Information Management Today

Partner Spotlight: Advisory Solutions

Jamf

JUNE 28, 2023

Advisory Solutions, a managed service provider, uses Jamf, Google Workspace, and Apple to help their clients reimagine how work gets done. Here’s how Jamf helped Advisory to ensure their clients are productive, secure and accessible while transforming workplaces into truly collaborative spaces.

Access

Access Security

Patching Conundrum: 5-Year Old Flaw Again Tops Most-Hit List

Data Breach Today

AUGUST 4, 2023

and its Five Eyes partners in a joint security advisory highlighting the 12 most exploited flaws that require immediate patching. Ensure You've Fixed These 12 Most Exploited Flaws, Cybersecurity Officials Urge A five-year-old flaw in Fortinet SSL VPNs remains one of the world's most widely exploited vulnerabilities.

Cybersecurity

Cybersecurity Security IT

The Role of Predictive KYC in Fighting Money Laundering

Data Breach Today

APRIL 9, 2021

Larry Gordon and Kathleen Gowin of the consultancy Endurance Advisory Partners describe how predictive KYC can help mitigate risks. Two Experts Offer Fraud-Fighting Insights How can automation help to reduce money laundering fraud?

Risk

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Google fixed an Android critical remote code execution flaw

Security Affairs

FEBRUARY 6, 2024

” reads the advisory published by Google. The company released two security patch levels to allow partners to resolve a subset of vulnerabilities. However, the company recommends Android partners to address all the issues included in the bulletin. This bulletin also includes links to patches outside of AOSP.”

Security

Security Information Security IT

ConnectWise fixed critical flaws in ScreenConnect remote access tool

Security Affairs

FEBRUARY 20, 2024

and prior, below is the remediation provided in the advisory : Cloud There are no actions needed by the partner, ScreenConnect servers hosted in “screenconnect.com” cloud or “hostedrmm.com” have been updated to remediate the issue. On-premise Partners that are self-hosted or on-premise need to update their servers to version 23.9.8

Access

Access Cloud Authentication Risk

Critical flaw found in deprecated VMware EAP. Uninstall it immediately

Security Affairs

FEBRUARY 21, 2024

” reads the advisory published by the virtualization giant. ” According to the advisory, there are no workarounds for this vulnerability. . ” continues the advisory. The vulnerabilities were both reported by Ceri Coburn from Pen Test Partners.

Authentication

Authentication IT Ransomware Access

Advisory Solutions, Jamf partner adding value to the Apple ecosystem

Jamf

MARCH 22, 2021

With more than 40,000 customers managing over 20 million Apple devices, there are more customers, partners and third-party vendors creating solutions around the Jamf ecosystem.

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

. “You as the attacker have full control over the link’s parameters, and that link gets injected into an executable file that is downloaded by the client through an unauthenticated Web interface,” said Pyle, a partner and exploit developer at the security firm Cybir. build and the then-canary 22.9

Phishing

Phishing Passwords Access Cloud

AIIM Names Tori Miller Liu Chief Executive Officer

AIIM

OCTOBER 24, 2022

In her new role as CEO, Tori will be responsible for leading the Association’s dedicated team of professionals while growing the value of the organization to its members, partners, and other stakeholders. As such, we’re very excited to partner with Tori to help drive this next chapter for AIIM.”. “As and abroad.

Artificial Intelligence

Artificial Intelligence Analytics Marketing IT

CISA orders federal agencies to fix ConnectWise ScreenConnect bug in a week

Security Affairs

FEBRUARY 22, 2024

and prior, below is the remediation provided in the advisory : Cloud There are no actions needed by the partner, ScreenConnect servers hosted in “screenconnect.com” cloud or “hostedrmm.com” have been updated to remediate the issue. On-premise Partners that are self-hosted or on-premise need to update their servers to version 23.9.8

Authentication

Authentication Cybersecurity Cloud Ransomware

GUEST ESSAY: Why internal IT teams are ill-equipped to adequately address cyber risks

The Last Watchdog

FEBRUARY 11, 2024

He also has served on the United States Board of Directors of the International Association of Microsoft Certified Partners and the International Board of the same organization for many years, as well as served on the Microsoft Infrastructure Partner Advisory Council.

Risk

Risk IT Financial Services Cybersecurity

North Korea-linked APT groups target South Korean defense contractors

Security Affairs

APRIL 23, 2024

Hacking into vulnerable defense industry partners and stealing the defense industry company’s server account information. ” reads the Police’s advisory shared by BleepingComputer. concludes the advisory. North Korea’s hacking attempts targeting defense technology will continue.”

Authentication

Authentication Passwords Cloud Cybersecurity

Five Eyes alliance warns of attacks exploiting known Ivanti Gateway flaws

Security Affairs

MARCH 1, 2024

The Five Eyes intelligence alliance issued a joint cybersecurity advisory warning of threat actors exploiting known vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure gateways. The CISA’s advisory also warns that the Ivanti Integrity Checker Tool is not sufficient to detect a compromise. ” reads the advisory.

Authentication

Authentication Government Security Access

Kaseya warns customers of ongoing malspam campaign posing as security updates

Security Affairs

JULY 9, 2021

. “Spammers may also be making phone calls claiming to be a Kaseya Partner reaching out to help. Kaseya IS NOT having any partners reach out – DO NOT respond to any phone calls claiming to be a Kaseya Partner.” As a precaution, be careful with any links or attachments in any emails.”

Security

Security Ransomware Phishing Communications

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

Russian cyberspies are compromising Ubiquiti EdgeRouters to evade detection, warns a joint advisory published by authorities. In recent months, allegations of Unit 26165 activity of this type has been the subject of a private sector cybersecurity advisory and a Ukrainian government warning.” ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

Citrix and NSA urge admins to fix actively exploited zero-day in Citrix ADC and Gateway

Security Affairs

DECEMBER 13, 2022

” reads the advisory published by the company. The advisory points out that there are no workarounds for this vulnerability. The National Security Agency (NSA) has also released a Cybersecurity Advisory (CSA) with detection and mitigation guidance for tools leveraged by a malicious actor against ADC and Gateway. .

Authentication

Authentication Cybersecurity Security Access

Microsoft partnered with security firms to sinkhole the C2 used in SolarWinds hack

Security Affairs

DECEMBER 16, 2020

Microsoft and its partners have seized the primary domain used in the SolarWinds attack to identify the victims through sinkholing. Microsoft partnered with other cybersecurity firms to seize the primary domain used in the SolarWinds attack ( avsvmcloud[.]com here is list of DGA subdomain c2: avsvmcloud[.]com through 2020.2.1

Security

Security Communications Cybersecurity IT

News alert: Diversified, GroCyber form partnership to deliver media-centric cybersecurity solutions

The Last Watchdog

FEBRUARY 8, 2024

About Diversified : At Diversified, we leverage the best in technology and ongoing advisory services to transform businesses. Traditional approaches like air gapping no longer work in our connected, IP-based world, and patching alone is not enough.”

Cybersecurity

Cybersecurity Marketing Risk Access

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

According to a joint advisory published by cybersecurity agencies, the LockBit ransomware group has successfully extorted roughly $91 million in about 1,700 attacks against U.S. ” reads the joint advisory. The advisory includes recommended mitigation measures to prevent LockBit ransomware attacks. organizations since 2020.

Ransomware

Ransomware Cybersecurity Agriculture Education

GoAnywhere MFT zero-day flaw actively exploited

Security Affairs

FEBRUARY 4, 2023

The popular investigator Brian Krebs first revealed details about the zero-day on Mastodon and pointed out that Fortra has yet to share a public advisory. ” reads the advisory. ” reads the advisory. “GoAnywhere MFT, a popular file transfer application, is warning about a zero-day remote code injection exploit.

Access

Access Cloud Security IT

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

US CISA, the NSA, the FBI, along with partner Five Eyes agencies, published a joint advisory to warn that China-linked APT Volt Typhoon infiltrated a critical infrastructure network in the US and remained undetected for at least five years. “the U.S.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Security Firm Rubrik breached by Clop gang through GoAnywhere Zero-Day exploitation

Security Affairs

MARCH 15, 2023

In early February, the popular investigator Brian Krebs first revealed details about the zero-day on Mastodon and pointed out that Fortra has yet to share a public advisory. According to the private advisory published by Fortra, the zero-day is a remote code injection issue that impacts GoAnywhere MFT.

Data breaches

Data breaches Security Ransomware Sales

Over 17000 Fortinet devices exposed online are very likely vulnerable to CVE-2022-40684

Security Affairs

OCTOBER 18, 2022

Based on this development, Fortinet again recommends customers and partners take urgent and immediate action as described in the public Advisory. ” reads the advisory published by the company. The vulnerability impacts FortiOS versions from 7.0.0 and from 7.2.0

Authentication

Authentication Cybersecurity Security Risk

Experts warn of critical RCE in ConnectWise Server Backup Solution

Security Affairs

NOVEMBER 1, 2022

According to the advisory published by ConnectWise , the vulnerability is an Improper Neutralization of Special Elements in Output Used by a Downstream Component. “Huntress is working closely with our DIVD partners to continue the larger hunt and help secure other ZK applications that are at risk.” Pierluigi Paganini.

Authentication

Authentication Ransomware Access Risk

Attackers Continue to Leverage Signed Microsoft Drivers

eSecurity Planet

APRIL 21, 2023

signature:”Microsoft Windows Hardware Compatibility Publisher” p:5+ tag:signed name: sys “ In response to an email inquiry from eSecurity Planet , a Microsoft spokesperson acknowledged the ongoing issue, stating, “We have suspended the partners’ seller accounts. Malicious driver signed by Microsoft. .

Cloud

Cloud Cybersecurity Security Access

CISA: “We don’t stab the wounded.”

Data Matters

MAY 5, 2022

Instead, she described the Agency as a coequal partner with the private sector in securing U.S. CISA desires to partner with other agencies as well, operating as the “front door” to federal agency support and cyber security resources, she stated. infrastructure.

FOIA

FOIA Cybersecurity Privacy Communications

Maze ransomware gang hacked M&A firm Threadstone Advisors LLP

Security Affairs

JUNE 14, 2020

Maze ransomware operators hit Threadstone Advisors LLP, a US corporate advisory firm specialising in mergers ‘n’ acquisitions. Threadstone Advisors LLP, a corporate advisory firm specialising in mergers ‘n’ acquisitions, is the last victim of the Maze ransomware operators.

Ransomware

Ransomware Military Encryption IT

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Krebs on Security

OCTOBER 1, 2020

government, they still can be fined either way, said Ginger Faulk , a partner in the Washington, D.C. Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. Image: Shutterstock. jurisdiction) and making it a crime to transact with them.

Ransomware

Ransomware Insurance Risk Government

North Korea ATM Hack

Schneier on Security

SEPTEMBER 1, 2020

government partners, CISA, Treasury, FBI, and USCYBERCOM identified malware and indicators of compromise (IOCs) used by the North Korean government in an automated teller machine (ATM) cash-out scheme -- referred to by the U.S. Cyber Command (USCYBERCOM). Working with U.S.

Analytics

Analytics Cybersecurity Government Security

SINGAPORE: Proposed Guidelines on Use of Personal Data in AI Systems

DLA Piper Privacy Matters

AUGUST 1, 2023

The Draft Advisory Guidelines on use of Personal Data in AI Recommendation and Decision Systems may be accessed here. Please contact Carolyn Bigg (Partner), Lauren Hurcombe (Partner) or Yue Lin Lee (Senior Associate) if you have any questions or to see what this means for your organisation.

Personal data

Personal data Artificial Intelligence B2B Government

Accelerating Data Security and Manufacturing Production for Medical Sensors by 20x with nTropy.io and Thales

Thales Cloud Protection & Licensing

AUGUST 21, 2023

is a Thales Technology Partner with established PKI and IoT expertise providing both advisory and implementation services. Encryption Data Security Melody Wood | Partner Solutions Marketing Manager, Thales More About This Author > Schema and Thales madhav Tue, 08/22/2023 - 05:33 nTropy.io Both Thales and nTropy.io

Manufacturing

Manufacturing IoT Encryption Security

CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

JULY 26, 2023

” reads the advisory published by the software firm. We continue to work with our customers and partners to investigate this situation.” “We have received information from a credible source indicating exploitation has occurred. ” This vulnerability impacts all supported versions (Version 11.4 releases 11.10, 11.9

IT

IT Authentication Risk Access

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

” In February, US CISA, the NSA, the FBI, along with partner Five Eyes agencies, published a joint advisory to warn that China-linked APT Volt Typhoon infiltrated a critical infrastructure network in the US and remained undetected for at least five years.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Catches of the Month: Phishing Scams for February 2023

IT Governance

FEBRUARY 7, 2023

In an advisory statement , the NCSC (National Cyber Security Centre) shared details about the campaign, which appears to have been sponsored by the fraudsters’ national governments. The researchers are most concerned about spear phishing, which is a sophisticated form of fraud.

Phishing

Phishing Government Education Personal data

US Cyber Command details implants used in attacks on parliaments and embassies

Security Affairs

OCTOBER 29, 2020

CISA also published two joint advisories with the FBI and CNMF that provides info regarding the ComRAT and Zebrocy malware that were used by Russia-linked APT groups, including the APT28 and Turla. ” reads the advisory published CISA. ” reads the CISA’s advisory. link] #trickortreat [link] — U.S.

Cybersecurity

Cybersecurity Government Security IT

Cisco fixes SQL Injection flaw in Unified CM

Security Affairs

JANUARY 19, 2023

Cisco Unified (CM) supports industry standards, a wide range of gateways, and a broad ecosystem of third-party integrations and solutions plus partners. ” reads the advisory published by the IT giant. Unified Communications Manager solutions provide reliable, secure, scalable, and manageable call control and session management.

Communications

Communications Authentication Security IT

Twitter inadvertently collected and shared iOS location data

Security Affairs

MAY 15, 2019

A new story of a violation of the user’s privacy made the lines, Twitter revealed that due to a bug is collected and shared iOS location data with a third-party advertising company, Fortunately, only one partner of the micro-blogging firm was involved and the data collection and sharing occurred in certain circumstances.

Privacy

Privacy Data collection Access Security

CISA and FBI warn of ongoing TrickBot attacks

Security Affairs

MARCH 19, 2021

On Wednesday, the two US agencies published an advisory to warn organizations of a new wave of attacks conducted by cybercrime actors that are leveraging a traffic infringement phishing scheme to trick victims into installing the TrickBot malware. ” reads the advisory. Follow me on Twitter: @securityaffairs and Facebook.

Phishing

Phishing Ransomware Cybersecurity Communications

CISA, FBI, NSA warn of the increased globalized threat of ransomware

Security Affairs

FEBRUARY 12, 2022

CISA, FBI and NSA published a joint advisory warning of ransomware attacks targeting critical infrastructure organizations. and Australia have published a joint advisory warning of an increased globalised threat of ransomware worldwide in 2021. ” reads the joint advisory. ” reads the joint advisory.

Ransomware

Ransomware Agriculture Encryption Phishing

Shipping giant MSC discloses a malware-based attack

Security Affairs

APRIL 16, 2020

.” reads the advisory published by MSC. We have shared as per industry standards the malware with our technology partners so that mitigations could be made available not only to us.” operated without disruptions and the incident posed no threat to parties engaging in business with the company,” continues the advisory.

Ransomware

Ransomware IT Security Information Security

Lenovo Solution Centre flaw allows hacking Windows laptop in 10 minutes

Security Affairs

AUGUST 23, 2019

Researchers at Pen Test Partners (PTP) discovered a privilege-escalation vulnerability in Lenovo Solution Centre (LSC) tracked as CVE-2019-6177. Security experts at Pen Test Partners (PTP) discovered a privilege-escalation vulnerability in Lenovo Solution Centre (LSC) that exists since 2011.

Authentication

Authentication Access Security IT

SINGAPORE: Increased financial penalties under the PDPA now in effect

DLA Piper Privacy Matters

OCTOBER 5, 2022

You may access the revised financial penalties here , and the Advisory Guidelines on Enforcement of the Data Protection Provisions here. Please contact Carolyn Bigg (Partner) or Yue Lin Lee (Senior Associate) if you have any questions or to see what this means for your organisation.

Personal data

Personal data Compliance Risk Access

Russia-linked Sandworm APT targets energy facilities in Ukraine with wipers

Security Affairs

APRIL 12, 2022

” reads the advisory published by the Ukrainian CERT. The CERT-UA collected indicators of compromise for these attacks and shared them, along with Yara rules, with a limited number of international partners and Ukrainian energy companies. IMPACKET is used for remote execution of commands.”

Cybersecurity

Cybersecurity Government Security IT

Breach at Dickey’s Barbecue Pit compromises 3 million Cards

Security Affairs

OCTOBER 16, 2020

The huge trove of payment card data was spotted by researchers from the cyber-security firm Gemini Advisory. “Gemini Advisory determined that the compromised point of purchase (CPP) was Dickey’s Barbecue Pit, a US-based restaurant franchise.” ” reads the post published by Gemini Advisory.

Sales

Sales Authentication Security IT

Partner Spotlight: Advisory Solutions

Patching Conundrum: 5-Year Old Flaw Again Tops Most-Hit List

Webinars

Trending Sources

The Role of Predictive KYC in Fighting Money Laundering

Webinars

Google fixed an Android critical remote code execution flaw

ConnectWise fixed critical flaws in ScreenConnect remote access tool

Critical flaw found in deprecated VMware EAP. Uninstall it immediately

Advisory Solutions, Jamf partner adding value to the Apple ecosystem

ConnectWise Quietly Patches Flaw That Helps Phishers

AIIM Names Tori Miller Liu Chief Executive Officer

CISA orders federal agencies to fix ConnectWise ScreenConnect bug in a week

GUEST ESSAY: Why internal IT teams are ill-equipped to adequately address cyber risks

North Korea-linked APT groups target South Korean defense contractors

Five Eyes alliance warns of attacks exploiting known Ivanti Gateway flaws

Kaseya warns customers of ongoing malspam campaign posing as security updates

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Citrix and NSA urge admins to fix actively exploited zero-day in Citrix ADC and Gateway

Microsoft partnered with security firms to sinkhole the C2 used in SolarWinds hack

News alert: Diversified, GroCyber form partnership to deliver media-centric cybersecurity solutions

Cybersecurity agencies published a joint LockBit ransomware advisory

GoAnywhere MFT zero-day flaw actively exploited

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Firm Rubrik breached by Clop gang through GoAnywhere Zero-Day exploitation

Over 17000 Fortinet devices exposed online are very likely vulnerable to CVE-2022-40684

Experts warn of critical RCE in ConnectWise Server Backup Solution

Attackers Continue to Leverage Signed Microsoft Drivers

CISA: “We don’t stab the wounded.”

Maze ransomware gang hacked M&A firm Threadstone Advisors LLP

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

North Korea ATM Hack

SINGAPORE: Proposed Guidelines on Use of Personal Data in AI Systems

Accelerating Data Security and Manufacturing Production for Medical Sensors by 20x with nTropy.io and Thales

CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog

FBI chief says China is preparing to attack US critical infrastructure

Catches of the Month: Phishing Scams for February 2023

US Cyber Command details implants used in attacks on parliaments and embassies

Cisco fixes SQL Injection flaw in Unified CM

Twitter inadvertently collected and shared iOS location data

CISA and FBI warn of ongoing TrickBot attacks

CISA, FBI, NSA warn of the increased globalized threat of ransomware

Shipping giant MSC discloses a malware-based attack

Lenovo Solution Centre flaw allows hacking Windows laptop in 10 minutes

SINGAPORE: Increased financial penalties under the PDPA now in effect

Russia-linked Sandworm APT targets energy facilities in Ukraine with wipers

Breach at Dickey’s Barbecue Pit compromises 3 million Cards

Stay Connected