Take the Ransom Out of Ransomware
NetStandard’s Security Minute Series So the Exchange attacks just keep getting worse. The estimated number of affected Exchange servers is up into the tens of thousands (I’ve seen some estimates in the hundreds of thousands!), and there are at least 10 other attack groups trying to piggyback onto the Exchange webshells that the initial attack […]
For Our Customers: Recent Exchange Vulnerabilities
Last week, it was widely reported that four previously unknown or “zero-day” vulnerabilities in Microsoft’s Exchange Server software were being actively exploited by groups of cyber attackers. These defects could allow attackers to steal data or deploy malicious software to unpatched Exchange Servers.NetStandard began applying patches to address these vulnerabilities immediately after Microsoft made them […]
Maximize Your Security Offerings With Microsoft
NetStandard’s Security Minute Series The biggest news of the week: Microsoft announced emergency out-of-band patches for Exchange Server, to fix 4 actively exploited 0-day vulnerabilities. There are many, many reports of hundreds of servers being compromised – basically every security vendor is finding this in their clients. If you run on-premise Exchange Server, or know […]
Cybersecurity Trends to Keep an Eye on
NetStandard’s Security Minute Series There’s a new critical vulnerability in vCenter, allowing an attacker to use port 443 to gain root access to vCenter. Even if you don’t have port 443 exposed to the internet, an attacker that breaches an end-user PC (from a phishing attack) could use this for lateral movement, and gain access […]
Cyberattacks Are Evolving, Are You?
NetStandard’s Security Minute Series This is scary: The IT monitoring software Centreon was attacked, and allowed the Sandworm group access to Centreon for 3 years. IT monitoring software is generally very trusted software, with visibility to everything inside a network, so this attack is pretty serious: French IT monitoring firm Centreon says no customers affected by […]
Vulnerable to Security Risks? Monitor and Patch Your Devices Now!
NetStandard’s Security Minute Series This week was Patch Tuesday! Microsoft released patches for 58 different bugs (the smallest number in a year!), but called out 4 as being especially noteworthy – an actively-exploited zero-day, two remote code executions, and a denial of service bug. As always, make sure you’re being patched!Microsoft is warning about an increase in OAuth-based […]
Trickbot Targeting Legal and Insurance Providers
Consider keeping your business safe with email filtering Trickbot Targeting Legal and Insurance Providers One of the most active sources of malicious emails over the past couple of years has been Trickbot. Trickbot has been a major target from Microsoft, and went dormant late last year due to takedown efforts from Microsoft and others. It now looks like Trickbot […]
Security Begins With Operational Excellence
NetStandard’s Security Minute Series An interesting thought I read in a book the other day: “You win more by not being stupid, than you do from being smart.” This is very applicable to cyber security. Cyber criminals are most often looking for the easy targets, the ones doing even basic stuff wrong. For the vast […]
Identify & Manage Technology Risks In Your Organization
Is your overall business risk mitigation strategy and crisis management policy to ensure continuity and capability evaluated, in case the event of something (else!) unexpected occurs? With the recent SolarWinds attack, the impacts of cybersecurity and breaches are back in the news. As a business owner or leader what should you take away from the […]
What Is Your 2021 Technology Plan?
If 2020 taught us one thing, prepare you and your business for the unexpected. Now that 2020 is in the rearview mirror, we turn our attention to 2021 and a goal of transitioning again to a new normal in our businesses. While many things have changed, several are here to stay. For example,● The growth of cyber threats and […]