My TechDecisions

Search Results: vulnerabilities

CISA Ransomware

Critical VMware Vulnerability From 2021 Leveraged in Mass Ransomware Campaign

A threat actor is reportedly leveraging a two-year-old vulnerability in VMware ESXi servers to deploy ransomware.

February 7, 2023 Zachary Comeau Leave a Comment

A two-year-old vulnerability in VMware ESXi servers is reportedly under mass-exploitation by a ransomware threat actor, and more than 1,000 VMware ESXI severs have been compromised. According to cybersecurity firm Blackberry, the new ransomware, ESXiArgs, is targeting unpatched VMware ESXi servers connected to the internet, leveraging a remote code execution bug from 2021 to cause […]

Read More
1E Patch Insights, Patch Management, Software update

1E Releases Patch Insights to Augment Microsoft Patching Tools

1E Patch Insights is designed to give IT admins real-time visibility into the patch landscape and the ability to resolve patch issues.

February 3, 2023 Zachary Comeau Leave a Comment

1E, a provider of digital employee experience technology, has launched 1E Patch Insights, a new solution designed to give IT administrators real-time visibility into the patch landscape and the ability to easily resolve challenging patch issues. The solution comes after Microsoft’s first Patch Tuesday of 2023 resulted in patches for more than 100 vulnerabilities, which […]

Read More
Microsoft Security RSA Conference

Microsoft: Here’s How to Keep Exchange Server Secure

Microsoft is urging organizations to protect their Exchange servers by installing the latest available updates on all Exchange Servers.

February 1, 2023 Zachary Comeau Leave a Comment

Microsoft is urging organizations to keep their Exchange servers protected by installing the latest available Cumulative Update and Security Update on all Exchange servers and some Exchange Management Tool workstations. In addition, Microsoft recommends occasionally performing manual tasks to harden Exchange environments, such as enabling Extended Protection and enabling certificate signing of PowerShell Serialization payloads. […]

Read More
ChatGPT, IT, Policies, AI Tools, Data

The Cybersecurity Implications of AI Like ChatGPT

While tools like ChatGPT can help IT and cybersecurity professionals do their jobs, there is potential for it to be used maliciously.

January 31, 2023 Zachary Comeau Leave a Comment

While ChatGPT may appear to be a shiny new tool that technologists get to play with under OpenAI’s public preview, cybersecurity experts are warning that the conversational AI chatbot could be abused just like any other legitimate IT tool. However, the implications are far more serious, as a highly intelligent assistant being leveraged by attackers […]

Read More
Cybersecurity testing, penetration testing, cyber threats

This K-12 Cybersecurity Resource Offers Useful Guidance for School IT Professionals

The U.S. Cybersecurity & Infrastructure Security Agency has released a report to help keep K-12 organizations secure.

January 25, 2023 Zachary Comeau Leave a Comment

In an effort to help protect K-12 educational institutions from an increasing rate of cyberattacks, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new report with recommendations and resource to help K-12 IT professionals address their plentiful security risks. CISA’s new report, “Protecting Our Future: Partnering to Safeguard K–12 organizations from Cybersecurity […]

Read More
ChatGPT, OpenAI, iOS, Mobile, App

ChatGPT and Why it Matters to IT Professionals

Here is what IT professionals should know about OpenAI's new conversational chatbot and how it can help them do their jobs.

January 24, 2023 Zachary Comeau Leave a Comment

Conversational chatbot ChatGPT has captivated the internet with its ability to respond to nearly any prompt and provide real-time answers on a range of topics, and according to the chatbot’s own website, answer follow-up questions, admit mistakes, challenge incorrect premises and reject inappropriate requests. It’s been available in a preview since the end of November, […]

Read More
Zero Trust, ZTNA, Netskope

Gartner: Zero Trust Implementations are Slowly Gathering Steam

Gartner predicts that 10% of large enterprises will have a mature and measurable zero trust program by 2026, up from less than 1% today.

January 23, 2023 Zachary Comeau Leave a Comment

A common buzzword popular among IT and cybersecurity professionals over the last few years is zero trust, a security strategy designed to reduce risk by implementing granular controls over users and apps. However, Gartner predicts that just 10% of large enterprises will have a mature and measurable zero-trust program in place by 2026, up from […]

Read More
Cybersecurity Trends

These Trends Will Shape Cybersecurity in 2023

The edge, networks, applications, data, biometrics, IoT and more will be this year's key cybersecurity trends, says AT&T's cyber evangelist.

January 20, 2023 Zachary Comeau Leave a Comment

Over the last few years, trends in cybersecurity have forced the responsbility of keeping networks and systems secure to shift from a handful of IT and security professionals to the entire organization. Now, cybersecuirty is becoming a significant part of any business in the digital era. Organizations are hard-pressed to do anything new or innovate […]

Read More
Microsoft Nuance DAX

FDA to Regulate Medical Device Cybersecurity

A new law requires manufacturers of medical devices to ensure that their equipment and related systems are cybersecure.

January 19, 2023 TD Staff Leave a Comment

For years now, healthcare providers have been struggling with the cybersecurity issues posed by medical devices. One study released in December found that internet-connected medical devices have a 24% greater risk for cyberattacks. However, a new federal law passed late last year offers some relief. The Food and Drug Administration (FDA) now has the authority and $5 […]

Read More