Hot Topics

Windows vulnerability

What Is Vulnerability Management? Definition, Process Steps, Benefits and More

| | Cybersecurity, National Vulnerability Database, Vulnerability Management, Webroo2018 Cybersecurity Threat Report, Windows vulnerability, zero-day vulnerabilities
Vulnerability management is a cybersecurity strategy that enables organizations to identify, prioritize and mitigate security risks across their IT environmentRead More The post What Is Vulnerability Management? Definition, Process Steps, Benefits and ...
Blog - Kaseya
What Is Vulnerability Management?

What Is Vulnerability Management?

| | Cybersecurity, IT Risk Management, National Vulnerability Database, Vulnerability Management, Windows vulnerability, zero-day vulnerabilities
Vulnerability management is a process that enables organizations to identify, assess and prioritize security risks across their IT systems andRead More The post What Is Vulnerability Management? appeared first on Kaseya ...
Blog - Kaseya
What Is Vulnerability Management?

What Is Vulnerability Management?

| | Cybersecurity, IT Risk Management, National Vulnerability Database, Vulnerability Management, Windows vulnerability, zero-day vulnerabilities
Vulnerability management is a process that enables organizations to identify, assess and prioritize security risks across their IT systems andRead More The post What Is Vulnerability Management? appeared first on Kaseya ...
Blog - Kaseya
Microsoft Patch Tuesday busts ‘NSACrypt’ vulnerability in Windows OS

Microsoft Patch Tuesday busts ‘NSACrypt’ vulnerability in Windows OS

| | Industry News, Microsoft patch, NSACrypt, vulnerability, windows patch, Windows vulnerability
The Cybersecurity Advisory of the National Security Agency (NSA) has recently uncovered a critical Windows CryptoAPI Spoofing Vulnerability in Windows 10 operating systems. Dubbed NSACrypt, the security flaw found in the Crypt32.dll ...
HOTforSecurity

Toughen Up Your AD

| | Active Directory, AD Disaster Recovery, AD Forest Recovery, Windows vulnerability
Request for Comments (RFC) 1823 from August 1995 introduced the Lightweight Directory Access Protocol (LDAP) Application Programming Interface (API). One could argue that this important work served as the foundation for modern ...
Semperis
Why Most Organizations Still Can’t Defend against DCShadow – Part 2

Why Most Organizations Still Can’t Defend against DCShadow – Part 2

| | Active Directory, DCShadow, Mimikatz, Windows vulnerability
In part 1 of this blog post, I talked about the threat that DCShadow poses to organizations that use Microsoft Active Directory (AD). Here in part 2, I’ll talk about steps you ...
Semperis
DCShadow Blog - Adding Domain Admin SID

Why Most Organizations Still Can’t Defend against DCShadow

| | Active Directory, DCShadow, General, Mimicatz, Windows vulnerability
DCShadow is a readily available technique that allows an attacker to establish persistent privileged access in Active Directory (AD). Specifically, DCShadow allows an attacker with privileged access to create and edit arbitrary ...
Semperis

NSA sounds the alarm on BlueKeep: Windows vulnerability opens the door for the next WannaCry

| | Active Directory Recovery, bluekeep, Disaster Recovery, nsa, WannaCry, Windows vulnerability
It’s been just over two years since WannaCry, the ransomware that exploited the EternalBlue vulnerability to infect hundreds of thousands of computers around the world and inflict an estimated $8B in damages ...
Semperis
hackers

Wi-Fi Chip Firmware Flaws Enable Over-the-Air Hacking

| | firmware vulnerability, Marvell Avastar, micropatch, over-the-air attack, SandboxEscaper, Wi-Fi chip, Windows vulnerability, wireless exploit, Zero-day Exploit
Editor’s Note: This post was updated Jan. 29 to include a statement from Marvell Wi-Fi chips used in several gaming consoles, Chromebooks, streaming boxes, routers and other types of devices have several ...
Security Boulevard
Windows VCF Zero-Day Exploit Allows Remote Code Execution

Windows VCF Zero-Day Exploit Allows Remote Code Execution

| | interbank network, Lazarus Group, Malware, North Korea, PowerRatankba, Redbanc, Remote Code Execution, social engineering, vCard, VCF, Windows vulnerability, Zero-day Exploit
A new unpatched vulnerability in Windows has been disclosed along with proof-of-concept exploit code. It could allow hackers to more easily install malware on computers, but it requires user interaction. The vulnerability ...
Security Boulevard
Load more