Resources

Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024

In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...

Blog

Malware, Ransomware, and Viruses vs Your IBM i Server

By Sandi Moore on Tue, 09/03/2024

Many of us have heard that you can’t get a virus on this platform, but the reality is that the integrated file system (IFS) is a tree-like structure. This structure can house Word documents, PDFs, MP3s, JPEG images, and these files can be just as infected on the IBM i server as they can on any Windows work station or server.

Blog

The Password Atmosphere – Problem, or Progress?

By Lisa Lombardo on Mon, 08/26/2024

Password security has evolved from simple physical protections to complex, multi-factor authentication systems. Experts suggest that while traditional passwords are becoming outdated, combining them with new technologies like biometrics and passkeys offers stronger security. Future trends point towards more user-friendly yet robust methods to safeguard digital access.

Blog

What Is the NIST Risk Management Framework (RMF)?

By Antonio Sanchez on Mon, 08/26/2024

The NIST Risk Management Framework, or RMF, is a voluntary 7-step process used to manage information security and privacy risks. By following the NIST RMF, organizations can successfully implement their own risk management programs, maintain compliance, and address the weaknesses that present the greatest danger to their enterprise.

Blog

My Takeaways from Black Hat USA 2024

By Antonio Sanchez on Mon, 08/19/2024

The importance of resilience and business continuity dominated conversations at Black Hat USA 2024. In this blog, security expert Antonio Sanchez shares his take on this year’s event.

Blog

89% of Security Awareness Programs Are Focused on Social Engineering in 2024

By Antonio Sanchez on Thu, 08/15/2024

Cybersecurity experts from over 70 countries share their insights, candor, and challenges when it comes to raising the level of cybersecurity awareness in their organizations. Learn how Fortra’s Terranova Security can help.

Blog

Report Reveals Highest Cost of Data Breach Spike Since Pandemic

By Antonio Sanchez on Thu, 08/08/2024

IBM recently released their 2024 Cost of a Data Breach Report, highlighting some of the surprising cost increases and the reasons behind them.

Blog

Understanding Ransomware: How to Protect Against Ransomware

By Antonio Sanchez on Wed, 07/31/2024

You don’t know you’ve experienced a ransomware attack until you’ve been delivered the note. Understanding more about the ransomware process can help you stop the attack in the act before it escalates that far.

Blog

Protecting Your Digital Assets Against AI Cybercrime

By Bob Erdman on Wed, 07/31/2024

Cybersecurity experts offer insights into safeguarding digital assets and protection strategies. Explore the emerging role of AI in enhancing cybersecurity efforts.

Blog

What Is Vulnerability Management? Process & Use Cases

By Antonio Sanchez on Tue, 07/23/2024

Recent years have seen confusion around how to define vulnerability management. In this blog, security expert Antonio Sanchez sets the record straight, exploring the technology’s process and use cases.

Blog

3 Components of a Proactive Security Strategy

By Mieng Lim on Mon, 07/22/2024

Your organization might have many cybersecurity defenses in place, but defenses alone are not enough to protect you from today’s multi-faceted cyberattacks. Proactively adding a layer of offensive security assessment and testing helps you pinpoint your system weaknesses before they are exploited. Proactive security measures help you stay ahead of attackers by:Identifying vulnerabilities and...

Blog

White House Tells All: 11 Major Government Breaches Last Year

By Antonio Sanchez on Fri, 07/12/2024

A recent report released by the White House revealed the circumstances, tactics, and results of the 11 cybersecurity incidents determined by agencies to meet the threshold for “major incidents” in the 2023 fiscal year. See the pitfalls and spot the similarities.

Blog

3 Key Takeaways from AWS re:Inforce 2024

By Mike Reed on Thu, 07/11/2024

Every year, AWS re:Inforce brings together cloud security specialists and AWS experts alike to see and advance what’s new on the cloud security horizon. Fortra’s Mike Reed, Director of Global Alliances, walks us through what he saw on the ground floor as he covers several of this year’s key highlights.

Blog

Four Key Cybersecurity Highlights from Infosecurity Europe

By Steve Audsley on Thu, 06/27/2024

Infosecurity Europe 2024 saw a tightened focus on this year’s real security agenda: a holistic approach to data protection, scrutiny on the supply chain, and the ever-wary eye toward AI and its many uses. Fortra’s Steve Audsley, EMEA Solution Engineering Manager for Data Protection, shares his experience.

Blog

Finance Now Has 30 Days to Notify Customers of Breaches

By Antonio Sanchez on Wed, 06/12/2024

Find out what SEC amendments will take effect on August 2, 2024. Now, financial firms must notify their customers of breaches within 30 days of discovery – and much more.

Blog

Understanding The White House’s 2024 Cybersecurity Report

By Antonio Sanchez on Wed, 06/12/2024

To protect against mounting threats to national security via nation-state cyberattacks, domestic ransomware attacks, and threats to critical infrastructure, The White House issued its 2023 National Cybersecurity Strategy. This recently released 2024 report reviews progress made towards achieving those outlined objectives.

Blog

The Top 5 Benefits of Remote Network Monitoring

By Kevin Jackson on Mon, 06/10/2024

If your network equipment is located in multiple locations, or your IT team wants to monitor the network on-the-go, remote network monitoring can help.

Blog

Insights from CyberUK 2024: Future Tech, Future Threats, Future Ready

By David Zacharias on Wed, 06/05/2024

Blog

Key Takeaways from RSA Conference™ 2024

By Antonio Sanchez on Tue, 05/28/2024

From new trends in ransomware to the way GenAI is shaping the security landscape, RSA 2024 brought together the best thought leadership in cybersecurity to tackle the tough issues.

Blog

Why Collaboration Is the Secret Sauce of Cybersecurity

By Antonio Sanchez on Tue, 05/28/2024

Your business competitors may be your greatest security allies. Who else understands your business model and challenges like they do?

1
2
3
4
5
6
7
8
9
…
Next page
Last page

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

Malware, Ransomware, and Viruses vs Your IBM i Server

The Password Atmosphere – Problem, or Progress?

What Is the NIST Risk Management Framework (RMF)?

My Takeaways from Black Hat USA 2024

89% of Security Awareness Programs Are Focused on Social Engineering in 2024

Report Reveals Highest Cost of Data Breach Spike Since Pandemic

Understanding Ransomware: How to Protect Against Ransomware

Protecting Your Digital Assets Against AI Cybercrime

What Is Vulnerability Management? Process & Use Cases

3 Components of a Proactive Security Strategy

White House Tells All: 11 Major Government Breaches Last Year

3 Key Takeaways from AWS re:Inforce 2024

Four Key Cybersecurity Highlights from Infosecurity Europe

Finance Now Has 30 Days to Notify Customers of Breaches

Understanding The White House’s 2024 Cybersecurity Report

The Top 5 Benefits of Remote Network Monitoring

Insights from CyberUK 2024: Future Tech, Future Threats, Future Ready

Key Takeaways from RSA Conference™ 2024

Why Collaboration Is the Secret Sauce of Cybersecurity

Contact Information

Privacy Policy

Cookie Policy

Impressum