Resources
Blog

Querying Excel as a Database

By EJ Stanley on Tue, 10/29/2024
Learn how to query data in Microsoft Excel using SQL and discover how to use Excel automation for quick data analysis.
Automation
Robotic Process Automation (RPA)
Blog

How to Proactively Harden Your Environment Against Compromised Credentials

Wed, 10/23/2024
How many user accounts do you have? Emails, social media, online shopping, streaming services—and that doesn’t even begin to account for professional logins. By the time you add them all up, it’s likely one hundred or more unique accounts.According to NordPass, the average user maintains an average of 168 logins for personal purposes, and no less than 87 for the workplace. This is an extraordinary...
Live Event
Nov
04

NAViGATE Toronto 2024 - COMMON

8:00am - 5:00pm EST
Come see Fortra at booth #33 at NAViGATE Toronto 2024 from November fourth to the sixth.
IBM i Automation,
IBM i Business Intelligence,
IBM i Cybersecurity
Live Webinar
Nov
20

IBM i Storage Cleanup: Get Your End of Year in Gear

10:00 - 10:30am CST
Chuck Losinski
Join IBM i expert Chuck Losinski on November 20th to learn how to solve the mystery of where your disk space is going and how to make cleanup a breeze.
IBM i Automation
FREE
30 minutes
Dark Reading - featuring Tyler Reguly
News Article

Dark Reading: Novel Exploit Chain Enables Windows UAC Bypass

By Tyler Reguly on Thu, 10/10/2024
​​Fortra's security research team has identified a novel exploit chain, tracked as CVE-2024-6769, which allows attackers to bypass Windows User Access Control (UAC) and escalate privileges to gain full system control.
Infrastructure and Data Protection
IT Infrastructure Protection
Offensive Security
CSO Online - featuring Tyler Reguly
News Article

​​CSO: Microsoft privilege escalation issue forces the debate: ‘When is something a security hole?’​

By Tyler Reguly on Wed, 10/09/2024
​​CSO covered Fortra’s disclosure of a Microsoft privilege escalation issue that allows attackers to bypass UAC prompts. Fortra's Tyler Reguly explained that this bypass removes key security checks, posing a risk. Microsoft disagrees, calling it a convenience issue, but the debate continues.​
Threat Research & Intelligence
Infrastructure and Data Protection
IT Infrastructure Protection
Offensive Security
Blog

CVE-2024-6769: Poisoning the Activation Cache to Elevate From Medium to High Integrity

By Ricardo Narvaja on Thu, 09/26/2024
This blog is about two chained bugs: Stage one is a DLL Hijacking bug caused by the remapping of ROOT drive and stage two is an Activation Cache Poisoning bug managed by the CSRSS server.The first stage was presented in detail at Ekoparty 2023 in the presentation called "I'm High" by Nicolás Economou from BlueFrost Security. He explained how to exploit the vulnerability which, at the time, had not...
Infrastructure and Data Protection
IT Infrastructure Protection
Offensive Security
Guide

Decoding the Attacker Mindset: Pen Testing Revelations

Cybersecurity isn't just about defense—it's about understanding the offense. With penetration testing, organizations can learn to think like an attacker and develop more proactive strategies that anticipate attacks. In this guide, explore 5 scenarios that provide insight into the methods and techniques deployed in real-world pen testing engagements, including: Using a password spray attack to...
Infrastructure and Data Protection
IT Infrastructure Protection
Offensive Security
Using RPA Reviews to Choose Software
Blog

Using Reviews to Choose RPA Software

Thu, 09/12/2024
Analyze RPA reviews with a more critical eye to better understand how a robotic process automation vendor can meet your organization’s needs.
Automation
Robotic Process Automation (RPA)
Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024
In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...
Infrastructure and Data Protection
IT Infrastructure Protection
ITSecurityWire
News Article

How to Fortify Defenses Before Threats Materialize

By Chris Reffkin on Mon, 09/09/2024
Cyber threats are becoming more sophisticated and frequent, yet many organizations still face challenges due to limited resources. In ITSecurityWire, Fortra's Chris Reffkin highlights prioritizing remediation, closing the skills gap, and ongoing improvement.
IT Infrastructure Protection