Search Results: cisa

How To Harden Your Kubernetes Infrastructure From Cyberattacks

A new guide from the NSA and CISA can help organizations harden their Kubernetes infrastructure as hackers increase attacks.

August 4, 2021 Zachary Comeau Leave a Comment

The U.S. National Security Agency and Cybersecurity and Infrastructure Security Agency has released a guide that can help IT administrators and cybersecurity professionals minimize risk in Kubernetes environments as attacks targeting the open-source system are increasing. The guide comes as threat actors are looking for new ways into IT networks, including Kubernetes via supply chain […]

Patch These Heavily Exploited Vulnerabilities Now

Vulnerabilities in Citrix, Pulse, Microsoft and Fortinet products are among the most commonly exploited, according to federal agencies.

July 28, 2021 Zachary Comeau Leave a Comment

When a vendor or security researcher discloses a vulnerability in an IT product, organizations should be quick to apply the patch or implement a secure workaround to protect networks from bad actors that are quick to exploit that vulnerability. When those vulnerabilities are in widely used products from popular vendors like Citrix, Pulse, Microsoft and […]

Navigating the Five Common Responses to Negative Risk

July 26, 2021 TechDecisions Staff Leave a Comment

SCHAUMBURG, Ill.–(BUSINESS WIRE)–#isaca–Risk managers deal with multiple levels of complexity in a constantly changing threat landscape. There are typically five common responses to risk: avoid, share/transfer, mitigate, accept and increase. ISACA’s new white paper, Optimizing Risk Response, confronts the inconsistencies, opportunities, obstacles, strengths and weaknesses inherent in risk response options to provide an understanding of […]

The U.S. Government Is Getting Serious About Nation State Cybercrime

The U.S. on Monday charged Chinese hackers and publicly attributed the Exchange Server attacks to China a week after ransomware initiatives.

July 19, 2021 Zachary Comeau Leave a Comment

In case you missed it, the U.S. government has taken several actions of late aimed at stopping foreign cybercriminals and nation state actors from attacking the networks of government entities and private organizations, including charging four Chinese nationals with stealing intellectual property, attributing the Microsoft Exchange Server attacks to China and launching anti-ransomware initiatives. If […]

Microsoft Warns Of Another Print Spooler Vuln

Unlike PrintNightmare, this vulnerability can only be exploited locally and isn't being actively used in attacks.

July 16, 2021 Zachary Comeau Leave a Comment

Just when we thought the Windows Print Spooler vulnerability was addressed, Microsoft has released information about another vulnerability in the service that could allow an attacker to run arbitrary code with SYSTEM privileges. The company is currently developing a security update to address this vulnerability, which is tracked as CVE-2021-34481. This comes after Microsoft previously […]

Update Now: Microsoft Issues Fixes For 117 Security Flaws, Including PrintNightmare

Microsoft's monthly security update fixes flaws in Windows Dynamics, Exchange Server, Microsoft Office, Windows Storage Spaces Controller and more.

July 14, 2021 Zachary Comeau Leave a Comment

Microsoft has been busy issuing software security patches over the last few weeks, including an emergency fix to resolve the PrintNightmare vulnerability and 117 fixes as part of its monthly security patch release. The volume of fixes this month is more than the last two months combined, but is on par with the monthly totals […]

Hims & Hers Announces Redemption of All Outstanding Warrants

July 9, 2021 TechDecisions Staff Leave a Comment

SAN FRANCISCO–(BUSINESS WIRE)–Hims & Hers Health, Inc. (“Hims & Hers” or the “Company,” NYSE: HIMS), the multi-specialty telehealth platform focused on providing modern personalized health and wellness experiences to consumers, today announced that it will redeem all of its outstanding warrants (the “Warrants”) to purchase shares of the Company’s Class A common stock, par value […]

BlackSky’s Technology Leveraged to Monitor Secretive Iranian Nuclear Facility

July 7, 2021 TechDecisions Staff Leave a Comment

Stanford researchers use geospatial imagery and machine learning technology to gain real-time insights HERNDON, Va.–(BUSINESS WIRE)–BlackSky Holdings, Inc. (“BlackSky”), a leading technology platform providing real-time geospatial intelligence and global monitoring that has announced a planned business combination with Osprey Technology Acquisition Corp. (NYSE: SFTW), today shared that its geospatial imagery was used in a groundbreaking […]

Kaseya Confirms Sophisticated Cyberattack Over The Holiday Weekend

Cyberattack against Kaseya shows hackers are becoming strategic and targeting remote managed service providers.

July 6, 2021 Alyssa Borelli Leave a Comment

Cyberattack against Kaseya shows hackers are becoming strategic and targeting remote managed service providers.

What IT Pros Need To Know About The PrintNightmare Vulnerability

IT administrators are being warned of a new actively exploited and unpatched remote code execution vulnerability in Windows Print Spooler.

July 2, 2021 Zachary Comeau Leave a Comment

IT administrators are being warned of an actively exploited remote code execution vulnerability in Windows Print Spooler that could allow an attacker to install programs, view or change data or create new accounts with full user rights. The vulnerability is being referred to as PrintNightmare (CVE-2021-34527), which Microsoft says is slightly different from another vulnerability […]