Blog

Blog

The Difference Between PCI DSS 4.0 and PCI DSS 4.0.1. Are You Ready?

By Antonio Sanchez on Fri, 01/24/2025

PCI DSS 4.0.1 is now the only PCI DSS standard in effect. Do you know the changes between V4.0 and V4.0.1? Prepare for PCI DSS 4.0 compliance. Read more.

Blog

HIPAA Requirements and Updates to Know About for 2025

By Antonio Sanchez on Wed, 01/22/2025

HIPAA requirements are due for an update, and most expect one in the first half of 2025. See what the changes entail and how you can prepare.

Blog

Got Regulations? Fortra Is Zeroed In on Compliance Software

By Antonio Sanchez on Tue, 01/21/2025

Got compliance deadlines looming in 2025? Fortra has an arsenal of compliance-ready software solutions to help you simplify your regulatory burden. Read more.

Blog

Patch Tuesday Update January 2025

By Tyler Reguly on Thu, 01/16/2025

Microsoft definitely didn’t want to waste any time jumping into 2025 patching 161 CVEs with the January Patch Tuesday. There are 159 CVEs issued by Microsoft, 1 by CERT CC, and 1 by GitHub.

Blog

Patch Tuesday Update - January 2025

By Mieng Lim on Tue, 01/14/2025

FVM will include the Microsoft Patch Tuesday checks in the NIRV 4.57.0 and FVM Agent 2.18.• Microsoft addressed 158 vulnerabilities this release, including 10 rated as Critical.Microsoft has publicly disclosed the below vulnerabilities:CVE-2025-21366 - Microsoft Access Remote Code Execution VulnerabiliyCVE-2025-21395 - Microsoft Access Remote Code Execution VulnerabilityCVE-2025-21186 -...

Blog

VERT Threat Alert: January 2025 Patch Tuesday Analysis

By Tyler Reguly on Tue, 01/14/2025

Today’s VERT Alert addresses Microsoft’s January 2025 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1139 as soon as coverage is completed.In-The-Wild & Disclosed CVEsCVE-2025-21333The first of three Hyper-V vulnerabilities this month is a heap-based buffer overflow that leads to privilege escalation to SYSTEM. Microsoft has reported this...

Blog

BEC Global Insights Report: December 2024

By John Farina on Fri, 01/10/2025

The monthly Global BEC Insights Report from Fortra presents a comprehensive analysis of the latest tactics, techniques, and procedures (TTP) employed by BEC threat actors. This report draws on extensive intelligence gathered from hundreds of active defense engagements conducted throughout the month. Key insights include geolocation data, attack volume, and the variety of scams, such as payroll diversion and advance fee fraud. The report also highlights the use of gift cards in scams, the requested amounts in wire transfer fraud, and the banks and webmail providers frequently targeted by attackers. These findings provide a critical understanding of the evolving BEC threat landscape.

Blog

Evolving Cyber Resilience

By Josh Taylor on Fri, 01/10/2025

Explore how treating cybersecurity challenges like a biological ecosystem can simplify complexity, reduce redundancies, and build a resilient, adaptive security posture. Learn to classify problems, trace evolutionary patterns, and create a scalable cyber ecosystem for long-term success.

Blog

How to Empower IBM i Users with Secure Data Access

By Greg J. Schmidt on Fri, 01/10/2025

Why do you need extra data access security on IBM i? Find out. Plus, learn how to secure data access, let users analyze data, and distribute data securely.

Blog

PowerShell Error Handling

By Darrell Walker on Thu, 01/09/2025

Explore PowerShell error handling techniques to help you build robust, efficient, and reliable scripts.

Blog

Highlights from Release Day 2025.1

Fri, 01/03/2025

Fortra’s 2025.1 Release Day includes improvements to email security, managed file transfer, data classification, security awareness training, and more.

Blog

CEOs Are Increasingly Accountable for Security Events. Here’s Why.

By Antonio Sanchez on Fri, 12/20/2024

In recent years, we have seen CISOs increasingly held to task for cybersecurity events on their watch. However, the chain of responsibility has expanded as CEOs are being legally required to share some of the blame — and hopefully, more of the preventative work as well.

Blog

Riskiest Social Media Platforms, Q4 2024

By Meriam Senouci on Thu, 12/19/2024

Every quarter, Fortra analyzes thousands of social media incidents to identify the top threats and trends plaguing organizations, their brands, and employees. Social media is a highly attractive environment to cyber attackers due to the large user base, constant flow of information, and the shift of younger generations relying more on social platforms for information instead of web searches. This...

Blog

How IBM i Determines a User's Authority to Access Objects

By Amy Williams on Tue, 12/17/2024

Discover this detailed breakdown of the IBM i Authority Search Order, how the process is applied in a real-life scenario, and the common ways in which users are able to gain unauthorized access to objects.

Blog

Patch Management: Is Your Incident Response Plan Ready for 2025?

By Antonio Sanchez on Mon, 12/16/2024

New incident response plans must anticipate more than just cyberattacks. Patch management needs to be an integral part of IR planning in 2025. Read why.

Blog

Interacting with MS Office Using PowerShell

By EJ Stanley on Thu, 12/12/2024

Learn how automating Microsoft with PowerShell can streamline workflows, reduce manual effort, and improve efficiency.

Blog

Patch Tuesday Update December 2024

By Tyler Reguly on Thu, 12/12/2024

While not the smallest December Patch Tuesday we’ve ever had, there are only 72 CVEs this month, with only one that has been publicly disclosed and exploited and one that scores above a CVSS 9.0.

Blog

BEC Global Insights Report: November 2024

By John Farina on Mon, 12/09/2024

Blog

Everything You Need to Know About Network Probes

By Kevin Jackson on Wed, 12/04/2024

What are probes, how do they work, and why are they so essential to network monitoring?

Blog

The Repercussions of Zero Trust Adoption in Federal Agencies

By John Grancarich on Mon, 12/02/2024

It’s no secret that the public sector continues to push towards zero trust adoption, and for good reason. Fortra’s John Grancarich shares his thoughts on what this means for government collaboration at large and the future of the threat landscape.

The Difference Between PCI DSS 4.0 and PCI DSS 4.0.1. Are You Ready?

HIPAA Requirements and Updates to Know About for 2025

Got Regulations? Fortra Is Zeroed In on Compliance Software

Patch Tuesday Update January 2025

Patch Tuesday Update - January 2025

VERT Threat Alert: January 2025 Patch Tuesday Analysis

BEC Global Insights Report: December 2024

Evolving Cyber Resilience

How to Empower IBM i Users with Secure Data Access

PowerShell Error Handling

Highlights from Release Day 2025.1

CEOs Are Increasingly Accountable for Security Events. Here’s Why.

Riskiest Social Media Platforms, Q4 2024

How IBM i Determines a User's Authority to Access Objects

Patch Management: Is Your Incident Response Plan Ready for 2025?

Interacting with MS Office Using PowerShell

Patch Tuesday Update December 2024

BEC Global Insights Report: November 2024

Everything You Need to Know About Network Probes

The Repercussions of Zero Trust Adoption in Federal Agencies

Privacy Policy

Cookie Policy

Accessibility

Impressum