Security Advisory Regarding Splunk Enterprise Deployment Servers

| | Security Advisory
CVE-2022-32158 Details Hurricane Labs is aware of the recent vulnerability involving Splunk Enterprise deployment servers. This vulnerability was announced by Splunk on 2022-06-14.  Successful exploitation of this vulnerability could result in a ...

Security Advisory Regarding Follina

| | Security Advisory
CVE-2022-30190 (Follina) Details Hurricane Labs is aware of the recent CVE-2022-30190 / Follina Zero-Day. Follina is a remote code execution vulnerability that exists when MSDT is called using the URL protocol from ...

Security Advisory Regarding Microsoft Active Directory Vulnerabilities

| | Security Advisory
Summary On November 9, 2021, Microsoft released two Active Directory vulnerabilities (CVE-2021-42287 and CVE-2021-42278) with patches (KB5008102 and KB5008380). These vulnerabilities continue to fly under the radar due to Log4Shell; however, on ...

Security Advisory Regarding Log4Shell

| | Security Advisory
Summary On December 9, there was a Remote Code Execution (RCE) discovered in the Java logging library log4j given CVE-2021-44228. The RCE is triggered by Java-based applications logging the exploit string and ...

Security Advisory Regarding Remote Code Execution in MSHTML

| | Security Advisory
CVE-2021-40444 Details Summary of Vulnerability On September 7th, a security advisory from Microsoft regarding a remote code execution in MSHTML was published by MSRC. According to the advisory, the vulnerability relies on ...

Security Advisory Regarding Atlassian Confluence

| | Security Advisory
On August 25th, Atlassian published a Security Advisory for Confluence–server and datacenter releases–described as a "web-based corporate wiki". To put it simply, Confluence typically serves as a centralized documentation repository.  On the ...

Security Advisory Regarding ProxyToken

| | Security Advisory
As we rapidly approach the end of August, another advisory regarding Exchange and OWA rears its ugly head. Microsoft Exchange has had a really rough go of it this past year–ProxyLogon (used ...

Security Advisory Regarding ProxyShell

| | Security Advisory
Over the past several months, Microsoft has been having a bit of a bad run with their popular email server platform: Exchange. Earlier this year, a nation-state group referred to as HAFNIUM ...
Securing enterprise storage and backup systems – How to establish an effective business case and get management support?

Securing enterprise storage and backup systems – How to establish an effective business case and get management support?

The last part in a series of 4: The what, why, and how of securing storage and backup In part 1 of this series, we discussed The post Securing enterprise storage and ...

Security Advisory Regarding HiveNightmare

| | Security Advisory
HiveNightmare Summary On July 19th, Twitter user @jonasLyk released a vulnerability they thought was just on the insider edition Windows 11, but ended up being a part of current Windows 10 releases ...