Episode Thumbnail
Episode 8  |  25:26 min

Patch Tuesday Rituals with JCran

Episode 8  |  25:26 min  |  08.05.2020

Patch Tuesday Rituals with JCran

00:00
00:00
This is a podcast episode titled, Patch Tuesday Rituals with JCran. The summary for this episode is: Both the bane and salvation of security teams, and the start of a month-long fix cycle for IT teams, Microsoft's Patch Tuesday is a consistent reminder that nothing keeps us more secure than good old fashioned cyber-hygiene. Kenna Security's Head of Research, Jcran walks us through his Patch Tuesday ritual and gives us some tools, tips, and tricks along the way.
Takeaway 1 | 00:34 MIN
A Quick overview on Patch Tuesday
Takeaway 2 | 00:46 MIN
Adobe Gets a Head Start on MSFT
Takeaway 3 | 01:55 MIN
Cadence Is Key To Security
Takeaway 4 | 01:34 MIN
Is 'Exploit Wednesday' Still A Thing?
Takeaway 5 | 02:17 MIN
Out of Band Patch Days and 2020 Record Setting
Takeaway 6 | 00:58 MIN
JCran Starts To Walk Us Through His Ritual
Takeaway 7 | 01:25 MIN
Determining If Something Is Wormable
Takeaway 8 | 01:17 MIN
The Fire Drill vs. Normal Patch Cadence
Takeaway 9 | 00:56 MIN
The Need To Dig A Little Deeper
Takeaway 10 | 01:53 MIN
Some Tools of The Trade
Takeaway 11 | 01:59 MIN
When Is The Patch Riskier Than The Vulnerability?
Takeaway 12 | 01:48 MIN
Is Patch Tuesday Worth It? Of Course
Takeaway 13 | 02:18 MIN
Some Performance Metrics On MSFT Patch Programs
Takeaway 14 | 02:00 MIN
MSFT Devices Get Patched Faster Than Other Devices... also a detour through other devices
Takeaway 15 | 01:14 MIN
Comparing Security of End Of Life Software
Takeaway 16 | 01:36 MIN
Three Final Patch Tuesday Tips
Both the bane and salvation of security teams, and the start of a month-long fix cycle for IT teams, Microsoft's Patch Tuesday is a consistent reminder that nothing keeps us more secure than good old fashioned cyber-hygiene. Kenna Security's Head of Research, Jcran walks us through his Patch Tuesday ritual and gives us some tools, tips, and tricks along the way.

More Episodes

The Exploit Prediction Scoring System (EPSS)

Getting Real About Remediation w/ Cyentia Institute

Risk, Measured: Epidemiology for Cybersecurity

The State of Threat Intelligence w/ GreyNoise

DEF CON Was Actually Canceled (sort of)

A Chronological Journey Through Risk-Based Vuln Management