My TechDecisions

Search Results: vulnerabilities

IT Generative AI, ChatGPT

ChatGPT and Generative AI a ‘Game Changer,’ but Issues Persist

IT leaders are excited about leveraging generative AI, but work needs to be done on ethics, security and accuracy, Salesforce report finds.

March 8, 2023 Zachary Comeau Leave a Comment

ChatGPT and other new AI models are widely believed to be a game changer across many industries, including IT. However, IT leaders are also expressing concerns with implementing the generative AI too soon, according to new Salesforce research. The CRM giant’s survey of more than 500 IT leaders finds that 67% are prioritizing generative AI […]

Read More
Cloud Security, manageengine SIEM Log360 Cloud

Report: Cloud Security Isn’t On Par With Cloud Migrations

Organizations are struggling with the complexity of cloud security and are using too many tools, Palo Alto Networks research finds.

March 8, 2023 Zachary Comeau Leave a Comment

Organizations are having difficulty detecting, containing and resolving cloud cyber threats in a timely manner, with 90% being unable to work as fast as threat actors, according to new research from Palo Alto Networks. The Santa Clara, Calif.-based cybersecurity giant surveyed more than 2,500 executives around the world, and found that expansion of hybrid work […]

Read More
U.S. Cybersecurity Strategy

The Five Pillars of the New U.S. Cybersecurity Strategy

The U.S. National Cybersecurity Strategy is designed to shift the burden for cybersecurity away from users and encourage long-term investments.

March 6, 2023 Zachary Comeau Leave a Comment

The Biden-Harris Administration has released its five-pronged National Cybersecurity Strategy designed to secure the digital ecosystem by putting more of the burden for cybersecurity on tech organizations and encouraging long-term investments in security. The Administration’s vision is meant to make the country’s digital ecosystem defensible, resilient and values aligned. The new strategy comes in the […]

Read More
Cybersecurity testing, penetration testing, cyber threats

No Organization Is an Island: How to Protect Against Supply Chain Attacks

To defend against supply chain attacks, organizations need to focus on all three layers of the attack surface: data, identities and infrastructure.

March 2, 2023 Dirk Schrader Leave a Comment

Every organization interacts with other organizations: suppliers, partners, customers, government agencies and more. As a result, you can suffer a breach even though your organization was not directly targeted. For example, adversaries were able to release the infamous NotPetya malware to thousands of companies worldwide by compromising the supplier of a popular accounting software solution. […]

Read More
MIcrosoft Entra External ID

Microsoft Launches Intune Suite for Unified Endpoint Management, Security

Microsoft bills the Intune Suite as a unified endpoint management and security bundle designed to simplify IT management and security.

March 1, 2023 Zachary Comeau Leave a Comment

Microsoft is launching the Microsoft Intune Suite, a new unified endpoint management and security bundle designed to simplify endpoint management experiences, improve an organization’s security posture and improve the user experience. According to a Microsoft blog written by Michael Wallent, corporate vice president, of the company’s enterprise mobility management products, the new Intune Suite is deeply […]

Read More
ChatGPT Enterprise IT

ChatGPT, Generative AI and How It Could Impact Enterprise IT

With ChatGPT-like AI being integrated into enterprise IT products, technologists should begin thinking about deploying and managing it.

February 16, 2023 Zachary Comeau Leave a Comment

With Microsoft beginning to integrate advanced AI technology and language models from ChatGPT creator OpenAI throughout its product portfolio–and other software providers leveraging OpenAI’s API–IT professionals should develop a strategy to deploy and govern this emerging technology. This comes as Microsoft and Google begin to compete on the public stage in the field of AI, […]

Read More
Microsoft Defender Cloud Apps

Microsoft Extends Defender for Cloud Apps SSPM to More Critical Apps

Microsoft is extending the cloud security posture management capabilities of Defender for Cloud Apps to Microsoft 365, Salesforce, ServiceNow, Okta, GitHub and more.

February 16, 2023 Zachary Comeau Leave a Comment

Microsoft is aiming to deliver full protection of cloud-based software applications by extending the cloud app security posture management capabilities of Microsoft Defender for Cloud Apps to more critical apps in use today. Some of those apps included in Microsoft’s announcement are Microsoft 365, Salesforce, ServiceNow, Okta, GitHub and more. In a preview starting today, […]

Read More
June 2023 Patch Tuesday. Patch Tuesday,

February 2023 Patch Tuesday: Three Exploited; Exchange, Word Bugs

Microsoft's February 2023 Patch Tuesday includes fixes for 75 security bugs, including three being actively exploited and four Exchange RCEs.

February 14, 2023 Zachary Comeau Leave a Comment

[Editor’s note: An earlier version of this article stated there were two exploited bugs patched this month. It has been updated to reflect the additional exploited vulnerability.] Microsoft has released patches to fix 75 security bugs in the February 2023 Patch Tuesday release, including one each in Microsoft Office, Windows Common Log File System Driver […]

Read More
Royal Ransomware

DPRK Ransomware Group Targets Healthcare Sector, Agencies Say

U.S. agencies are warning healthcare organizations and others to be aware of new ransomware activity from a North Korean nation-state group.

February 13, 2023 Zachary Comeau Leave a Comment

U.S. agencies are warning healthcare organizations and other critical infrastructure organizations to be aware of recent activity from a North Korean nation-state ransomware group that is leveraging older vulnerabilities–including Log4Shell– to gain access into victim environments. The advisory from the FBI, U.S. Cybersecurity and Infrastructure Security Agency and other agencies gives an overview of the […]

Read More