CISA Adds Single-Factor Authentication To List of Bad Practices
CISA has added the use of single-factor authentication for remote or admin access to its list of “Bad Practices.”
Network Security
What good is the IT network at your organization if it isn’t secure? Learn about technology to prevent cyberattacks, store and recover data, secure your WiFi and remote capabilities, and more.
Popular Tags within: Network Security
Cybersecurity Microsoft Videoconferencing ransomware Storage AV-over-IP Cryptocurrency IT ServiceNow Azure
Azure Cosmos DB Flaw Exposed Customer Data
Microsoft is warning thousands of its customers of a vulnerability in Azure that left customer data – including for several Fortune 500 companies – completely exposed. Cloud security company Wiz said in lengthy and detailed post that the flaw – dubbed Chaos DB – is in Azure’s Cosmos DB database. A successful exploit would give […]
What You Need To Know About New IoT Vulnerabilities
The IoT has long been thought to be full of gaping vulnerabilities for attackers to exploit, and it’s now becoming a reality as two recently vulnerability disclosures say millions of IoT devices could be at risk and allow attackers to spy on organizations or completely control affected devices. IoT Inspector was the first to disclose […]
Still Having A PrintNightmare?
When Microsoft released security patches earlier this month to address the vulnerabilities in Windows Print Spooler service, we thought the flaws known as PrigntNightmare were behind us. However, due to the very patch that Microsoft issued to keep cybercriminals from gaining admin privileges through this vulnerability and other changes, some admins are complaining of printing […]
What is Zero Trust and How Do You Implement It?
Thanks to a continuous onslaught of nation-state cyberattacks, exploited vulnerabilities and ransomware, the term Zero Trust has been thrust into the mainstream, but the term isn’t new. In fact, it’s about a decade old, but the ideas and concepts behind the term are even older. However, there isn’t one Zero Trust solution or any one […]
CISA: Cybercriminals Targeting ProxyShell Flaws
System administrators and other IT professionals are urged to apply Microsoft’s May 2021 security updates as threat actors are actively exploiting a previous vulnerability in Microsoft Exchange Server. The U.S. Cybersecurity and Infrastructure Security Agency said over the weekend that multiple threat actors are exploiting three ProxyShell Vulnerabilities, which could allow an attacker to install […]
What IT Admins Can Learn From Microsoft’s U.S. Government Zero Trust Strategy
Microsoft this week published a blog post about how the IT giant is helping U.S. federal agencies adopt a Zero Trust architecture and comply with President Joe Biden’s executive order on cybersecurity, and the company’s guidelines should be a framework for any organization to strive towards. The blog comes amid a heightened awareness of cybersecurity […]
Hackers Used Morse Code In This Phishing Attack
Hackers’ are becoming more sophisticated by using Morse code to evade detection in latest XLS.HTML phishing attack.
How to Mitigate Cyberattacks Against School Districts
Cybercriminals may have their sights set on school districts in 2021-22 academic year; parents fear leak of student data.
Cisco Acquires Cloud Monitoring Startup Epsagon
Cisco acquires cloud monitoring startup to better track the performance of the components that make up a firm’s digital infrastructure.
