Resources

News Article

Anti-Phishing Working Group (APWG): Phishing Activity Trends Report for Q2 2024

By John Wilson on Wed, 08/28/2024

The Anti-Phishing Working Group (APWG) has released its Phishing Activity Trends Report for Q2 2024, offering an in-depth analysis of recent phishing attacks and identity theft techniques. Fortra contributed to this report, with John Wilson providing insights on business email compromise (BEC).

Blog

The Password Atmosphere – Problem, or Progress?

By Lisa Lombardo on Mon, 08/26/2024

Password security has evolved from simple physical protections to complex, multi-factor authentication systems. Experts suggest that while traditional passwords are becoming outdated, combining them with new technologies like biometrics and passkeys offers stronger security. Future trends point towards more user-friendly yet robust methods to safeguard digital access.

Blog

What Is the NIST Risk Management Framework (RMF)?

By Antonio Sanchez on Mon, 08/26/2024

The NIST Risk Management Framework, or RMF, is a voluntary 7-step process used to manage information security and privacy risks. By following the NIST RMF, organizations can successfully implement their own risk management programs, maintain compliance, and address the weaknesses that present the greatest danger to their enterprise.

Blog

Comparing RPA Platforms: Fortra’s Automate vs. Microsoft’s Power Automate

By EJ Stanley on Tue, 08/20/2024

See a head-to-head matchup between RPA platforms—Fortra’s Automate vs. Microsoft’s Power Automate—and compare licensing, functionality, support, and more.

News Article

MSN: The Ultimate Bsod — This Windows Driver Security Flaw Could Crash Your Whole System, and Microsoft Is Still Yet to Fix It

Tue, 08/20/2024

Cybersecurity researchers have found a new vulnerability in Windows that allows threat actors to completely brick devices and cause serious data loss.

News Article

Neowin: Windows 11/10 system driver has BSOD-triggering CVE-2024-6768 flaw on fully updated PCs

Tue, 08/20/2024

Fortra’s discovery of CVE-2024-6768 comes on the heels of the Crowdstrike outage, which also led to the blue screen of death.

News Article

Tom’s Guide: Windows 10 and 11: A Flaw Causes the Blue Screen of Death, Even if Your PC Is up to Date

Tue, 08/20/2024

CVE-2024-6768 can cause a Blue Screen of Death on Windows 10 and 11 PCs, even if all updates have been applied. Fortunately, this vulnerability requires attackers to have physical access to the targeted machine.

News Article

Dark Reading: CLFS Bug Crashes Even Updated Windows 10, 11 Systems

Tue, 08/20/2024

A Fortra researcher found a simple bug in the Common Log File System (CLFS) driver that can instantly trigger the infamous blue screen of death across any recent versions of Windows.

Blog

Why Document Management Projects Fail

By Greg J. Schmidt on Mon, 08/19/2024

Find out how to make sure your document management project is a success.

Blog

My Takeaways from Black Hat USA 2024

By Antonio Sanchez on Mon, 08/19/2024

The importance of resilience and business continuity dominated conversations at Black Hat USA 2024. In this blog, security expert Antonio Sanchez shares his take on this year’s event.

News Article

Forbes: New Windows 10 And 11 Blue Screen Of Death Warning Issued

By Ricardo Narvaja on Fri, 08/16/2024

Fortra recently uncovered a vulnerability in Windows that can cause a blue screen of death. Today, Fortra issued an advisory for Windows vulnerability CVE-2024-6768. Originally published in Forbes.Excerpt: “The potential problems include system instability and denial of service,” Ricardo Narvaja, principal exploit writer with security company Fortra, and the author of the report, said, “malicious...

Blog

89% of Security Awareness Programs Are Focused on Social Engineering in 2024

By Antonio Sanchez on Thu, 08/15/2024

Cybersecurity experts from over 70 countries share their insights, candor, and challenges when it comes to raising the level of cybersecurity awareness in their organizations. Learn how Fortra’s Terranova Security can help.

News Article

Microsoft Threat Intelligence Podcast: Disrupting Cracked Cobalt Strike

By Bob Erdman on Thu, 08/15/2024

Bob Erdman appeared on this week’s Microsoft Threat Intelligence Podcast to discuss the joint effort between Microsoft and Fortra to tackle the illegal use of cracked Cobalt Strike software.

Blog

Patch Tuesday Update August 2024

By Tyler Reguly on Thu, 08/15/2024

The three CVSS 9.8 vulnerabilities included in this month’s patch drop are likely to be the first thing that catches anyone’s attention this month. All three are remote, unauthenticated code execution, the very type of vulnerability where we previously would have used the word, “wormable.”

Blog

How to Balance Document Accessibility with Security

By Greg J. Schmidt on Thu, 08/15/2024

Giving people access to documents is important. But so is document security. Find out how to do both.

Blog

The Three Scariest Things About Sticking With Paper

By Greg J. Schmidt on Wed, 08/14/2024

Are you afraid of going paperless? Overcome your fear—and learn about the frightening consequences of sticking with paper of not going paperless.

Blog

CVE-2024-6768: Improper Validation of Specified Quantity in Input Produces an Unrecoverable State in CLFS.sys Causing a BSoD

By Ricardo Narvaja on Tue, 08/13/2024

IntroductionCVE-2024-6768 is a vulnerability in the Common Log File System (CLFS.sys) driver of Windows, caused by improper validation of specified quantities in input data. This flaw leads to an unrecoverable inconsistency, triggering the KeBugCheckEx function and resulting in a Blue Screen of Death (BSoD). The issue affects all versions of Windows 10 and Windows 11, Windows Server 2016, Server...

Blog

Report Reveals Highest Cost of Data Breach Spike Since Pandemic

By Antonio Sanchez on Thu, 08/08/2024

IBM recently released their 2024 Cost of a Data Breach Report, highlighting some of the surprising cost increases and the reasons behind them.

News Article

Adopting Zero Trust Podcast- Applying Vulnerability Management to Zero Trust: Insights from Fortra’s Tyler Reguly

By Tyler Reguly on Wed, 08/07/2024

Fortra’s Tyler Reguly was recently featured on the Adopting Zero Trust podcast, where he delved into the critical role of vulnerability management within a Zero Trust framework.

News Article

The SupplyChainBrain Podcast: The Latest Plague: A Huge Increase in Supply Chain Cyberattacks

By Theo Zafirakos on Wed, 08/07/2024

Theo Zafirakos recently spoke with The SupplyChainBrain Podcast to address third-party risk management, detail incident response plans and answer the question everyone is asking: Is artificial intelligence the answer to, or bane of, supply chain cybersecurity?

Anti-Phishing Working Group (APWG): Phishing Activity Trends Report for Q2 2024

The Password Atmosphere – Problem, or Progress?

What Is the NIST Risk Management Framework (RMF)?

Comparing RPA Platforms: Fortra’s Automate vs. Microsoft’s Power Automate

MSN: The Ultimate Bsod — This Windows Driver Security Flaw Could Crash Your Whole System, and Microsoft Is Still Yet to Fix It

Neowin: Windows 11/10 system driver has BSOD-triggering CVE-2024-6768 flaw on fully updated PCs

Tom’s Guide: Windows 10 and 11: A Flaw Causes the Blue Screen of Death, Even if Your PC Is up to Date

Dark Reading: CLFS Bug Crashes Even Updated Windows 10, 11 Systems

Why Document Management Projects Fail

My Takeaways from Black Hat USA 2024

Forbes: New Windows 10 And 11 Blue Screen Of Death Warning Issued

89% of Security Awareness Programs Are Focused on Social Engineering in 2024

Microsoft Threat Intelligence Podcast: Disrupting Cracked Cobalt Strike

Patch Tuesday Update August 2024

How to Balance Document Accessibility with Security

The Three Scariest Things About Sticking With Paper

CVE-2024-6768: Improper Validation of Specified Quantity in Input Produces an Unrecoverable State in CLFS.sys Causing a BSoD

Report Reveals Highest Cost of Data Breach Spike Since Pandemic

Adopting Zero Trust Podcast- Applying Vulnerability Management to Zero Trust: Insights from Fortra’s Tyler Reguly

The SupplyChainBrain Podcast: The Latest Plague: A Huge Increase in Supply Chain Cyberattacks

Contact Information

Privacy Policy

Cookie Policy

Impressum