Blog

Blog

How IBM i Users Can Gain Untraceable Access To Your Company’s Private Data

By How IBM i Users Can Gain Untraceable Access To Your Company’s Private Data on Thu, 01/03/2019

Robin Tatam explains how some services that facilitate data access to IBM i bypass traditional security controls—and give your users unmonitored and unrestricted access to sensitive data.

Blog

Cyber Risk Ratings: How Would Your IT Environment Score?

By Bob Erdman on Wed, 12/12/2018

Find out the type of cyber threats that endanger organizations (and their ratings), and how they can protect themselves.

Vulnerability Research

Analysis of NUUO NVRmini2 Stack Overflow Vulnerability

Mon, 12/10/2018

Exploiting CVE-2018-19864- Samuel S., Senior Vulnerability ResearcherDuring an audit of NUUO’s NVRmini2, a stack overflow vulnerability was discovered in a request handling function in the ‘lite_mv’ custom SIP service binary. The NUUO NVRmini2 runs a custom SIP service on TCP ports 5160 and 5150 via a binary at /NUUO/bin/lite_mv. In order to examine this bug more closely, we analyze the function...

Blog

Why Corporate Networks are Key Targets for Cryptojacking

By Bob Erdman on Thu, 12/06/2018

The days of being able to ignore cryptocurrency is over. Even if you don’t use it, you’re now at risk of being adversely affected by it through cryptomining malware, also known as cryptojacking. Read on to find out what cryptocurrency is, how cryptojacking is on the rise, and how you can protect your organization.

Blog

Enterprise Security: Best Practices and Tips

By Bob Erdman on Mon, 12/03/2018

How much security is really necessary to protect yourself? Read on for tips on how to best protect your organization and avoid becoming a headline.

Vulnerability Research

NUUO Firmware Disclosure

Thu, 11/29/2018

NUUO Zero-Day BlogA vulnerability identified in NUUO NVRmini2 Network Video Recorder devices discovered by our Vulnerability Research Team (VRT). We commend NUUO for their prompt response to the identified flaws and their engineering team’s work with VRT to provide fixes for these cyber security issues.NUUO has provided a patch for the vulnerability identified on the application. The patched...

Blog

Is There Such a Thing as Free Antivirus for Businesses?

By Bob Erdman on Tue, 11/06/2018

Despite countless offers for free antivirus solutions, there are many other types of costs to consider when choosing the solution that is right for you.

Blog

Cloud Watching: Ensuring Security in Every Cloud Environment

By Bob Erdman on Fri, 11/02/2018

Read on to learn about the different types of cloud environments, and the biggest security obstacle each presents.

Blog

Malware, Virus, Anti-malware, Antivirus: What’s the Difference?

By Bob Erdman on Tue, 10/30/2018

Read on to find out the difference between malware and a virus, and how you can best protect your organization from them.

Blog

Is Antivirus Really Necessary for Linux?

By Bob Erdman on Tue, 10/23/2018

As evidenced by XBash and Kodi add-on malware, the myth that Linux is immune to viruses could not be further from the truth. In reality, Linux is becoming a lucrative target.

Blog

Arcserve Zero-Day Disclosure

Fri, 10/19/2018

We are disclosing four previously undisclosed vulnerabilities within the Arcserve Unified Data Protection platform. The vulnerabilities can open the door for potential compromise of sensitive data through access to credentials, phishing attacks and the ability for a hacker to read files without authentication from the hosting system.________________________________________TitleDDI-VRT-2018-18 -...

Blog

Network Scanning for Complicated, Growing or Distributed Networks

Sun, 10/07/2018

Upgrade Your Network ScannerFree scanners are great – up to a point. That point is when your network reaches a critical size, your assets have acquired a critical value or your company, industry (or Uncle Sam) has set new compliance requirements that those freebee tools just can’t handle.Running multiple network scanning tools is a painEveryone has a half dozen network scanners sitting around and...

Blog

Port Scanning Tools VS Vulnerability Assessment Tools

Sat, 10/06/2018

Port scanning tools – just the first step to network securityYour port scanning tools are nice, but...When your network reaches a critical size, your assets have acquired a critical value or when new compliance standards hit, your port scanning tools may have reached their limit. It’s the job of vulnerability assessment and management tools to combine port scanning with the investigation of...

Blog

What GDPR Fines Mean for IBM i

By Donnie MacColl on Thu, 10/04/2018

The EU’s General Data Protection Regulation (GDPR) has changed the way organisations around the world approach data security. Even if your centre of operations is nowhere near Europe, you must take stock of your IBM i security controls and evaluate what this compliance law means for you if you are processing personal data from people located in the...

Blog

Ask a Capacity Management Expert (Webinar Recap)

By Per Bauer on Wed, 10/03/2018

Get the answers to some of the hottest capacity management questions.

Blog

The Solution to IP Scanning Headaches

Wed, 09/26/2018

IP scanning for growing or distributed networksYour IP Scanner more problem than help?When your network reaches a critical size, your assets have acquired a critical value or you have new compliance requirements - your freebee IP scanner just can't handle it. beSECURE (now part of Fortra Vulnerability Management) can. It your best step up into the corporate vulnerability assessment and management...

Blog

Your IFS Is Probably a Treasure Trove of Unsecured Data

Wed, 09/12/2018

Consider the type of information contained in the PDFs in your directories and spooled files in your output queues. Aside from taking up disk space and consuming time during a backup, what's the issue with leaving these reports on the system? The issue is the contents of those reports, along with who has access to them.

Blog

Tips for Managing Physical, Virtual, Cloud Environments

By Per Bauer on Thu, 08/30/2018

IT infrastructure is complex today. On-prem. Off-prem. Virtualization. The cloud. It’s up to IT to build this infrastructure, then distribute resources from its many miscellaneous parts to various services in the most efficient way possible. With so many different environments to track—many of them walled off from one another in data silos—service issues can be difficult to diagnose and...

Blog

Network Monitoring for Government Agencies: Areas of Focus

Thu, 08/30/2018

Network monitoring is crucial to ensuring a healthy network with maximum uptime for your users. But as a government agency, it’s even more critical.

Blog

How to Generate Revenue in AP

Tue, 08/28/2018

Accounts Payable not only doesn't have to be a cost center these days. But automating AP can actually make it a profit center.

How IBM i Users Can Gain Untraceable Access To Your Company’s Private Data

Cyber Risk Ratings: How Would Your IT Environment Score?

Analysis of NUUO NVRmini2 Stack Overflow Vulnerability

Why Corporate Networks are Key Targets for Cryptojacking

Enterprise Security: Best Practices and Tips

NUUO Firmware Disclosure

Is There Such a Thing as Free Antivirus for Businesses?

Cloud Watching: Ensuring Security in Every Cloud Environment

Malware, Virus, Anti-malware, Antivirus: What’s the Difference?

Is Antivirus Really Necessary for Linux?

Arcserve Zero-Day Disclosure

Network Scanning for Complicated, Growing or Distributed Networks

Port Scanning Tools VS Vulnerability Assessment Tools

What GDPR Fines Mean for IBM i

Ask a Capacity Management Expert (Webinar Recap)

The Solution to IP Scanning Headaches

Your IFS Is Probably a Treasure Trove of Unsecured Data

Tips for Managing Physical, Virtual, Cloud Environments

Network Monitoring for Government Agencies: Areas of Focus

How to Generate Revenue in AP

Privacy Policy

Cookie Policy

Accessibility

Impressum