Resources

Guide

Decoding the Attacker Mindset: Pen Testing Revelations

Cybersecurity isn't just about defense—it's about understanding the offense. With penetration testing, organizations can learn to think like an attacker and develop more proactive strategies that anticipate attacks. In this guide, explore 5 scenarios that provide insight into the methods and techniques deployed in real-world pen testing engagements, including: Using a password spray attack to...

News Article

The Futurum Group: Black Hat 2024 Reflections: Security Challenges Demand Rethink on Tools and Processes

Mon, 09/23/2024

The Futurum Group’s analysis of Black Hat 2024 highlights how the growing complexity of cybersecurity tools is driving the need for streamlined platforms. Fortra is mentioned alongside other leading vendors for offering solutions that reduce tool sprawl, cut costs, and close security gaps.Originally published by The Futurum Group.Excerpt: "The cybersecurity market has long been driven by user...

News Article

Forbes: Critical Windows 10 Update Security Glitch Fix Confirmed By Microsoft

By Tyler Reguly on Thu, 09/19/2024

Microsoft has identified and confirmed a fix for a critical security vulnerability introduced by a recent Windows 10 update.

Blog

Patch Tuesday Update September 2024

By Tyler Reguly on Thu, 09/12/2024

Today, we get four vulnerabilities that have seen active exploitation, one of which has also been publicly disclosed.

Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024

In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...

News Article

How to Fortify Defenses Before Threats Materialize

By Chris Reffkin on Mon, 09/09/2024

Cyber threats are becoming more sophisticated and frequent, yet many organizations still face challenges due to limited resources. In ITSecurityWire, Fortra's Chris Reffkin highlights prioritizing remediation, closing the skills gap, and ongoing improvement.

News Article

Hosting Advice: Leading Cybersecurity Provider Empowers Businesses to Bolster Infrastructure Protection

By Rohit Dhamankar on Fri, 08/30/2024

Hackers are constantly changing their tactics and using new technologies to infiltrate systems, leaving companies in a constant battle to protect their security. In a recent Hosting Advice article, Rohit Dhamankar dives into how cyber threats keep evolving and why businesses need to tweak their security game.

News Article

MSN: The Ultimate Bsod — This Windows Driver Security Flaw Could Crash Your Whole System, and Microsoft Is Still Yet to Fix It

Tue, 08/20/2024

Cybersecurity researchers have found a new vulnerability in Windows that allows threat actors to completely brick devices and cause serious data loss.

News Article

Neowin: Windows 11/10 system driver has BSOD-triggering CVE-2024-6768 flaw on fully updated PCs

Tue, 08/20/2024

Fortra’s discovery of CVE-2024-6768 comes on the heels of the Crowdstrike outage, which also led to the blue screen of death.

News Article

Tom’s Guide: Windows 10 and 11: A Flaw Causes the Blue Screen of Death, Even if Your PC Is up to Date

Tue, 08/20/2024

CVE-2024-6768 can cause a Blue Screen of Death on Windows 10 and 11 PCs, even if all updates have been applied. Fortunately, this vulnerability requires attackers to have physical access to the targeted machine.

News Article

Dark Reading: CLFS Bug Crashes Even Updated Windows 10, 11 Systems

Tue, 08/20/2024

A Fortra researcher found a simple bug in the Common Log File System (CLFS) driver that can instantly trigger the infamous blue screen of death across any recent versions of Windows.

News Article

Microsoft Threat Intelligence Podcast: Disrupting Cracked Cobalt Strike

By Bob Erdman on Thu, 08/15/2024

Bob Erdman appeared on this week’s Microsoft Threat Intelligence Podcast to discuss the joint effort between Microsoft and Fortra to tackle the illegal use of cracked Cobalt Strike software.

Blog

Patch Tuesday Update August 2024

By Tyler Reguly on Thu, 08/15/2024

The three CVSS 9.8 vulnerabilities included in this month’s patch drop are likely to be the first thing that catches anyone’s attention this month. All three are remote, unauthenticated code execution, the very type of vulnerability where we previously would have used the word, “wormable.”

News Article

Adopting Zero Trust Podcast- Applying Vulnerability Management to Zero Trust: Insights from Fortra’s Tyler Reguly

By Tyler Reguly on Wed, 08/07/2024

Fortra’s Tyler Reguly was recently featured on the Adopting Zero Trust podcast, where he delved into the critical role of vulnerability management within a Zero Trust framework.

News Article

Supply Chain Digital: Fortra: How to Guard Against Supply Chain Attacks

By Theo Zafirakos on Mon, 08/05/2024

Supply chain cyberattacks can trigger widespread disruptions, impacting multiple business functions and areas with compounded, cascading effects. In this article in Supply Chain Digital, Theo Zafirakos outlines strategies companies can put in place to guard against supply chain attacks.

Guide

Guide to Creating a Proactive Cybersecurity Strategy

Cyber attacks are common, with 89% of companies experiencing an attack in the last 12 months*. It’s time to stop asking if attacks will occur and start asking if you can stop attacks from being successful. One of the best ways to answer this question is by employing a proactive security program. Using assessment and testing to harden your cybersecurity measures, proactive security: Uncovers...

News Article

IT Nerd: Exclusive Insights from Fortra’s 2024 Penetration Testing Report

By Chris Reffkin on Fri, 06/28/2024

Fortra CISO Chris Reffkin spoke with IT Nerd and shared valuable insights from Fortra’s 2024 Penetration Testing Report.

News Article

The AI Journal: From Criminal Pastime to Cybersecurity Tool

Thu, 03/14/2024

Ethical hacking has become one of the most powerful tools for preventing cyber threats. Kyle Gaertner spoke with The AI Journal about the tool's importance.

Blog

Cobalt Strike and Outflank Security Tooling: Friends in Evasive Places

Wed, 08/09/2023

Blog

A Day in the Life of a SOC Team

Thu, 04/06/2023

Managed detection and response (MDR) would be nothing without a SOC (security operations center). These are the people who make Alert Logic's MDR services so dependable. It’s time you met them.

Decoding the Attacker Mindset: Pen Testing Revelations

The Futurum Group: Black Hat 2024 Reflections: Security Challenges Demand Rethink on Tools and Processes

Forbes: Critical Windows 10 Update Security Glitch Fix Confirmed By Microsoft

Patch Tuesday Update September 2024

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

How to Fortify Defenses Before Threats Materialize

Hosting Advice: Leading Cybersecurity Provider Empowers Businesses to Bolster Infrastructure Protection

MSN: The Ultimate Bsod — This Windows Driver Security Flaw Could Crash Your Whole System, and Microsoft Is Still Yet to Fix It

Neowin: Windows 11/10 system driver has BSOD-triggering CVE-2024-6768 flaw on fully updated PCs

Tom’s Guide: Windows 10 and 11: A Flaw Causes the Blue Screen of Death, Even if Your PC Is up to Date

Dark Reading: CLFS Bug Crashes Even Updated Windows 10, 11 Systems

Microsoft Threat Intelligence Podcast: Disrupting Cracked Cobalt Strike

Patch Tuesday Update August 2024

Adopting Zero Trust Podcast- Applying Vulnerability Management to Zero Trust: Insights from Fortra’s Tyler Reguly

Supply Chain Digital: Fortra: How to Guard Against Supply Chain Attacks

Guide to Creating a Proactive Cybersecurity Strategy

IT Nerd: Exclusive Insights from Fortra’s 2024 Penetration Testing Report

The AI Journal: From Criminal Pastime to Cybersecurity Tool

Cobalt Strike and Outflank Security Tooling: Friends in Evasive Places

A Day in the Life of a SOC Team

Contact Information

Privacy Policy

Cookie Policy

Impressum