Security


CISA and FBI Offer Security Advice After Ransomware Attack on Fuel Pipeline

The U.S. Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation issued an advisory and an alert regarding a recent ransomware attack on a U.S. fuel pipeline company.

Microsoft's Security Patches for May Address 55 Vulnerabilities

Just four CVEs were described as "Critical" in severity. Also included in the May bunch were patches for 50 "Important" vulnerabilities, plus one deemed "Moderate."

Microsoft Outlines Plans To Meet EU Data Storage Legal Requirements

Microsoft announced on Thursday that its various services are expected to meet European Union (EU) data storage legal requirements by the end of 2022.

'Millions' of Dell Windows PCs Contain 'Critical' Driver Vulnerability

Dell on Tuesday issued a support article describing a "Critical" vulnerability in the Dell dbutil driver affecting most Windows-based Dell computer users.

Microsoft Releases Open Source 'Counterfit' Tool for Attacking AI Systems

Microsoft on Monday announced the release of Counterfit as an open source project on GitHub, permitting organizations to test the security of their artificial intelligence (AI) software solutions by attacking them.

Patch Issued for Critical Vulnerability in Pulse Connect Secure VPNs

Ivanti Pulse Secure announced a patch on Monday for a "Critical"-rated vulnerability (CVE-2021-22893) in its Pulse Connect Secure VPN appliances.

FireEye Explains Nobelium Exploit of Active Directory Federation Services

Security solutions firm FireEye on Tuesday described how Active Directory Federation Services could have been exploited to gain access to Microsoft 365 e-mails during the Nobelium ("Solorigate") attacks used for espionage purposes.

Pulse Connect Secure VPN Gateway Has New 'Critical' Vulnerability Under Exploit

Ivanti's Pulse Secure on Tuesday noted that a new security vulnerability has been found in its Pulse Connect Secure VPN appliances.

Microsoft 365 Defender Portal Now Combines Security Signals from End Points and E-Mails

Microsoft announced on Monday that its Microsoft 365 Defender console now combines information from three of its enterprise security solutions at the "general availability" commercial-release stage.

U.S. Sanctions Imposed on Positive Technologies and Others for Russian Spying

The U.S. Department of the Treasury on Thursday announced sanctions on Russia for its cyberactivities, along with six organizations for enabling it, including the well-known security solutions firm Positive Technologies.

U.S. Security Agencies Warn Russia Actively Exploiting 5 Software Security Flaws

U.S. government security agencies on Thursday issued a joint advisory (PDF) regarding five software security vulnerabilities that are currently getting exploited by the Russian Foreign Intelligence Service (SVR).

Microsoft Software and Services Switching to SHA-2 Security Next Month

Microsoft plans to stop trusting Secure Hash Algorithm 1 (SHA-1) certificates next month for "all major Microsoft processes and services," according to a Wednesday announcement.

FBI Reached into Exchange Servers To Delete Hafnium Webshells

The U.S. Federal Bureau of Investigation (FBI) has deleted Webshells on Hafnium-compromised Exchange Server installations across the country, and is now sending notices to victim organizations, according to a Tuesday announcement.

April Microsoft Security Patches Released, Bringing More Critical Exchange Server Fixes

Microsoft released security updates for 114 common vulnerabilities and exposures in its software products, while also publishing a supplementary note urging organizations to apply the new April Exchange Server "Critical" patches "as soon as possible."

Using Exchange Mail Flow Rules To Fight Ransomware

A key part of an organization's ransomware-prevention strategy is creating Exchange mail flow rules that take action against messages that are likely to contain ransomware.

Azure Active Directory Gets Oversight Reporting Perks

IT pros are getting a modest bump-up in oversight capabilities with the Azure Active Directory improvements that were announced this month.

The Ransomware Warning System in Your Backup Server

Backups aren't just the last line of defense against ransomware. If you know the signs, your backups can also help you stop a ransomware attack that is currently in progress.

Microsoft Offers Exchange Server Webshell Hunting Tips

Microsoft on Thursday published a comprehensive description of the Exchange Server attack methods currently taking advantage of four zero-day flaws in those products, and offered extensive advice.

Microsoft Endpoint Manager 2103 Adds Cloud Configuration and Tunnel Features

Microsoft on Thursday highlighted a few additions this month for users of Microsoft Endpoint Manager, which is used for configuring and managing devices and servers.

Linux Anti-Virus Behavior Monitoring Preview Now Available in Microsoft Defender for Endpoint

Microsoft on Tuesday announced a preview of an enhancement to Microsoft Defender for Endpoint on Linux's anti-virus solution, adding behavior monitoring, deep scanning and blocking capabilities.

Subscribe on YouTube

Upcoming Training Events