Autonomous IT

Automox

Go from monotonous to autonomous IT operations with this series. Hosts from Automox, the IT automation platform for modern organizations, will cover the latest IT trends; Patch Tuesday remediations; ways to save time with Worklets (pre-built scripts); reduce risk; slash complexity; and automate OS, third-party, and configuration updates on all your Windows, macOS, and Linux endpoints. Automate confidence everywhere with Automox.

  1. Patch [FIX] Tuesday – [AI Hits the Hat Trick], Ep. 32

    MAY 12

    Patch [FIX] Tuesday – [AI Hits the Hat Trick], Ep. 32

    The May 2026 Microsoft Patch Tuesday release looks quiet on the surface – no actively exploited zero-days, no public disclosures at release, and a CVE count below the four-month average. Don't let that fool you. In this episode, Jason Kikta and Landon Miles break down everything that happened between April and May patch cycles, including Apple's macOS Tahoe 26.5 release with 79 CVEs, the Dirty Frag Linux kernel privilege escalation chain, and two pre-authenticated network remote code execution vulnerabilities in Windows core services that belong at the top of your patch list. They also dig into one of the month's most significant trends: AI-assisted vulnerability research showing up by name in Microsoft, Apple, and Linux acknowledgments in the same patch cycle – including Anthropic researchers credited on a critical Windows graphics component RCE. Ten AI-attributed vulnerability discoveries shipped fixes across all three major operating systems this month. What's covered: CVE-2026-41089: Windows NetLogon RCE (CVSS 9.8) and CVE-2026-41096: Windows DNS Client RCE (CVSS 9.8)CVE-2026-40402: Hyper-V guest-to-host escalation (CVSS 9.3)macOS Tahoe 26.5: Wi-Fi kernel RCE, nine kernel CVEs, 20 WebKit vulnerabilitiesDirty Frag Linux privilege escalation chain and the Copy Fail connectionAI-credited discoveries from Anthropic, calif.io, Theori, and NIST's Center for AI Standards and Innovation- Patch Tuesday Blog- DirtyFrag Blog- What "Mythos Ready" Means

    34 min
  2. Patch [FIX] Tuesday – [Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31

    MAY 8

    Patch [FIX] Tuesday – [Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31

    Breaking from the normal Patch Tuesday cadence for an emergency drop. On May 7, security researcher Hyunwoo Kim published a working proof-of-concept for DirtyFrag - a Linux kernel local privilege escalation chain that gets unprivileged users to root on every major distribution. The embargo was broken by a third party before distribution backports were ready, so the exploit is public and the patch is not. CTO Jason Kikta and Landon Miles walk through what makes DirtyFrag different from the Copy Fail mitigation many teams already deployed (spoiler: the CopyFail mitigation does NOT cover this), why AWS is calling it a class rather than a single CVE, and the five kernel modules you need to block right now: esp4, esp6, ipcomp4, ipcomp6, and rxrpc. In this episode: Why the embargo break matters and what changed on May 7How DirtyFrag chains CVE-2026-43284 and CVE-2026-43500 to defeat both Ubuntu's namespace policy and the absence of rxrpc.ko on other distrosWhy this is the third generation of a bug class (DirtyPipe → Copy Fail → DirtyFrag) and what that means for what comes nextThe Automox Worklet that mitigates both arms across your Linux fleet, and what it deliberately does not doTested affected platforms: Ubuntu 24.04, RHEL 10.1, AlmaLinux 10, CentOS Stream 10, openSUSE Tumbleweed, Fedora 44Back to the regular Patch Tuesday schedule next week. Links: Full blog post and mitigation guidance Automox Worklet (in-console for customers): Worklet source on GitHubHyunwoo Kim's PoC and write-upAWS Security Bulletin 2026-027CVE-2026-31431 (Copy Fail, parent issue)

    11 min
  3. Autonomous IT, Live! The Math of Modern Attacks, E07

    APR 28

    Autonomous IT, Live! The Math of Modern Attacks, E07

    In this episode of Autonomous IT, Live!, we break down the widening gap between exploitation speed and remediation reality. Disclosed vulnerabilities keep climbing, exploitation windows keep shrinking, and IT and security teams are expected to absorb more risk without more resources. The traditional playbook — manual patching, fragmented workflows, scheduled cycles — was built for a slower world that no longer exists. What you'll learn: Why threat actors consistently outpace defender response timesWhere manual patching and fragmented processes break down, even for mature teamsHow rising vulnerability volume and shrinking exploitation timelines are reshaping riskWhy working harder isn't the answer — and what actually needs to changeWho should listen: IT and security leaders responsible for vulnerability management, infrastructure teams running distributed or SaaS-heavy environments, and anyone focused on shrinking exposure windows and accelerating response. The gap between attacker speed and defender capability isn't closing on its own. This conversation is about what it takes to close it. This live show originally aired April 22, 2026.

    33 min
  4. Secure IT – Claude Mythos: AI Vulnerability Hype vs. Evidence, E23

    APR 23

    Secure IT – Claude Mythos: AI Vulnerability Hype vs. Evidence, E23

    Claude Mythos dominated the AI security conversation for two weeks straight, from the Cloud Security Alliance's strategy briefing to sharp public skepticism to yesterday's Bloomberg report that unauthorized users on Discord have been accessing Mythos since its limited launch. Host Jason Kikta cuts through the noise to separate the contested vendor claims from the established trend. In this episode: Why the Mythos debate misses the point, and the independently verified AI security milestones that predate it (XBOW topping HackerOne, DARPA's AI Cyber Challenge, Google Big Sleep, Claude Opus 4.6's 500+ high-severity findings)A careful look at the numbers behind Anthropic's system card, including the Firefox exploit rate dropping from 72.4% to 4.4% once pre-discovered bugs are removedThe CSA's top CISO recommendations that hold regardless of which Mythos claims you believe: patching, segmentation, egress filtering, MFA, defense in depthThree concrete actions to take this week, including the governance conversation most security leaders are overdue to have with the businessGood security starts with good IT. The trend is stable. The claims are contested. Anchor your planning accordingly. Links and sources: CSA briefingProject GlasswingMythos technical writeupOttenheimer system card teardownTom's Hardware on the 198 manual reviews: Bloomberg on the Discord leak

    8 min
  5. Patch [FIX] Tuesday – April 2026 [Double Feature: SQL Another Day + XSS Never Dies], E30

    APR 14

    Patch [FIX] Tuesday – April 2026 [Double Feature: SQL Another Day + XSS Never Dies], E30

    This month's Patch Tuesday drops a SQL Server elevation of privilege that hands attackers sysadmin access and an actively exploited SharePoint XSS flaw that requires no authentication.  SQL injection in the database engine. Cross-site scripting. In 2026...?  Ryan and Mat break down how these attacks work, what to watch for, and why these "classic" vulnerability classes refuse to stay dead.                 Also covered: 80 Edge and Chromium fixes released this month, and a recurring reminder about Secure Boot certificates you can't afford to ignore this year.

    8 min
  6. Automox Insiders – The Magic of Automox: Emily Pace on Building Smarter IT Tools, E11

    APR 9

    Automox Insiders – The Magic of Automox: Emily Pace on Building Smarter IT Tools, E11

    In this episode of IT Insiders, Maddie Regis speaks with Emily Pace, a Senior Product Manager at Automox. Emily shares her career journey, her role in product management, and the collaborative environment at Automox that fosters innovation. They discuss current projects, the importance of customer feedback, and Emily's advice for IT professionals. The conversation concludes with a fun game about real and fake products, showcasing Emily's quick thinking and humor. This episode originally aired November 19, 2024

    15 min
  7. Product Talk – From Click to Fix: Bringing Automox Actions to Zendesk, E25

    APR 2

    Product Talk – From Click to Fix: Bringing Automox Actions to Zendesk, E25

    What if your IT team could troubleshoot and remediate endpoint issues without ever leaving their service desk? In this episode, Steph Rizzuto and Katherine Chipdey break down the new Automox + Zendesk integration.  They cover what it does, why it matters, and how it's designed to cut meantime to remediation for IT teams. The integration surfaces real-time endpoint data directly inside Zendesk tickets. It also gives admins one-click actions like device restarts, patch deployment, and policy execution. Beyond reactive fixes, it flags automation gaps so fewer tickets get created in the first place. Plus, hear how the Splashtop remote desktop integration ties it all together when hands-on troubleshooting is needed. Whether you're running a lean IT team or managing thousands of endpoints, this one's worth a listen.

    20 min
  8. Automox Insiders – Tidy Endpoints, Tidy Mind: Spring Cleaning with Adam Whitman, E17

    MAR 31

    Automox Insiders – Tidy Endpoints, Tidy Mind: Spring Cleaning with Adam Whitman, E17

    In this episode of Automox Insiders, host Maddie Regis chats with Adam Whitman, Manager of Solutions Engineering at Automox, about all things IT spring cleaning. From patch management and software audits to business continuity planning and endpoint hygiene, Adam shares practical, real-world tips for tidying up your tech stack and staying ahead of IT clutter.  Along the way, he reflects on his career journey from marketing to IT leadership and reveals some personal spring cleaning confessions. Tune in for expert advice and a fresh perspective to help you refresh your IT environment this season. This podcast originally aired April 24, 2025

    13 min
See All (220)

Trailer

Ratings & Reviews

5
out of 5
5 Ratings

About

Go from monotonous to autonomous IT operations with this series. Hosts from Automox, the IT automation platform for modern organizations, will cover the latest IT trends; Patch Tuesday remediations; ways to save time with Worklets (pre-built scripts); reduce risk; slash complexity; and automate OS, third-party, and configuration updates on all your Windows, macOS, and Linux endpoints. Automate confidence everywhere with Automox.

Information

  • Creator
    Automox
  • Years Active
    2023 - 2026
  • Episodes
    220
  • Rating
    Clean
  • Copyright
    © 2026 Automox

You Might Also Like