Patch/Configuration Management

The Pentagon with the Washington Monument and National Mall in the background. A proposed Cybersecurity Threat Information Collaboration Environment is designed to foster better coordination between DOD, DHS and the intelligence community around cyber threat information sharing. (U.S. Air Force Photo by Senior Airman Perry Aston)

Pulse Secure releases patch for zero-day used to target defense industrial base

Steve ZurierMay 3, 2021

Pulse Security said over the past couple of weeks it has worked closely with the Cybersecurity and Infrastructure Security Agency (CISA) as well as FireEye and Stroz Friedberg to investigate and respond quickly to the malicious activity that was identified on its customers’ systems.

The authors of a study comparing different commercial EDR products told SC Media they are re-testing after learning that they mistakenly tested five vendors’ endpoint protection platforms instead of their EDR systems. (Photo by Drew Angerer/Getty Images)

Patch/Configuration Management

22% of all users still run Microsoft end-of-life Windows 7

Steve ZurierApril 26, 2021

Microsoft stopped supporting Windows 7 in January 2020, meaning users don't get software updates and are more susceptible to attacks.

Apple CEO Tim Cook announces the new Mac Pro as he delivers the keynote address during the 2019 Apple Worldwide Developer Conference (WWDC) at the San Jose Convention Center on June 03, 2019 in San Jose, California. (Photo by Justin Sullivan/Getty Images)

Malware

Apple patches ‘worst macOS bug in recent memory’ after it was used in the wild

Joe UchillApril 26, 2021

The bug, patched in macOS 11.3, allowed hackers to circumvent much of Apple's built-in malware detection for programs downloaded from the internet.

Patch/Configuration Management

Google won’t reveal technical details on patches for 30 days if vendors hit deadlines

Steve ZurierApril 16, 2021

Researchers applauded the move, which Google's Project Zero hopes will drive user patch adoption.

Microsoft prepares for a news conference t in Los Angeles, California. (Photo by Kevork Djansezian/Getty Images)

Threat Management

Attacker hacked one Microsoft Exchange server to gain access to others

Steve ZurierApril 13, 2021

The tactic is sophisticated, with firewalls unlikely to block traffic between Exchange servers and potentially giving such traffic a pass in terms of content inspection.

A signage of Microsoft is seen on March 13, 2020 in New York City. New research indicates that the scope of a breach of the Microsoft Exchange Server may be far greater than originally thought. (Jeenah Moon/Getty Images)

Application security

Microsoft closes new critical Exchange vulnerability, urges patch ‘as soon as possible’

Joe UchillApril 13, 2021

The alert about new exchange bugs come soon after on-premises Exchange customers were told to patch against a campaign actively exploiting a zero-day vulnerability.

A general view of the headquarters of SAP AG in Walldorf, Germany. (Photo by Thomas Lohnes/Getty Images)

Patch/Configuration Management

Hackers actively targeting unsecured SAP installs, DHS, SAP and Onapsis warn

Joe UchillApril 6, 2021

With a base of 400,000 clients, SAP chief information security officer said this of the alert: "We want them to be aware of what could be the art of the possible."

Patch/Configuration Management

Page 48. Back to first page.

Related Videos

A couple simple steps companies can take to protect their systems from ransomware

Pulse Secure releases patch for zero-day used to target defense industrial base

22% of all users still run Microsoft end-of-life Windows 7

Apple patches ‘worst macOS bug in recent memory’ after it was used in the wild

Google won’t reveal technical details on patches for 30 days if vendors hit deadlines

Attacker hacked one Microsoft Exchange server to gain access to others

Microsoft closes new critical Exchange vulnerability, urges patch ‘as soon as possible’

Hackers actively targeting unsecured SAP installs, DHS, SAP and Onapsis warn