitri Alperovitch’s Vision for Cyber Defense, E07

CISO IT – Dmitri Alperovitch’s Vision for Cyber Defense, E07

In this episode, host Jason Kikta talks with Dmitri Alperovitch – CrowdStrike co-founder and chairman of the Automox board – about how speed and precision define modern cyber defense. Alperovitch expl...

23 Okt 202522min

Product Talk – Secure by Default: Inside Automox’s Approach to Product Security, E21

Product Talk – Secure by Default: Inside Automox’s Approach to Product Security, E21

In this episode of Product Talk, host Peter Pflaster sits down with Automox Staff Security Engineer Henry Smith to discuss what it really means to be secure by default. Together, they explore how Auto...

21 Okt 202532min

Executive IT – Expert CFO Advice on Bridging IT and Business Strategy, E01

Executive IT – Expert CFO Advice on Bridging IT and Business Strategy, E01

CFOs Ziad Fanous (Automox) and David Mehok (formerly CFO of Q2) join host Evan Kiely to break down how IT transformation drives real business value—not just cost savings. They share candid lessons fro...

16 Okt 202524min

Patch [FIX] Tuesday – October 2025 [Game Engine Gremlins, Windows Hello Attacks, and Exchange Exploits], E24

Patch [FIX] Tuesday – October 2025 [Game Engine Gremlins, Windows Hello Attacks, and Exchange Exploits], E24

Happy Patch Tuesday! In this October episode, security specialists Ryan Braunstein and Mat Lee break down some of the month’s most critical vulnerabilities — and why this batch of CVEs might just be t...

14 Okt 202518min

Automate It – Social Engineering & the Human Risk Factor, E19

Automate It – Social Engineering & the Human Risk Factor, E19

Jeremy Maldonado breaks down cybersecurity fundamentals from a real-world IT operations perspective. From phishing and social engineering to patching best practices and zero trust, Jeremy shares pract...

9 Okt 202514min

Hands-On IT – CVE 101: Demystifying the Three-Letter Acronym, E22

Hands-On IT – CVE 101: Demystifying the Three-Letter Acronym, E22

What is a CVE – and why does it matter to your patching process? Landon Miles breaks down CVEs, CVSS scores, and CNAs – covering how they work together, what to prioritize, and how to respond. Learn h...

7 Okt 20258min

CISO IT – Back to Basics: Three Essentials for Secure IT Operations, E20

CISO IT – Back to Basics: Three Essentials for Secure IT Operations, E20

In this episode, Automox CISO Jason Kikta strips away the noise and focuses on the three core pillars of secure IT operations: asset inventory, patch management, and identity and access management (IA...

2 Okt 20258min

Populært innen Politikk og nyheter

giver-og-gjengen-vg
aftenpodden
stopp-verden
forklart
aftenpodden-usa
i-retten
popradet
lydartikler-fra-aftenposten
nokon-ma-ga
det-store-bildet
dine-penger-pengeradet
rss-gukild-johaug
rss-ness
fotballpodden-2
hanna-de-heldige
aftenbla-bla
frokostshowet-pa-p5
e24-podden
unitedno
rss-dannet-uten-piano