Contrary to the promises of the various security appliance providers, there is no single solution in information security to defend against the various attack vectors available to threat actors (TAs). However, we recommend that businesses adopt Defense in Depth, a strategy of applying multiple layers of defensive mechanisms to better protect an organizations’ valuable
On Thursday, September 29th, Microsoft publicly disclosed two unpatched vulnerabilities impacting on-premises Microsoft Exchange servers that were capable of granting remote access to threat actors. These zero-day vulnerabilities have been identified as CVE-2022-41040, which is a Server-Side Request Forgery (SSRF) vulnerability, and CVE-2022-41082, which allows remote code execution (RCE) when PowerShell is accessible to the attacker.
Improvements to cybersecurity practices top the to-do lists of many businesses these days, thanks to the ever-changing information technology (IT) security threat landscape. One of the most crucial investments an organization can make is replacing their traditional, or legacy, antivirus solutions with next-generation antivirus (NGAV). Combined with the proper
Microsoft recently announced that it will disable some of its legacy email authentication protocols later this year. This change will affect users with older phones or those with email setups using one of these protocols. Legacy, or basic, authentication allows users to connect to a mailbox using only a username and a password and
In the wake of the Russian military invasion of Ukraine, fear of cyberwarfare has risen among the American public, many of whom still have the Colonial Pipeline ransomware attack fresh on their minds. In response, the U.S. government is seeking not only to address these events, but also to raise awareness and security compliance for
As organizations of all sizes increasingly rely on technology to conduct business, the likelihood of threats and security issues arising also continues to grow. One of the most crucial things small and midsized businesses can do now to safeguard their networks is prevent unauthorized access. Once breached, potential problems become significantly more difficult
Okta, a massively popular company which provides identity and access management (IAM) services to clients worldwide, was recently targeted by threat actor Lapsus$. The compromise of Okta and other providers of IAM services is highly sensitive and potentially far-reaching as Okta’s IAM services alone allow approximately 15,000 companies to securely log into multiple
Last fall, Microsoft announced price increases set to go into effect beginning March 1, 2022. The company also outlined additional important changes that will impact users’ subscription agreements. Monthly pricing per license will increase on the following 365 products: Microsoft 365 Business Basic from $5 to $6. Microsoft 365 Premium from $20 to
The ubiquity of concerted campaigns through phishing and various other methods of malware deployment have led to individuals, small and midsized businesses (SMBs), and the largest companies worldwide to deal with the brutal impact of a data breach on daily operations. This pervasiveness is understood to occur due to the low-risk, high-reward ecosystem in
Cyber incidents often rely on human engagement to enable malware. Despite deploying security controls on the user’s account, target environment, and device, additional emerging threats may occur which require both users and enterprise administrators to put safeguards in place to mitigate the impact. The purpose of this blog is to analyze and mitigate the
