English Cybersecurity - Cybersecurity in Plain English

English Cybersecurity - Cybersecurity in Plain English

English Cybersecurity – Episode 8

24 min · 22. heinä 2025
Aloita maksutta
jakson English Cybersecurity – Episode 8 kansikuva

Kuvaus

VULNERABILITIES, EXPLOITS & PATCH MANAGEMENT * CVE, CVSS, and vulnerability scoring * Exploit techniques (buffer overflows, privilege escalation) * Patch management process in enterprise environments * Virtual patching & compensating controls

Kommentit

0

Ole ensimmäinen kommentoija

Rekisteröidy nyt ja liity English Cybersecurity - Cybersecurity in Plain English-yhteisöön!

Aloita maksutta

14 vrk ilmainen kokeilu

Kokeilun jälkeen 7,99 € / kuukausi. · Peru milloin tahansa.

  • Podimon podcastit
  • 20 kuunteluaikaa / kuukausi
  • Lataa offline-käyttöön
Aloita maksutta

Kaikki jaksot

10 jaksot

jakson English Cybersecurity – Episode 7 kansikuva

English Cybersecurity – Episode 7

THREAT ACTOR EVOLUTION * Threat Actor Types: * Script kiddies, criminal organizations, hacktivists, insiders * Nation-state actors (APT groups) – motivations and tactics * Case studies of evolving threats: * From basic phishing → sophisticated spear phishing * From simple ransomware → double extortion models * Emerging threat vectors: * Deepfakes for social engineering * Supply chain attacks (e.g., SolarWinds) * AI-powered malware and automation CYBER KILL CHAIN FRAMEWORK (LOCKHEED MARTIN MODEL) * 7 stages of an attack: 1. Reconnaissance 2. Weaponization 3. Delivery 4. Exploitation 5. Installation 6. Command & Control (C2) 7. Actions on Objectives * How defenders can “break the chain” at each stage MITRE ATT&CK OVERVIEW * What is ATT&CK and why it’s useful * Tactics vs. Techniques vs. Procedures (TTPs) * Brief demo (or screenshots) of MITRE ATT&CK Navigator * How blue teams use it for threat detection * Mapping common attacks to ATT&CK

8. heinä 202526 min