%term

Outpost24 webinar - Protecting Cezanne HR's cloud web application with continuous assessment

Dec 10, 2020 By Outpost 24 In Outpost 24

Cyberattacks like payroll scams and recruitment fraud are finding their way into organizations via HR which makes protecting your employee data just as important as customer data. Find out how Cezanne HR secure their SaaS application with continuous assessment to help their customers protect employee data. The Cezanne HR SaaS application is used by over 650 organizations across the globe to simplify human resource management. But when it comes to sensitive employee data, customers demand proof of security and need to know that their data is in safe hands. In this webinar John Hixon, R&D Director at Cezanne HR, will share in-depth insights into how he leverages manual pen testing and dynamic application security testing throughout the Software Development Lifecycle (SDLC) to uncover hidden risks in the application and protect their customer data. Join our host Simon Roe, Application Security Product Manager, and John as they discuss the importance of data protection in HR, and how this hybrid continuous assessment approach has helped them secure their business critical apps and maintain ISO certification standards at scale.

View Video

Outpost 24

Read more about Outpost24 webinar - Protecting Cezanne HR's cloud web application with continuous assessment

Zerologon: the most underestimated vulnerability of 2020?

Dec 9, 2020 By The Redscan Team In Redscan

With a CVSS score of 10, Zerologon is a privilege escalation vulnerability that can be used to spoof domain controller accounts and hijack domains.

Read Post

Redscan

Read more about Zerologon: the most underestimated vulnerability of 2020?

Vulnerability Management with ManageEngine Vulnerability Manager Plus

Dec 8, 2020 By ManageEngine In ManageEngine

Vulnerability management is the cyclical process of identifying, evaluating, treating, and reporting on threats and vulnerabilities across your network endpoints. In this video, we take an in-depth look at the exhaustive threat and vulnerability management features of ManageEngine Vulnerability Manager Plus.

View Video

ManageEngine

Read more about Vulnerability Management with ManageEngine Vulnerability Manager Plus

What is AMNESIA:33?

Dec 8, 2020 By Forescout In Forescout

What is AMNESIA:33? Forescout Research Labs has discovered a set of thirty-three new memory-corrupting vulnerabilities, affecting millions of enterprise IoT, OT and IT devices. Lurking in four open-source TCP/IP stacks used by over 150 vendors, AMNESIA:33 can present an immediate risk to organizations worldwide. Four of the vulnerabilities are critical, with possible exploits including Remote Code Execution, Denial of Service, and Data Exfiltration.

View Video

Forescout

Read more about What is AMNESIA:33?

How to identify and mitigate risk from AMNESIA:33 vulnerabilities

Dec 8, 2020 By Forescout In Forescout

Amnesia:33 is a set of thirty-three new memory-corrupting vulnerabilities, affecting millions of enterprise IoT, OT and IT devices. Quickly detect and mitigate against potential threats by learning how eyeSight can be a critical part of your security playbook.

View Video

Forescout

Read more about How to identify and mitigate risk from AMNESIA:33 vulnerabilities

The Year of the Pandemic and 2021 Cybersecurity Predictions

Dec 8, 2020 By Outpost 24 In Outpost 24

2020 will always be remembered as the year our lives changed dramatically due to the Coivd-19 pandemic. Here our panel of security experts look back at the lessons learned in the past 12 months and share their predictions for the key security challenges organizations will face in 2021.

Read Post

Outpost 24

Read more about The Year of the Pandemic and 2021 Cybersecurity Predictions

4 Things a Good Vulnerability Management Policy Should Include

Dec 7, 2020 By Matthew Jerzewski In Tripwire

Organizations face an ever-evolving threat landscape. With this in mind, it is imperative that organizations keep an up-to-date vulnerability management policy for remediating and controlling security vulnerabilities that may lead to a breach. A good vulnerability management policy should contain the following.

Read Post

Tripwire

Read more about 4 Things a Good Vulnerability Management Policy Should Include

Detectify checks for critical Oracle WebLogic Server RCEs (CVE-2020-14882, CVE-2020-14750)

Dec 3, 2020 By Detectify In Detectify

On October 29th, Detectify released a security test to detect a critical Oracle WebLogic Server RCE – CVE-2020-14882. Again in November, Oracle released an out-of-band security patch to fix a related RCE for Oracle Fusion Middleware. These vulnerabilities are currently being exploited by multiple botnets in the wild. Detectify scans your application for both of these vulnerabilities and will alert you if you are running a vulnerable version of Oracle WebLogic Server.

Read Post

Detectify

Read more about Detectify checks for critical Oracle WebLogic Server RCEs (CVE-2020-14882, CVE-2020-14750)

How to mitigate Ransomware attacks

Nov 26, 2020 By Outpost 24 In Outpost 24

Ransomware is a serious security threat affecting companies of all sizes and industries. While the symptoms (an attack) can be extremely damaging and disruptive, the solution can be simple - proactive prevention through a heavy dose of security hygiene. Here we cover the basics of Ransomware and top tips for securing your organization against it.

Read Post

Outpost 24

Read more about How to mitigate Ransomware attacks

Outpost24 webinar - Securing DevOps in Cloud Environments

Nov 19, 2020 By Outpost 24 In Outpost 24

The Covid-19 crisis has wreaked havoc on software development, with businesses being forced to adapt and ensure DevOps can carry on to the same production levels and speed as before. As IT and development infrastructure move to the public cloud at an unprecedented rate, the shared responsibility of cloud can create severe security challenges in terms of visibility, control and compliance.

View Video