The Last Watchdog

JUNE 6, 2023

However, a “back-migration,” as Michiel De Lepper , global enablement manager, at London-based Runecast , puts it, is also ramping up. Runecast, for instance, takes a proactive approach to risk-based vulnerability management, configuration management, container security, compliance auditing, remediation and reporting.

Cloud Migration 198

Cloud Migration Architecture Internet Internet 198

Centraleyes

MARCH 25, 2024

Let’s discuss an acronym reshaping the business world: Vendor Risk Management , or VRM. In our interconnected world, our security is only as strong as our weakest link, and the third-party vendors we choose are essential links in our business chains. Who are you, and what are your goals?

Risk 111

Risk Data collection Architecture Government 111

Security Affairs

JANUARY 24, 2024

Researchers released PoC exploit code for a recently disclosed critical authentication bypass flaw in Fortra’s GoAnywhere MFT (Managed File Transfer). Researchers with cybersecurity firm Horizon3’s Attack Team published technical details of the recently disclosed vulnerability CVE-2024-0204 impacting Fortra GoAnywhere MFT.

Authentication 121

Authentication Hacking Engineering Encryption 121

Security Affairs

NOVEMBER 26, 2023

The cyber attack that hit the managed service provider (MSP) CTS potentially impacted hundreds in the United Kingdom. CTS is a trusted provider of IT services to the legal sector in the UK. The company announced that it is investigating a cyber attack that caused a service outage.

Hacking 125

Hacking Cyber Attacks Media Information Security 125

Thales Cloud Protection & Licensing

FEBRUARY 21, 2024

What are Telcos particularly vulnerable to API attacks? Telecoms are particularly vulnerable to API attacks for several reasons. These volumes are in turn managed by numerous applications and other IT solutions. The more variations in the environment, the more complicated it is to manage.

Encryption 139

Encryption Mobile Government Consumer Protection 139

NetSpi Executives

MARCH 19, 2024

Vulnerability scanners help scan known assets, but what about the assets you don’t know exist? Attack surface sprawl is a growing challenge with 76% of organizations experiencing some type of cyberattack that started through the exploit of an unknown, unmanaged, or poorly managed internet-facing asset. That’s where NetSPI ASM comes in.

Penetration Testing 98

Penetration Testing DNS Technology Internet 98

eSecurity Planet

JANUARY 8, 2024

The new year brought few new vulnerabilities, and only Ivanti Endpoint Manager (EPM) and Kyber, the quantum resistant encryption algorithm, publicized new vulnerabilities or fixes. Unfortunately, most news derived from the active attacks on multiple older vulnerabilities, which threaten to expose organizations slow to patch.

Encryption 109

Encryption Security Defenses Cybersecurity Internet 109

eSecurity Planet

APRIL 28, 2023

Vulnerability management improves the security posture of all IT systems by locating vulnerabilities, implementing security controls to fix or protect those vulnerabilities, and then testing the fixes to verify vulnerability resolution. What Is Vulnerability Management?

Penetration Testing 109

Penetration Testing IoT Firmware Software 109

eSecurity Planet

APRIL 1, 2024

Vendors and researchers disclosed a wide range of vulnerabilities this week from common Cisco IOS, Fortinet, and Windows Server issues to more focused flaws affecting developers (PyPI), artificial intelligence (Ray, NVIDIA), and industrial controls (Rockwell Automation). The fix: Update affected versions ASAP: FortiClient EMS 7.2:

Authentication 109

Authentication Artificial Intelligence Software Cybersecurity 109

eSecurity Planet

DECEMBER 20, 2023

Attack surface management (ASM) is a relatively new cybersecurity technology that combines elements of vulnerability management and asset discovery with the automation capabilities of breach and attack simulation (BAS) and applies them to an organization’s entire IT environment, from networks to the cloud.

Software 113

Software Risk Architecture Internet 113

eSecurity Planet

APRIL 29, 2024

Many of this week’s disclosures involve new aspects of old vulnerabilities. An old Microsoft Windows spooler flaw is added to the CISA KEV list, and the Cactus Ransomware gang currently pursues unfixed Qlik Sense servers with a vulnerability patched in September 2023. The problem: The CVSS 10.0/10.0

Firewall 67

Firewall Software Ransomware Penetration Testing 67

NetSpi Executives

MARCH 5, 2024

Table of Contents What is External Attack Surface Management? Gartner wrote a report that explains EASM in-depth, including why asset discovery is the tip of the EASM iceberg, and how EASM support Continuous Threat Exposure Management. 1 What is External Attack Surface Management?

Penetration Testing 64

Penetration Testing Technology Marketing Mobile 64

eSecurity Planet

JANUARY 29, 2024

Meanwhile, the release of proof-of-concept code starts the countdown to attack on other critical vulnerabilities, including Cisco Enterprise Communication, Fortra GoAnywhere, and GitLab. Continue reading below to learn more about this week’s vulnerabilities, but don’t forget to double-check IT asset inventories for accuracy.

Software 111

Software Authentication CSO Accountability 111

NetSpi Executives

JANUARY 30, 2024

As your company’s external attack surface expands and threat actors remain relentless, Attack Surface Management (ASM) solutions can help level up your proactive security measures by enabling continuous pentesting.

Technology 94

Technology Penetration Testing Risk Internet 94

Security Affairs

OCTOBER 27, 2023

F5 warns customers of a critical vulnerability impacting BIG-IP that could lead to unauthenticated remote code execution. F5 is warning customers about a critical security vulnerability, tracked as CVE-2023-46747 (CVSS 9.8), that impacts BIG-IP and could result in unauthenticated remote code execution. ENG 3 Critical 9.8

Authentication 124

Authentication Internet Internet Hacking 124

eSecurity Planet

DECEMBER 19, 2023

Infrastructure as a service security is a concept that assures the safety of organizations’ data, applications, and networks in the cloud. What Is Infrastructure as a Service (IaaS) Security? IaaS security refers to the procedures, technologies, and safeguards put in place by IaaS providers to protect their computer infrastructure.

Encryption 113

Encryption Firewall Authentication Software 113

eSecurity Planet

FEBRUARY 26, 2024

Critical vulnerabilities have been discovered across multiple systems, including Microsoft Exchange Servers, the Bricks Builder Theme for WordPress, VMware, ScreenConnect, Joomla, and Apple Shortcuts. Recurring exploits have targeted similar companies, so monitor the recent vulnerability news to remain up to date on the latest threats.

Risk 113

Risk Authentication System Administration Ransomware 113

eSecurity Planet

NOVEMBER 22, 2023

Cloud configuration management runs and regulates cloud configuration settings, parameters, and policies to streamline cloud services and assure security. This guide covers the importance of cloud configuration management, its main components, security benefits, challenges, and best practices.

Backups 104

Backups Risk Encryption Technology 104

eSecurity Planet

AUGUST 14, 2023

No one likes the hassle of dealing with patch management or vulnerability management , but it is universally agreed that security breaches are far worse. Many organizations try to proactively patch and manage vulnerabilities to prevent attackers from gaining any foothold.

Software 98

Software Malware Internet Internet 98

Malwarebytes

JULY 27, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) added one new vulnerability to its Known Exploited Vulnerabilities Catalog affecting Ivanti Endpoint Manager Mobile, based on evidence of active exploitation. The Common Vulnerabilities and Exposures (CVE) database lists publicly disclosed computer security flaws.

Mobile 90

Mobile Authentication Government Software 90

eSecurity Planet

JANUARY 22, 2024

This week’s vulnerability news include GitHub credential access, a new Chrome fix, and hidden malware from pirated applications hosted on Chinese websites. Citrix and Ivanti are seeing more problems, too, as more vulnerabilities have cropped up in Netscaler and Endpoint Manager Mobile.

Authentication 113

Authentication Malware VPN Mobile 113

eSecurity Planet

MARCH 25, 2024

While only a few major vulnerabilities emerged this week, Ivanti announced another notable set of flaws in both its Standalone Security and Neurons for ITSM products. Fortra, Apple, and Amazon Web Services had vulnerabilities, too. Check out our list of the best vulnerability scanners for recommendations and use cases.

Computers and Electronics 62

Computers and Electronics Software Accountability Authentication 62

Malwarebytes

NOVEMBER 7, 2023

November marks a significant shift in our legacy. After 15 years as Malwarebytes, we are proud to introduce our rebranded identity, ThreatDown powered by Malwarebytes. From our beginnings as a remediation consumer tool to becoming a titan in business cyber protection, let’s walk through where we’ve come and where we’re headed.

Small Business 80

Small Business Malware Mobile Technology 80

eSecurity Planet

FEBRUARY 12, 2024

This week saw some repeat products from previous vulnerability recaps, such as Ivanti Policy Secure and JetBrains TeamCity servers. One of the most notable vulnerabilities for this week is Fortinet’s critical FortiOS issue, which affects Fortinet products that use the affected versions of the network operating system.

VPN 109

VPN Authentication Software Firewall 109

eSecurity Planet

JANUARY 16, 2024

The past week and the long weekend have had plenty of vulnerabilities to keep your IT and security teams busy. Both SonicWall and Juniper Networks have seen vulnerabilities that allow remote code execution and denial-of service attacks. with a patch for the vulnerability, but older versions are still being exploited.

Firewall 109

Firewall Firmware IoT Authentication 109

eSecurity Planet

APRIL 15, 2024

Last week’s cybersecurity incidents revealed significant vulnerabilities across multiple platforms. Typically, these vulnerabilities result in remote code execution or denial-of-service attacks, posing major dangers to users’ data security. It’s suggested that automatic updates be enabled.

Firewall 109

Firewall VPN Software Risk 109

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. Tietoevry is a Finnish multinational information technology (IT) and consulting company that provides managed services and cloud hosting for the enterprise.

Ransomware 119

Ransomware VPN Government Retail 119

eSecurity Planet

FEBRUARY 2, 2024

Within the last couple of months, smart device vulnerabilities have been piling up, prompting businesses to protect their Internet of Things (IoT) environments. Teslas have plenty of vulnerabilities, as cybersecurity researchers have recently discovered. Imagine a corporate office where only two employees drive Teslas.

Hacking 125

Hacking IoT Firmware Cybersecurity 125

NetSpi Executives

DECEMBER 28, 2023

But amidst the whirlwind, there were triumphs, breakthroughs, and moments of sheer celebration on our team that made this year one to remember. Our Favorite #TeamNetSPI Moments Marking milestones and welcoming new furry faces was all part of an exciting 2023 for our team.

Education 93

Education Penetration Testing CISO Cybersecurity 93

Security Affairs

NOVEMBER 12, 2021

Wiz Research Team disclosed technical details about the discovery of the ChaosDB vulnerability in Azure Cosmos DB database solution. This vulnerability was so severe that we didn’t want to share the full extent of it until enough time had passed to properly mitigate it.

Accountability 127

Accountability Authentication Internet Internet 127

eSecurity Planet

AUGUST 21, 2023

Unfortunately, arbitrary code execution (ACE) means that an attacker can use a vulnerability to execute any code they want on a device. In the vulnerabilities covered this week, attackers used an ACE vulnerability to install webshells and similar backdoors on vulnerable systems.

Encryption 97

Encryption Cybersecurity Security Defenses Software 97

Security Boulevard

MARCH 21, 2024

FortiClient EMS is an endpoint management solution for enterprises that provides a central location for administering enrolled endpoints. This SQL injection vulnerability is caused by user controlled strings that are passed directly into database queries. Our POC can be found here.

Architecture 64

Architecture 64

Security Affairs

SEPTEMBER 24, 2023

The National Student Clearinghouse (NSC) is a nonprofit organization based in the United States that provides educational verification and reporting services to educational institutions, employers, and other organizations The organization has disclosed a data breach that impacted approximately 900 US schools using its services.

Data breaches 121

Data breaches Education Ransomware Software 121

Malwarebytes

NOVEMBER 24, 2023

In a joint cybersecurity advisory , the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), along with other international agencies, warn that ransomware gangs are actively exploiting the Citrix Bleed vulnerability. are now End-of-Life (EOL) and also vulnerable. out of 10).

Government 114

Government Ransomware Backups Software 114

Malwarebytes

JUNE 13, 2022

Dutch research group DIVD has identified multiple vulnerabilities in ITarian products. In cooperation with DIVD, ITarian has made patches available to deal with these vulnerabilities for its SaaS platform. It’s typically the sort of tool that Managed Service Providers (MSPs) use to remotely manage their clients.

Software 111

Software Engineering Internet Internet 111

eSecurity Planet

DECEMBER 6, 2022

In a recent analysis of the public and Internet-facing assets of 471 of the Fortune 500 companies, Cyberpion uncovered more than 148,000 critical vulnerabilities (exploits that are publicly available and actively targeted), with an average of 476 per company. The report follows the October release by the U.S.

Risk 117

Risk Cybersecurity Authentication Internet 117

eSecurity Planet

AUGUST 22, 2023

Managed IT security service providers (MSSPs) make life easier for organizations by providing outsourced expertise and tools at a fraction of the cost, time, and trouble of doing it yourself. What is a Managed Security Service Provider (MSSP)?

Telecommunications 98

Telecommunications Firewall Penetration Testing Cybersecurity 98