Blog
Blog

BeSTORM Release 13.2

By Mieng Lim on Mon, 03/18/2024
BLE, CANBUS Enhancements, new protocols in beSTORMBeSTORM 13.2 launches a few highly requested enhancements along with several protocol additions. These additions will help expand the implementation of black box fuzzing during application development. International compliance regulations are beginning to require fuzz testing security certification within testing labs on telecommunication and...
Application Security
Patch Tuesday
Blog

Patch Tuesday Update March 2024

By Tyler Reguly on Thu, 03/14/2024
This month’s Patch Tuesday drop includes a total of 65 CVEs – 61 issues by Microsoft, 3 issued by Chrome, and 1 issued by Intel. For those worried about the Intel update, which requires you apply both an Intel microcode update and a Microsoft update, it only applies to Atom processors.
Blog

Patch Tuesday Update - March 2024

Tue, 03/12/2024
Fortra VM will include the Microsoft Patch Tuesday checks in the NIRV 4.38.0 and FVM Agent 2.5 releases.Microsoft addressed 60 vulnerabilities in this release, including 2 rated as Critical and 18 Remote Code Execution vulnerabilities.CVE/AdvisoryTitleTagMicrosoft Severity RatingBase ScoreMicrosoft ImpactExploitedPublicly DisclosedCVE-2024-20671Microsoft Defender Security Feature Bypass...
Vulnerability Management
data audit
Blog

What Is Data Auditing? Why You Need It & How to Conduct It

Mon, 03/11/2024
Data auditing is the process of conducting a thorough review and analysis of a company's data to ensure its accuracy, consistency, and security. Learn more about why your organization needs to carry out data auditing in today's blog.
Compliance
Data Loss Prevention
saas company portrayed as hands holding clouds
Blog

What is a SaaS Company?

By What is a SaaS Company? on Thu, 03/07/2024
Learn about what a Software as a Service, or SaaS, company is and why it may make sense for your organization in this week’s Data Protection 101, our series on the fundamentals of information security.
Data Loss Prevention
Classification Benefits
Blog

The Benefits of Pairing Fortra's Data Loss Prevention (DLP) with Fortra's Data Classification Suite

By Piers Chivers on Wed, 03/06/2024
Fortra DLP's data classification capabilities have helped organizations better understand their data for years but for businesses looking to empower further their users and automate their data protection programs, there are additional options available.Fortra's acquisition of Boldon James and Titus three years ago has brought a wealth of data classification knowledge and technology under the...
Exclamation point with malware on screen
Blog

DarkLoader Leads Malware Attacks in Q4

Thu, 02/29/2024
In Q4, three malware families represented more than 93% of all payload volume targeting end users, with Malware-as-a-Service (MaaS) DarkLoader leading all other reports. Fortra first received reports of DarkLoader in user inboxes in Q3, with attack volume picking up significantly beginning in October. The shift to criminal activity associated with DarkLoader comes after coordinated efforts by...
magnifying glass
Blog

What Is Data Compliance? Top Regulations You Need to Know

Mon, 02/19/2024
Embracing data compliance can help organizations maintain best practices. Let's look at some of the challenges and benefits of data compliance, along with some of the top regulations.
Compliance
California Consumer Privacy Act (CCPA)
General Data Protection Regulation (GDPR)
Health Insurance Portability and Accountability Act (HIPAA)
keyboard and globe
Blog

Phishing-as-a-Service Profile: LabHost Threat Actor Group

By Cybersecurity Experts at Fortra on Thu, 02/15/2024
Fortra continues to monitor malicious activity targeting Canadian banks by the Phishing-as-a-Service (PhaaS) group known as LabHost. Throughout 2022 and 2023, phishing campaigns linked to PhaaS platforms have surged, as threat actors increasingly rely on subscription-based services to execute attacks. These platforms offer a range of features, including stolen industry branding, real-time...
Vulnerability Research

Patch Tuesday Update - February 2024

Tue, 02/13/2024
Fortra VM will include the Microsoft Patch Tuesday checks in the NIRV 4.36.0 and Fortra VM Agent 2.4 releases.Microsoft addressed 73 vulnerabilities in this release, including 5 rated as Critical and 30 Remote Code Execution vulnerabilities.This release also includes fixes for CVE-2024-21351 and CVE-2024-21412 that have been exploited in the wild.Internet Shortcut Files Security Feature Bypass...
Vulnerability Management
Blog

Cybersecurity and the Law: Taking Proactive Steps Before Needing Legal Action

Mon, 02/12/2024
How the justice system deals with cybercrime is still relatively new and finding its footing. How cybercriminals are leveraging the legal system is relatively new, too. Imagine a world where your organization gets hacked, and then, to add insult to injury, gets reported by the hackers for being out of compliance. Well, you don’t have to imagine too hard because those days are upon us. While the...
Vulnerability Management
infrastructure
Blog

What Is Data Infrastructure? A Simple Overview

Mon, 02/12/2024
Data infrastructure - required to manage, store, and process data - can take many forms. We look at the different types, aspects, and provide tips on how to build a robust data infrastructure in today's blog.