My TechDecisions

Search Results: vulnerabilities

Microsoft Defender Endpoint Mobile

Microsoft Defender For Endpoint Can Now Manage Bugs in Android, iOS Devices

The new cross-platform coverage, threat and vulnerability management capabilities now support all major device platforms.

February 3, 2022 Zachary Comeau Leave a Comment

Microsoft is rolling out the general availability of a feature that allows administrators to manage the security and vulnerability management of Android and iOS devices with Microsoft Defender for Endpoint. The new cross-platform coverage, threat and vulnerability management capabilities now support all major device platforms across the organization, spanning workstations, servers and now mobile devices, […]

Read More
MIcrosoft Okta Lapsus$

Patch Now: RCE Vulnerability Found in Samba

Administrators are advised to immediately deploy the fix and be on the lookout for vendors that will need to release their own patches.

February 2, 2022 Zachary Comeau Leave a Comment

Researchers have discovered an Out-of-Bounds Heap Read/Write vulnerability in Samba that could allow unauthenticated remote attackers to execute arbitrary code on affected installations of the free software. The bug, tracked as CVE-2021-44142, was initially discovered at the Pwn2Own event in Austin, and researchers with Trend Micro’s Zero Day Initiative discovered additional variants of the bug […]

Read More
LogMeIn GoTo

LogMeIn Rebrands As GoTo, Launches Unified App For IT Support, Collaboration

The rebrand includes GoToResolve, a new IT management and support platform and a new experience for GoTo Connect.

February 2, 2022 Zachary Comeau Leave a Comment

LogMeIn has rebranded as GoTo and launched a new IT management and support platform GoTo Resolve, and is rolling out a new experience for the company’s unified communications-as-a-service product GoTo Connect. Those products will be united by a single application, administrative system and converging user experience that combines support and communication products. These changes are […]

Read More

Insyde® Software Credits Binarly’s AI-Powered Firmware Threat Detection Technology for Recent Security Disclosures

February 1, 2022 TechDecisions Staff Leave a Comment

Today’s Published Security Disclosures Are Available on Insyde Software’s Website TAIPEI, Taiwan & HILLSBORO, Ore.–(BUSINESS WIRE)–Insyde® Software, a leading provider of UEFI (Unified Extensible Firmware Interface) and systems management BMC (Baseboard Management Controller) firmware, today announced that Binarly Inc., an AI-powered firmware protection platform provider, helped report previously unknown firmware vulnerabilities that have been officially […]

Read More

Immutability Specialist Codenotary Now Offers Trusted Software Supply Chain Assurance in a Fast, Easy, Inexpensive Cloud

February 1, 2022 TechDecisions Staff Leave a Comment

Codenotary Cloud reduces cost to identify vulnerabilities in software by 80% HOUSTON–(BUSINESS WIRE)–#Immutability—Codenotary, the immutability specialist that can instantly identify untrusted components in software, today announced Codenotary Cloud, a fast, easy, inexpensive way to determine where a vulnerability, such as Log4j, exists. Codenotary Cloud reduces the cost to almost instantly identify and remove unwanted artifacts […]

Read More

Pentera Redefines Cybersecurity Validation Market with Industry-First Unified Testing Platform for Both Internal and External Threats

January 24, 2022 TechDecisions Staff Leave a Comment

Market Leader’s New Platform Autonomously Validates any IT Attack Surface and Provides Enterprises with the Fastest Path to Cybersecurity Readiness BOSTON & TEL AVIV, Israel–(BUSINESS WIRE)–Pentera, the leader in automated security validation, unveiled its next-generation security validation platform today. The Company ends the era of disparate security testing systems by launching a unified security validation […]

Read More

Software Supply Chain Security Specialist Codenotary Raises $12.5 Million in Series B Round

January 20, 2022 TechDecisions Staff Leave a Comment

Founder of Xen and KVM hypervisors turns his sights to security during year highlighting critical vulnerabilities in software delivery HOUSTON–(BUSINESS WIRE)–#SBOM—Codenotary, the immutability specialist that can instantly identify untrusted components in software, today announced that it has raised $12.5 million in series B funding by new and existing investors Bluwat, Elaia and others. The financing […]

Read More
Malware Symantec Daxin

Report: 2021 Malware, Ransomware Levels Already Surpassed 2020 Levels By End Of Q3

Despite a drop in third-quarter activity, 2021 was an exceptional year for malware and ransomware attacks, WatchGuard report says.

January 20, 2022 Zachary Comeau Leave a Comment

While new research shows a decrease in total perimeter malware detection volume in the third quarter from the record highs in the second quarter, there was still more malware activity through the first three quarters than all of 2020. The report from endpoint protection provider WatchGuard Technologies also found that nearly half of zero-day malware […]

Read More
Active Directory Misconfigurations

Why Active Directory Attack Paths are the Secret to Many Successful Ransomware Attacks

By gaining control of an organization’s AD, the adversary seizes the power to deploy ransomware to all systems through several mechanisms.

January 19, 2022 Andy Robbins Leave a Comment

It’s no secret that most major enterprises across the globe use Microsoft Active Directory (AD) for identity and access management. This ubiquity is also one of the predominant reasons AD is such a popular and attractive target for adversaries. What remains a mystery to many enterprises, however, is how adversaries – including the malicious actors […]

Read More
Microsoft Security RSA Conference

Apply These Emergency Fixes For Bugs Caused By Microsoft’s January Updates

Update fixes issues with VPN connectivity, Windows Server domain controllers, virtual machines and ReFS-formatted removable media.

January 19, 2022 Zachary Comeau Leave a Comment

Microsoft has released an out-of-band update that fixes multiple issues after installing the January Windows updates that impacted VPN connectivity, Windows Server Domain Controllers, Virtual machines and ReFS-formatted removable media. The updates were made available earlier this week, about a week after the January Patch Tuesday updates caused more issues for system administrators. However, there […]

Read More