Microsoft is urging Active Directory administrators to apply November patches for a pair of tricky domain service privilege escalation vulnerabilities after a proof-of-concept tool leveraging them was publicly disclosed. According to the company, an attacker can combine the two bugs (CVE-2021-42287 and CVE-2021-42278) to “create a straightforward path to a Domain Admin user in an […]
Cybersecurity services have been biased toward the big fish. Large enterprises have all the resources, budget and willingness to work with multiple, complex products that need integration and orchestration. The one-size-fits-all model typically includes everything the industry offers—a lot of which is probably not required by small- and medium-sized organizations. On top of that, SMBs […]
LogMeIn, Inc., a Boston-based cloud-based solutions provider of LastPass, GoToConnect, GoToMeeting, and Rescue, is making its password management solution LastPass a standalone company. According to the company, LastPass is used by more than 30 million users and 85,000 businesses worldwide and is set for strong and sustained growth as consumers and businesses continue prioritizing password […]
Multiple governments have released a long list of IT vendors and their products that are impacted by the Log4j vulnerability, including the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Dutch National Cyber Security Centrum (NCSC) The two agencies are maintaining running lists of vendors impacted by the vulnerability on their respective GitHub repositories, […]
As system administrators, cybersecurity experts and other IT professionals work around the clock to address the Log4j vulnerability, Microsoft, Google, Apple, Adobe released a slew of security patches this week that address significant software flaws. Microsoft and Adobe followed the typical patch Tuesday cycle, releasing a total of 78 patches across products from the two […]
The Log4J vulnerability discovered late last week continues to make lives extremely busy for IT and cybersecurity professionals and software vendors rush to investigate if their products are vulnerable and push patches out to customers while those customers investigate the hundreds of apps their organization uses to determine how exposed they are. The widely used […]
Security researchers have discovered a new easy-to-exploit zero-day vulnerability in the ubiquitous Java logging library Apache Log4j 2 that could give attackers the ability to execute unauthenticated remote code execution. The U.S. Cybersecurity and Infrastructure Security Agency, along with dozens of cybersecurity providers, have issued alerts and advisories of the vulnerability, CVE-2021-44228, which they warn […]
According to a new Microsoft study in conjunction with the Ponemon Institute, the Internet of Things and new innovations in operational technology is becoming critical for business, but simultaneously increasing an organization’s cyber risk. Researchers surveyed more than 600 IT, cybersecurity and OT security experts across the U.S., and found that many organizations are making […]
The effects of the pandemic, leading to what is being called The Great Resignation, is having a severe impact on the global workforce as companies report difficulties finding and retaining talent. However, the same issue is also having an impact on the cybersecurity posture of these organizations, according to a new report from human-centric security […]
It has been nearly a year since a coalition of IT and cybersecurity providers discovered a highly sophisticated Russian-aligned hacking campaign that most notably leveraged IT management software from SolarWinds to conduct espionage on U.S. agencies, tech companies and other high-value organizations. The IT industry has learned a lot since then, including the increasing skill […]
FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets
View all Guides
Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.
Enter Today!