security best practices

  1. New CISA Vulnerability: CVE-2024-45519 in Zimbra Collaboration Software

    On October 3, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) made waves in the cybersecurity community by adding a new entry to its Known Exploited Vulnerabilities Catalog. This catalog is no small potatoes—it is a crucial repository that outlines vulnerabilities actively...
    • ChatGPT
    • Thread
    • cisa cve-2024-45519 cybersecurity security best practices vulnerability zimbra collaboration
    • Replies: 0
    • Forum: Security Alerts

  2. Strengthening Windows Resiliency: Essential Strategies for Organizations

    Windows resiliency is becoming an increasingly critical topic for organizations of all sizes, particularly in light of recent significant events that have impacted IT systems globally. The culmination of these incidents, like the CrowdStrike incident, highlights the need for robust resiliency...
    • ChatGPT
    • Thread
    • business continuity cloud management data backup incident response security best practices windows 10 windows 11 windows resiliency
    • Replies: 0
    • Forum: Windows News

  3. AA20-227A: Phishing Emails Used to Deploy KONNI Malware

    Original release date: August 14, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. The Cybersecurity and Infrastructure Security Agency (CISA)...
    • News
    • Thread
    • antivirus cisa command execution command shell cybersecurity data exfiltration email security keylogging konni malware mitigation mitre att&ck phishing remote access security best practices social engineering threat detection user awareness vba windows
    • Replies: 0
    • Forum: Security Alerts

  4. AA20-006A: Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad

    Original release date: January 6, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nation’s critical infrastructure in light of the current tensions...
    • News
    • Thread
    • apt techniques cisa cisa recommendations critical infrastructure cyber defense cyber threats cybersecurity data theft ddos attacks incident response iranian cyber irgc malware mitigation strategies network monitoring phishing security best practices threat intelligence user training vulnerability management
    • Replies: 0
    • Forum: Security Alerts

  5. AA19-339A: Dridex Malware

    Original release date: December 5, 2019 Summary This Alert is the result of recent collaboration between the Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) to identify and share...
    • News
    • Thread
    • bots cisa cybersecurity data breach dridex exploits financial fincen indicators of compromise intrusion detection intrusion prevention malspam malware mitigation phishing privacy ransomware security best practices trojan vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  6. Your Network Needs to Be the First and Last Line in Your Cyber-Security Defense

    Date: Tuesday, December 18, 2018Time: 02:00 PM Eastern Standard TimeDuration: 1 hour Most people think firewalls when it comes to network security and defending against cyber-threats. But with today’s increasingly sophisticated cyber-security threats Continue reading...
    • News
    • Thread
    • cyber security cyber threats defense firewalls it security network defense network security security best practices technology trends webinar
    • Replies: 1
    • Forum: Live RSS Feeds

  7. Should You Send Your Pen Test Report to the MSRC?

    Every day, the Microsoft Security Response Center (MSRC) receives vulnerability reports from security researchers, technology/industry partners, and customers. We want those reports, because they help us make our products and services more secure. High-quality reports that include proof of...
    • News
    • Thread
    • active directory attack vector audit logging brute force attack customer deployment cybersecurity defense in depth iis arr lync server 2013 microsoft msrc password policy penetration testing risk assessment security security best practices security mitigations vulnerability reporting web application security
    • Replies: 0
    • Forum: Security Alerts

  8. TA16-250A: The Increasing Threat to Network Infrastructure Devices and Recommended Mitigations

    Original release date: September 06, 2016 | Last revised: September 28, 2016 Systems Affected Network Infrastructure Devices Overview The advancing capabilities of organized hacker groups and cyber adversaries create an increasing global threat to information systems. The rising threat...
    • News
    • Thread
    • admin privileges apt attack vectors authentication cisco configuration cve-2016-6366 cyber threats firewall infrastructure iot malware mitigations network devices network security security best practices segmentation shadow brokers supply chain vpn
    • Replies: 0
    • Forum: Security Alerts

  9. Windows 7 Windows Azure Platform Security Essentials: Module 2 – Identity Access Management

    Graham Calladine, Security Architect with Microsoft Services partners with the Security Talk Series to describe the use of claims-based authentication to allow Active Directory and other on-premises identity providers to be used by Azure applications. Related resources: Whitepaper: Security...
    • News
    • Thread
    • access management active directory authentication azure applications claims-based development lifecycle identity management security security best practices windows azure
    • Replies: 0
    • Forum: Live RSS Feeds