Live Webinar
10:00 - 10:45am CST
Brandy Lulling
Live Event
11:00 - 11:45am GMT
Michael Barford
Live Event
11:00 - 11:45am AEDT
Michael Barford
News Article
Information Security Buzz: Fortra Report Reveals Surge in Domain Impersonation, Social Media Attacks, and Dark Web Activity
Tue, 11/05/2024
Insights from Fortra's 2024 Brand Threats and Fraud Report were featured in Information Security Buzz.
News Article
Fortra 2025 Predictions: Building Resilience - Key Strategies for 2025
By Theo Zafirakos on Fri, 11/01/2024
Theo Zafarikos was recently featured in VM BLog, where he outlined key strategies for building resilience in 2025.
News Article
Solutions Review: Harnessing Data Science and AI in Cybersecurity
By Ravisha Chugh on Fri, 10/25/2024
Ravisha Chugh from Fortra was recently featured in Solutions Review, where she shared how data science and AI can be powerful tools in the fight against cyber threats.
On-Demand Webinar
IBM i Data from the Ground Up: Cybersecurity, Operations, Data Access and Management
Watch the recordings from Fortra's virtual event with COMMON, where our experts offered insight and examples of how organizations on IBM i can improve their security, operations, business intelligence, and document management strategy.
News Article
National Cybersecurity Awareness Month 2024: Industry Experts Share Their Thoughts
By Antonio Sanchez on Wed, 10/16/2024
For National Cybersecurity Awareness Month 2024, Antonio Sanchez, Principal Cybersecurity Evangelist at Fortra, contributed expert tips to VM Blog’s latest collection.
Live Webinar
12:00 - 12:30pm CST
Greg J. Schmidt
News Article
Dark Reading: Novel Exploit Chain Enables Windows UAC Bypass
By Tyler Reguly on Thu, 10/10/2024
Fortra's security research team has identified a novel exploit chain, tracked as CVE-2024-6769, which allows attackers to bypass Windows User Access Control (UAC) and escalate privileges to gain full system control.
News Article
Global Security Mag: Microsoft Vulnerability CVE-2024-6769 Now Public on Fortra.com
Wed, 10/09/2024
Fortra researchers are urging organizations to be vigilant about potential risks associated with a vulnerability affecting Microsoft systems.
News Article
CSO: Microsoft privilege escalation issue forces the debate: ‘When is something a security hole?’
By Tyler Reguly on Wed, 10/09/2024
CSO covered Fortra’s disclosure of a Microsoft privilege escalation issue that allows attackers to bypass UAC prompts. Fortra's Tyler Reguly explained that this bypass removes key security checks, posing a risk. Microsoft disagrees, calling it a convenience issue, but the debate continues.
News Article
CyberTech Insights: The Cybersecurity Gap: Why Even the Best-Trained Teams Still Vulnerable to Attacks
By John Grancarich on Mon, 10/07/2024
In a new article for CyberTech Insights, John Grancarich, Fortra's Chief Strategy Officer, explores why security awareness training matters more than ever. Drawing from personal experiences with cyber extortion and phishing, John highlights how continuous practice can better prepare us for real-world risks.Originally published in CyberTech Insights.Excerpt:“We’re not going to get any less busy, so...
News Article
VM Blog: Expert Insights on National Insider Threat Awareness Month
By Antonio Sanchez on Fri, 09/27/2024
Insider threats—whether intentional or accidental—can have devastating effects on businesses of all sizes. Antonio Sanchez of Fortra, along with other industry experts, shares key insights into the evolving landscape of insider threats and offers strategies for mitigating these risks.
Blog
CVE-2024-6769: Poisoning the Activation Cache to Elevate From Medium to High Integrity
By Ricardo Narvaja on Thu, 09/26/2024
This blog is about two chained bugs: Stage one is a DLL Hijacking bug caused by the remapping of ROOT drive and stage two is an Activation Cache Poisoning bug managed by the CSRSS server.The first stage was presented in detail at Ekoparty 2023 in the presentation called "I'm High" by Nicolás Economou from BlueFrost Security. He explained how to exploit the vulnerability which, at the time, had not...
Product Video
Sequel's Data Deployment Options
Watch this short video from IBM i data access expert Greg Schmidt for an overview of all the ways Sequel helps you access and work with your business data.
Guide
Decoding the Attacker Mindset: Pen Testing Revelations
Cybersecurity isn't just about defense—it's about understanding the offense. With penetration testing, organizations can learn to think like an attacker and develop more proactive strategies that anticipate attacks. In this guide, explore 5 scenarios that provide insight into the methods and techniques deployed in real-world pen testing engagements, including: Using a password spray attack to...
News Article
IT Brew: More Than Half of IT Professionals Aren’t Familiar With the Shared Responsibility Model
By Nick Franklin on Fri, 09/20/2024
A recent IT Brew article highlights a major cloud security gap: only 49% of surveyed IT and cybersecurity professionals are familiar with the "shared responsibility model," which defines the division of security duties between cloud providers and customers. Nick Franklin emphasized the common misunderstanding around these responsibilities, urging customers to ask their providers directly about what they are responsible for.
News Article
Reworked: How Security Service Edge Applications Enable Hybrid and Remote Work
By Wade Barisoff on Fri, 09/20/2024
Security Service Edge (SSE) applications are becoming essential for securing hybrid and remote work environments. In a recent article in Reworked, Wade Barisoff highlights which organizations are best suited for SSEs and how these solutions can enhance security effectively.