Blog
Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024
In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...
Infrastructure and Data Protection
IT Infrastructure Protection
ransomware on IBM i
Blog

Malware, Ransomware, and Viruses vs Your IBM i Server

By Sandi Moore on Tue, 09/03/2024
Many of us have heard that you can’t get a virus on this platform, but the reality is that the integrated file system (IFS) is a tree-like structure. This structure can house Word documents, PDFs, MP3s, JPEG images, and these files can be just as infected on the IBM i server as they can on any Windows work station or server.
IBM i Cybersecurity
Patch Tuesday
Blog

Patch Tuesday Update August 2024

By Tyler Reguly on Thu, 08/15/2024
The three CVSS 9.8 vulnerabilities included in this month’s patch drop are likely to be the first thing that catches anyone’s attention this month. All three are remote, unauthenticated code execution, the very type of vulnerability where we previously would have used the word, “wormable.”
IT Infrastructure Protection
Blog

Top 8 Benefits of Network Monitoring

Thu, 03/14/2024
Lack of network visibility makes life hard for IT. Network monitoring helps you stay ahead of outages with real-time visibility into your network health.
Monitoring
Blog

Is the AS/400 Dead?

By Tom Huntington on Mon, 02/19/2024
Many IT professionals still use the term AS/400. But can a platform that was introduced in 1988 still be relevant today? The answers typically surprise people.
IBM i Automation
IBM i Business Intelligence
IBM i Cybersecurity
Blog

You’ve Upgraded Your Hardware. Now It’s Time to Upgrade Your Security Posture

By Amy Williams on Wed, 09/20/2023
If you have recently upgraded your hardware, our this is a great opportunity to establish IBM i security best practices for your organization now and into the future — and our free Security Scan will help you do just that. The Security Scan takes an inventory of your current security settings and uses the results to demonstrate your data’s degree of vulnerability and pinpoint specific weaknesses.
IBM i Cybersecurity
Meet the SOC Team
Blog

A Day in the Life of a SOC Team

Thu, 04/06/2023
Managed detection and response (MDR) would be nothing without a SOC (security operations center). These are the people who make Alert Logic's MDR services so dependable. It’s time you met them.
Infrastructure and Data Protection
IT Infrastructure Protection
An IBM i Hacking Tale
Blog

An IBM i Hacking Tale

By Pablo Zurro on Thu, 04/06/2023
Discover how penetration testing can be used on IBM i systems to find hidden vulnerabilities in your security. This post breaks down Core Impact's IBM i pen testing process from discovery to privilege escalation.
IBM i Cybersecurity
AWS Container Security Tips Blog Thumb
Blog

3 Tips to Strengthen AWS Container Security

Thu, 04/06/2023
Containers are fundamental to swift, reliable AWS deployment. So, how can you strengthen AWS container security?
Infrastructure and Data Protection
Data Protection
IT Infrastructure Protection
Blog

How to Meet Cyber Insurance Requirements for IBM i

Thu, 03/02/2023
Discover what cyber insurance is, the solutions you may need to qualify or lower premiums, and what Fortra offers to assist your IBM i organization with becoming cyber insured.
IBM i Automation
IBM i Cybersecurity