Resources

News Article

Forbes: Critical Windows 10 Update Security Glitch Fix Confirmed By Microsoft

By Tyler Reguly on Thu, 09/19/2024

Microsoft has identified and confirmed a fix for a critical security vulnerability introduced by a recent Windows 10 update.

Blog

Patch Tuesday Update September 2024

By Tyler Reguly on Thu, 09/12/2024

Today, we get four vulnerabilities that have seen active exploitation, one of which has also been publicly disclosed.

Blog

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

By Ricardo Narvaja on Mon, 09/09/2024

In this blog post, I will explain a vulnerability in the Microsoft Windows Desktop Windows Manager (DWM) Core library that I analyzed when the exploit for Core Impact was being developed. This vulnerability allows an unprivileged attacker to execute code as a DWM user with Integrity System privileges (CVE-2024-30051).Since there was not enough public information at the time to develop the exploit,...

News Article

How to Fortify Defenses Before Threats Materialize

By Chris Reffkin on Mon, 09/09/2024

Cyber threats are becoming more sophisticated and frequent, yet many organizations still face challenges due to limited resources. In ITSecurityWire, Fortra's Chris Reffkin highlights prioritizing remediation, closing the skills gap, and ongoing improvement.

News Article

Hosting Advice: Leading Cybersecurity Provider Empowers Businesses to Bolster Infrastructure Protection

By Rohit Dhamankar on Fri, 08/30/2024

Hackers are constantly changing their tactics and using new technologies to infiltrate systems, leaving companies in a constant battle to protect their security. In a recent Hosting Advice article, Rohit Dhamankar dives into how cyber threats keep evolving and why businesses need to tweak their security game.

News Article

MSN: The Ultimate Bsod — This Windows Driver Security Flaw Could Crash Your Whole System, and Microsoft Is Still Yet to Fix It

Tue, 08/20/2024

Cybersecurity researchers have found a new vulnerability in Windows that allows threat actors to completely brick devices and cause serious data loss.

News Article

Neowin: Windows 11/10 system driver has BSOD-triggering CVE-2024-6768 flaw on fully updated PCs

Tue, 08/20/2024

Fortra’s discovery of CVE-2024-6768 comes on the heels of the Crowdstrike outage, which also led to the blue screen of death.

News Article

Tom’s Guide: Windows 10 and 11: A Flaw Causes the Blue Screen of Death, Even if Your PC Is up to Date

Tue, 08/20/2024

CVE-2024-6768 can cause a Blue Screen of Death on Windows 10 and 11 PCs, even if all updates have been applied. Fortunately, this vulnerability requires attackers to have physical access to the targeted machine.

News Article

Dark Reading: CLFS Bug Crashes Even Updated Windows 10, 11 Systems

Tue, 08/20/2024

A Fortra researcher found a simple bug in the Common Log File System (CLFS) driver that can instantly trigger the infamous blue screen of death across any recent versions of Windows.

News Article

Microsoft Threat Intelligence Podcast: Disrupting Cracked Cobalt Strike

By Bob Erdman on Thu, 08/15/2024

Bob Erdman appeared on this week’s Microsoft Threat Intelligence Podcast to discuss the joint effort between Microsoft and Fortra to tackle the illegal use of cracked Cobalt Strike software.

Blog

Patch Tuesday Update August 2024

By Tyler Reguly on Thu, 08/15/2024

The three CVSS 9.8 vulnerabilities included in this month’s patch drop are likely to be the first thing that catches anyone’s attention this month. All three are remote, unauthenticated code execution, the very type of vulnerability where we previously would have used the word, “wormable.”

News Article

Adopting Zero Trust Podcast- Applying Vulnerability Management to Zero Trust: Insights from Fortra’s Tyler Reguly

By Tyler Reguly on Wed, 08/07/2024

Fortra’s Tyler Reguly was recently featured on the Adopting Zero Trust podcast, where he delved into the critical role of vulnerability management within a Zero Trust framework.

News Article

Supply Chain Digital: Fortra: How to Guard Against Supply Chain Attacks

By Theo Zafirakos on Mon, 08/05/2024

Supply chain cyberattacks can trigger widespread disruptions, impacting multiple business functions and areas with compounded, cascading effects. In this article in Supply Chain Digital, Theo Zafirakos outlines strategies companies can put in place to guard against supply chain attacks.

Guide

Guide to Creating a Proactive Cybersecurity Strategy

Cyber attacks are common, with 89% of companies experiencing an attack in the last 12 months*. It’s time to stop asking if attacks will occur and start asking if you can stop attacks from being successful. One of the best ways to answer this question is by employing a proactive security program. Using assessment and testing to harden your cybersecurity measures, proactive security: Uncovers...

News Article

IT Nerd: Exclusive Insights from Fortra’s 2024 Penetration Testing Report

By Chris Reffkin on Fri, 06/28/2024

Fortra CISO Chris Reffkin spoke with IT Nerd and shared valuable insights from Fortra’s 2024 Penetration Testing Report.

Article

What is Intelligent Process Automation (IPA)?

By Ravi Dirckze on Tue, 01/09/2024

Text In nearly all industries, artificial intelligence (AI) is held up as the vision for the future, with the promise to transform every aspect of business. But not all hype lives up to reality....

Guide

Download the "Webdocs Accounts Payable Automation Guide"

Learn About the Inefficiencies of Manual Accounts Payable (AP) Processing and How Webdocs for AP Eliminates Them Labor expenses typically consume 62% of total accounts payable costs. In other words, AP processes are intensive and inefficient when performed manually. Webdocs for AP's automation capabilities pave the way for user and departmental...

Blog

Cobalt Strike and Outflank Security Tooling: Friends in Evasive Places

Wed, 08/09/2023

Blog

Data Classification and Data Loss Prevention (DLP): A Comprehensive Data Protection Strategy

Tue, 05/23/2023

Data is the world’s currency and has been for some time. Protecting data should be at the top of the list for organizations of any size, and the heart of any security strategy. Think about it: the purpose of any firewall, email solution, compliance regulation, or XDR platform is to keep data safe. Why not cut to the heart of it with a dedicated Data Loss Prevention (DLP) solution? And why not...

Blog

A Day in the Life of a SOC Team

Thu, 04/06/2023

Managed detection and response (MDR) would be nothing without a SOC (security operations center). These are the people who make Alert Logic's MDR services so dependable. It’s time you met them.

Forbes: Critical Windows 10 Update Security Glitch Fix Confirmed By Microsoft

Patch Tuesday Update September 2024

Windows DWM Core Library Elevation of Privilege Vulnerability (CVE-2024-30051)

How to Fortify Defenses Before Threats Materialize

Hosting Advice: Leading Cybersecurity Provider Empowers Businesses to Bolster Infrastructure Protection

MSN: The Ultimate Bsod — This Windows Driver Security Flaw Could Crash Your Whole System, and Microsoft Is Still Yet to Fix It

Neowin: Windows 11/10 system driver has BSOD-triggering CVE-2024-6768 flaw on fully updated PCs

Tom’s Guide: Windows 10 and 11: A Flaw Causes the Blue Screen of Death, Even if Your PC Is up to Date

Dark Reading: CLFS Bug Crashes Even Updated Windows 10, 11 Systems

Microsoft Threat Intelligence Podcast: Disrupting Cracked Cobalt Strike

Patch Tuesday Update August 2024

Adopting Zero Trust Podcast- Applying Vulnerability Management to Zero Trust: Insights from Fortra’s Tyler Reguly

Supply Chain Digital: Fortra: How to Guard Against Supply Chain Attacks

Guide to Creating a Proactive Cybersecurity Strategy

IT Nerd: Exclusive Insights from Fortra’s 2024 Penetration Testing Report

What is Intelligent Process Automation (IPA)?

Download the "Webdocs Accounts Payable Automation Guide"

Cobalt Strike and Outflank Security Tooling: Friends in Evasive Places

Data Classification and Data Loss Prevention (DLP): A Comprehensive Data Protection Strategy

A Day in the Life of a SOC Team

Contact Information

Privacy Policy

Cookie Policy

Impressum