The TWiET crew delves into botnets, securing hybrid work environments, the future of DNS architecture, and more. News Blips: Researchers uncover sophisticated IoT botnet named "K- Botnet" targeting US entities; linked to Chinese state-aligned hackers AI startup Vanta (a TWiT.tv Sponsor) launches AI suite to automate repetitive security and compliance tasks DARPA funds revolutionary laser-based aerial energy delivery system for military operations Networking company Cradlepoint acquires SASE vendor ERA to provide a potential combined 5G and zero-trust networking solution DNS Deep Drive Part 3 with DNS Expert Josh Kuo and Principal Solutions Architect of Infoblox Ross Gibson Internal vs external DNS; differences in intended audience and integration Decoupling DNS services from domain controllers for stability Namespace planning tips; use owned domains, avoid random internal TLDs Encrypted DNS tradeoffs; privacy vs. visibility for security teams DNS security options like RPZ for control over internal resolution Future DNS role predictions like firewall integration and threat intel protections The episode concludes with the announcement that the long-running show will be coming to an end after 12 years of enterprise content. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guests: Josh Kuo, Ross Gibson, and Leo Laporte Help support TWiT by joining Club TWiT at https://twit.tv/clubtwit Sponsors: GO.ACILEARNING.COM/TWIT vanta.com/ENTERPRISE Miro.com/podcast

Proxy trojan targets macOS users for traffic redirection Indoor navigation has had a slow start Krasue RAT uses cross-kernel Linux rootkit to attack telecoms U.S. approves first gene-editing treatment, Casgevy, for sickle cell disease The DNS Deep-Drive continues with guests Josh Kuo, DNS expert, and Ross Gibson, Principal Solutions Architect of Infoblox, to talk about external authoritative DNS - whether enterprises should fully manage their own external DNS or use managed services, threats like domain hijacking, using load balancers, and more. Hosts: Curtis Franklin and Brian Chee Guests: Josh Kuo and Ross Gibson Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: canary.tools/twit - use code: TWIT lookout.com vanta.com/ENTERPRISE

Hackers Can Easily Extract ChatGPT Training Data Cheebert's prediction about VDI just came true Big Tech jobs are not as immune to layoffs as we thought Siemens PLCs are Still Vulnerable to Stuxnet-like Cyberattacks Josh Kuo, DNS Expert and Ross Gibson, Principal Solutions Architect of Infoblox join Brian Chee and Curt Franklin for part 1 of a 3 part in-depth primer on enterprise DNS, from the basics of DNS lookup, key considerations like security and encryption, and why run your own DNS versus other free alternatives? Hosts: Brian Chee and Curtis Franklin Guests: Josh Kuo and Ross Gibson Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: kolide.com/twiet bitwarden.com/twit GO.ACILEARNING.COM/TWIT

Ransomware group reports a victim company to the SEC for failing to promptly disclose a breach. Shadowy hack-for-hire group behind sprawling web of global cyberattacks Electrical arc detection devices that can prevent dangerous home fires caused by faulty wiring. The worst passwords of 2023 The NIS2 Directive: The first piece of EU-wide legislation on cybersecurity Jenna Bilotta of LaunchDarkly joins to discuss transforming DevOps tools with better user experiences. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Jenna Bilotta Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: Miro.com/podcast lookout.com nureva.com/twit

CISA Alerts: High-Severity SLP Vulnerability currently being exploited. ChatGPT outages attributed to DDoS activity. Gen Z and Millennial employees are a bigger cybersecurity risk than older employees. Security firm finds highly invasive malware hidden in software developer tools. Strategies for bridging the cybersecurity skills gap. Mike Star, CEO and founder of trackd talks about managing patches and how the community can help preventing disruption from bad updates. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Mike Star Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: GO.ACILEARNING.COM/TWIT paloaltonetworks.com/ot-security-tco canary.tools/twit - use code: TWIT

Okta customer data exposed in support breach impacting 134 companies. Biden requests $3.1B more for FCC's "rip-and-replace" program to remove insecure equipment from federal networks, targeting Huawei and ZTE equipment. Kaspersky finds Android spyware targeting WhatsApp users, reusing malware from Telegram cyber attacks. U.S. Immigration and Customs Enforcement agency is using AI to scan social media for derogatory content before approving visas. Brian warns about oversharing online. President Biden signs executive order governing federal agency use of AI, requiring non-discrimination, privacy, security, and responsible testing. The hosts debate if AI needs unique regulation. Chris Heard, CEO of Olive Technologies talks about how businesses can properly evaluate the total cost of ownership when looking for the right software solutions. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Chris Heard Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: nureva.com/twit bitwarden.com/twit paloaltonetworks.com/ot-security-tco

iLeakage gives hackers access passwords and sensitive data on iOS and macOS browsers. 0ktapus is "one of the world's most dangerous financial criminal groups" says Microsoft. Apple backs national right-to-repair bill. Pro-Russia hackers exploiting 0-day in Roundcube webmail software. 9 innovative ways to boost security hygiene for Cyber Awareness Month Josh Kuo, Senior Educator and SME in Cyber Security of Infoblox talks about why we need Punycode and how DNS can be a security solution for malicious Punycode. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Josh Kuo Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: lookout.com kolide.com/twiet Miro.com/podcast

This info-packed episode of TWiET dives into the hidden dangers of Google hosted ads with malware. Guest Adam Jacob shares his vision for a "second wave" of DevOps to achieve better collaboration and outcomes. Patch Winrar right now The most used IT Admin passwords Cisco reports 10,000 network devices backdoored with unpatched 0-day The global chip talent shortage and partnerships addressing it The risks of malicious Google ads using punycode to disguise fake URLs Adam Jacob, CEO of System Initiative and Co-founder of Chef talks about his vision for improving and rebuilding DevOps from the ground up. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Adam Jacob Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: vanta.com/ENTERPRISE paloaltonetworks.com/ot-security-tco GO.ACILEARNING.COM/TWIT

On This Week in Enterprise Tech, Lou, Curt, and Brian dive into how remote console devices are empowering IT pros, the future of digital trust and content authenticity, and the evolving landscape of endpoint management security. Jeff Marraccini from Altair explains how air console devices allow him to remotely access noisy server racks to diagnose issues, avoiding dangerous sound levels. This saves time and prevents disruptions. This week's news blips: Comcast announces DOCSIS 4.0 in select U.S. cities. Security pros warn that EU's vulnerability disclosuer rule is risky. Edge AI-enabled drones delivering first response for public safety. On this week's discussion byte, hosts debate whether Adobe's new content credential system can combat misinformation and assure authenticity. They conclude it helps provide traceability but has limitations as a voluntary system. Zach Wasserman from Fleet discusses how organizations can gain visibility into employee devices to strengthen endpoint security, especially with remote work. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guests: Jeff Marraccini and Zach Wasserman Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: paloaltonetworks.com/ot-security-tco canary.tools/twit - use code: TWIT nureva.com/twit

This episode of This Week In Enterprise Tech discusses the major cybersecurity recruitment challenges organizations face today and dives into the world of enterprise edge computing and the future of hyperscale cloud services with Scott Evers of Involta. News Blips: The hosts discuss a severe vulnerability in Atlassian's Confluence Server that allows attackers admin-level access, how over 100,000 industrial control systems are exposed on the public internet, using fiber optic cables on the ocean floor for earthquake detection, and a Linux "Looney Tunables" flaw threatens most distributions. Byte Discussion - Cybersecurity Recruitment: The hosts examine the cybersecurity talent shortage and creative approaches to recruiting, like looking beyond degrees to aptitude and expanding the talent pipeline. Interview with Involta Enterprise Architect Scott Evers: Scott discusses his career path from physicist to enterprise architect. Common security gaps he sees in software-defined environments. The importance of workload-focused cloud migrations. How data sovereignty affects cloud choices. The persisting confusion around shared responsibility models. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Scott Evers Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: bitwarden.com/twit cs.co/twit GO.ACILEARNING.COM/TWIT