Wow, this video is packed with essential information on patch management! Paul and Jason did an incredible job breaking down the importance of a systematic approach to updating all software and firmware, not just the obvious ones. I really appreciated the emphasis on covering even the less critical updates and how neglecting these can compound into major vulnerabilities. The advice on using tools like WSUS and third-party patch management solutions to streamline the process was spot on and very practical. Also, the suggestion to test patches on a smaller group before broader deployment makes so much sense to prevent any widespread issues. This video is definitely a must-watch for anyone looking to bolster their cybersecurity measures! Great work, guys! 🌟🔒💻
@GardnerSystemsАй бұрын
Thank you for your comment! We really appreciate the kind words and are happy that you enjoyed the episodes. Is there anything you'd like us to cover going forward?
@bookofyemiАй бұрын
@@GardnerSystems Absolutely! Just to name a few things... I'd love to see more content on advanced threat detection and response strategies, particularly on how to effectively integrate them into existing security frameworks. It would also be helpful to explore best practices for incident response planning and execution, especially for organizations with limited resources. Additionally, diving into the latest developments in AI and machine learning for cybersecurity would be fascinating. Keep up the great work!
@luzwaracocapoma2407Ай бұрын
Do you have the sequence diagram?
@Cossaw2 ай бұрын
Also office has this feature called "more apps" i believe its called. You'll see it with the rest of the office apps in top left corner of outlook for example. Ive seen slack, firewalls, and other random apps being linked there. Potential misuse of those could be interesting to cover as well. If a sysadmin gets phished and if they can manage firewall from office.. scary stuff could happen potentially. Just a thought! Havent heard it covered before so would be interesting to hear from you guys 😉
@Cossaw2 ай бұрын
Hey, I recently learnt about phishing that bypasses 2fa with tools like evilginx2. Now, if someone phishes a user with a fake office page and steals their token to bypass 2fa, what badness could happen from there? I heard you could get look for creds in teams, onedrive, emails, sharepoint etc. Could even just log into their cloud environment if they use Azure! This worries me especially if someone with higher cloud privileges would get phished.. Could you guys potentially have a discussion surrounding this topic? 2fa phishing and specifically what damage could be done to our companies if a bad actor gets access to one of our office emails? Love the podcast you guys! 😄
@GardnerSystems2 ай бұрын
Thanks for your comment! We're really glad you love the podcast and are really appreciative of the feedback/ideas around topics. in our episode where we talk about the anatomy of cyber attacks, this is the exact scenario - check this out here - kzfaq.info/get/bejne/gtOInsd4p9KmlHk.html I've noted this down as a topic for us to cover on our next set of recordings so keep an eye out in the coming weeks! Thanks for listening.
@Cossaw2 ай бұрын
@@GardnerSystems And gladly touch on the "more apps" feature in the top left section of office too! In my company I can see some firewalls connected, slack, other random apps etc, some of which my user-rights can access and some which I can't(thankfully). Finding company insights from slack messages and potentially creds in DMs etc is bad enough but... ..it begs the question: if someone like a sysadmin gets phished... could an attacker make changes to the firewall or vpn from this access alone, and potentially configure it so they can pivot into the internal network of that company? That would be a nightmare. It's something I've never heard people talk about, even though it sounds like such a dangerous and worthwhile topic. So I think this would be an excellent addition to the topic as well, or even it's own episode perhaps! 😄
@Cossaw2 ай бұрын
Also office has this feature called "more apps" i believe its called. You'll see with the rest of the office apps in top left corner of outlook for example. Ive seen slack, firewalls, and other random apps being linked there. Potential misuse of those could be interesting to cover as well. If a sysadmin gets phished and if they can manage firewall from office.. the scary stuff could happen potentially. Just a thought! Havent heard it covered before so would be interesting to hear from you guys 😉
@Cossaw3 ай бұрын
Can't wait for episode 45 and 400! 😉♥🚁
@GardnerSystems3 ай бұрын
Thank you for your support! Is there anything you'd like us to cover?
@Cossaw3 ай бұрын
@@GardnerSystems Perhaps misuse of malicous browser extensions could be interesting. Or perhaps different c2 channels and how to protect ourselves from it. I recently learned that c2 traffic can be tunneled over just ICMP or just DNS for instance, so it would be interesting to hear a discussion around this topic! :)
@GardnerSystems3 ай бұрын
@@Cossaw That's great, thank you for that. We've done a few on DNS. We have our episode titled 'decoding the domain' which you can find here - kzfaq.info/get/bejne/i9RgZZl60M6ceIU.html In our latest set of recordings, we also brought in a guest to touch on DNS further so keep an eye out for those coming soon!
@elbertinakolaga74654 ай бұрын
Promo`SM 🤩
@pow19835 ай бұрын
Only on premises is starting to boom again
@stevelambert56465 ай бұрын
Great session guys and very informative.
@GardnerSystems5 ай бұрын
Great to hear you liked the episode, Steve!
@JmMateo9337 ай бұрын
Hmm
@user-wi1wd5mm4e9 ай бұрын
Beyond the firewall, what a title! Another great episode, guys
@user-wi1wd5mm4e10 ай бұрын
What a great episode! WFH is such a huge topic in this day and age!
@LzPee11 ай бұрын
The capabilities surrounding ChatGPT are incredible.
@sheffieldyerbich382511 ай бұрын
Promo'SM
@GardnerSystems11 ай бұрын
Thanks for your comment! We hope you are enjoying the Tech Takeaways podcast. If there are any subjects you'd like us to cover then please do let us know
@LzPee11 ай бұрын
Another great episode! Very insightful indeed
@GardnerSystems11 ай бұрын
Thanks LzPee! Is data loss prevention something you have every considered on something you have acted on?
@paulbamber8762 Жыл бұрын
Looks good guys, looking forward to watching the podcasts!