%term

ConnectWise Vulnerability: Authentication Bypass in ScreenConnect

Feb 21, 2024 By Lauren Farrell In Centripetal

Widespread exploitation of these vulnerabilities in the wild has been confirmed including comprise of UnitedHealth’s Change Healthcare on February 22nd, by Lockbit. Sophos has confirmed various strains of malware using these vulnerabilities as part of delivery including LockBit ransomware, AsyncRAT, infostealers, etc.

Read Post

Centripetal

Read more about ConnectWise Vulnerability: Authentication Bypass in ScreenConnect

#103 - A better way forward for cybersecurity with Maxime Lamothe-Brassard, Founder of LimaCharlie

Feb 21, 2024 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we delve into an innovative, engineering-centered perspective on cybersecurity with Maxime Lamothe-Brassard, the Founder & CEO of LimaCharlie. As part of the Canadian Intelligence apparatus, Maxime worked in positions ranging from development of cyber defence technologies, Counter Computer Network Exploitation, and Counter Intelligence. Maxime led the creation of an advanced cyber security program for the Canadian government and received several Director’s awards for his service.

View Video

LimaCharlie

Read more about #103 - A better way forward for cybersecurity with Maxime Lamothe-Brassard, Founder of LimaCharlie

New features in Teleport Connect 15

Feb 21, 2024 By Teleport In Teleport

In this insightful video, we explore the latest enhancements to desktop access in Teleport 15, showcasing how these improvements significantly boost performance and usability. With Teleport 15 deployed, we dive into the critical updates, including the necessity of upgrading your Teleport proxy, auth server, and Windows agent to leverage the full potential of these advancements.

View Video

Teleport

Read more about New features in Teleport Connect 15

How To Tell if Your Social Security Number Was Stolen

Feb 21, 2024 By Tim Tran In Keeper

You need to protect your Social Security number to prevent identity theft. Threat actors can use your Social Security number to commit fraud and leave you with lasting effects such as debt, damaged credit and financial loss. It can be difficult to tell if someone uses your Social Security number without your permission.

Read Post

Keeper

Read more about How To Tell if Your Social Security Number Was Stolen

Cloud Backup Solution for Small Business: The Buyers Guide

Feb 21, 2024 By NAKIVO Team In NAKIVO

Choosing the right backup solution is a critical decision for any business, as the wrong choice can lead to data loss, downtime, a strain on the budget, and other undesirable consequences. In this blog post, we go over the key factors for deciding on the right backup solutions for small and medium-sized businesses.

Read Post

NAKIVO

Read more about Cloud Backup Solution for Small Business: The Buyers Guide

Kheun Chan, Principal Security Architect at Iron Mountain on ensuring data flows only where it's supposed to

Feb 21, 2024 By Michael Osakwe In Cyberhaven

Welcome to our Data Security Innovators series, where we talk to security practitioners who are navigating the frontiers of security with novel processes and technologies. In this episode, we speak to Kheun Chan, Principal Security Architect at Iron Mountain. Iron Mountain is renowned as one of the world’s best secure information storage and management services, with 95% of the Fortune 1000 as customers of the company.

Read Post

Cyberhaven

Read more about Kheun Chan, Principal Security Architect at Iron Mountain on ensuring data flows only where it's supposed to

Less Is More: Consolidating Your Third Party Risk Management Tools

Feb 21, 2024 By Anders Norremo and Qionglu Lei In BitSight

Proudly serving over 3,000 enterprises globally, Bitsight works closely with risk leaders across industries to help them protect their businesses. CISOs and third-party risk professionals face pressing challenges, from regulations to efficiency to maintaining supply chain resilience—all calling for smarter, easier, and more integrated solutions.

Read Post

BitSight

Read more about Less Is More: Consolidating Your Third Party Risk Management Tools

CTI Roundup: Return of Bumblebee and PikaBot Malware, Spammers Hit AWS SNS

Feb 21, 2024 By Tanium In Tanium

Bumblebee returns from hiatus, PikaBot reappears with optimized code, and threat actors distribute spam via AWS SNS.

Read Post

Tanium

Read more about CTI Roundup: Return of Bumblebee and PikaBot Malware, Spammers Hit AWS SNS

A Grim Outlook for Microsoft with MonikerLink and Exchange Vulnerabilities

Feb 21, 2024 By Caitlin Postal In UpGuard

Microsoft's Patch Tuesday updates in February 2024 include critical fixes for two zero-day vulnerabilities: CVE-2024-21413 impacting Microsoft Outlook (called MonikerLink) and CVE-2024-21410 impacting Microsoft Exchange Server. The former allows remote code execution to access and leak privileged information, while the latter permits privilege escalation (potentially using credentials leaked by the former). These security risks expose a victim's machine to potentially malicious arbitrary code execution.

Read Post

UpGuard

Read more about A Grim Outlook for Microsoft with MonikerLink and Exchange Vulnerabilities

JumpCloud vs. Dashlane: Which Password Manager Is the Best Value?

Feb 21, 2024 By Kelsey Kinzer In JumpCloud

Organizations are increasingly adopting cloud-based technology and infrastructure, expanding the number of applications users need to access. Oversight and control over employee password policies gives organizations the ability to prevent password reuse and reduce user friction. Password managers like JumpCloud and Dashlane provide security teams with the ability to enforce password policies and store complex passwords in secure vaults.

Read Post