Security

Last week, Atlassian confirmed a security breach that exposed the sensitive data of thousands of thousands of Atlassian employees. The company claimed that hackers couldn’t access Atlassian’s product and customer information. According to a new report by Cyberscoop, a threat actor named SiegedSec announced on Telegram that it hacked the enterprise software company Atlassian. The…

With Windows Server 2012 and Win8 comes a new version of the SMB protocol. Learn to disable SMB 1.0 and configure SMB encryption in this easy Ask an Admin.

Last week, the US Cybersecurity and Infrastructure Security Agency (CISA) released a script to help enterprise customers recover from widespread ESXiArgs ransomware attacks. The threat actors have now created a new variant of the malware that can’t be decrypted with the data recovery script. According to a report from Malwarebytes, CISA leveraged the publicly available…

We’re back with our two-part series on enabling secure LDAP on Windows Server 2008/2012 DCs! In part 2, we cover LDAPS configuration.

We’ve come a long way since those days and have seen technology evolve to support data stored in business cloud platforms such as Microsoft 365. In recent years, the digital revolution has made data more portable and more accessible, but crucially it has also made that data more vulnerable in many ways. Fortunately, if your organization…

VMware has warned about a large-scale global ransomware campaign that is currently targeting vulnerable VMware ESXi servers worldwide. The hypervisor maker disclosed that threat actors are exploiting a two-year old vulnerability in its ESXi hypervisor and components to deploy ransomware. VMware ESXi is a service that enables companies to host multiple virtualized systems running different…

FireCompass, a SaaS platform for Continuous Automated Red Teaming (CART) and External Attack Surface Management (EASM) announced today that it was raising $7 million to expand to more international markets and hire more talent. This Series A investment comes four years after the creation of the company headquartered in Boston, Massachusetts, but FireCompass also has…

Microsoft yesterday announced the launch of Adaptive Protection support in Microsoft Purview. The new solution leverages machine learning to help organizations detect potential malicious activities and mitigate insider risks with data loss prevention (DLP) controls. Last year, Microsoft announced a new product rebranding to bring together its Azure Purview data governance service with Microsoft 365…

Atlassian has released fixes to patch a new critical vulnerability in Jira Service Management Server and Data Center. The security flaw could enable threat actors to impersonate Jira users and gain unauthorized access to affected instances. The security vulnerability is tracked as CVE-2023-22501, and it has a critical severity score(CVSS score) of 9.4. The company…

Microsoft has released a new guided hunting notebook for its Microsoft Sentinel solution. The notebook enables organizations to leverage machine learning to detect, investigate as well as block low and slow password spray campaigns. Password spraying is a type of brute force attack that allows malicious actors to gain unauthorized access to computer systems. Hackers…