Watch this webinar to learn how to effectively leverage a web-based document & workflow management solution to address the top five document management use cases.
Finally, a Success Management team who wants you to succeed as much as you do. Work directly with Fortra Customer Engagement and find out how it feels to have two teams powering your goals.
In a new article for CyberTech Insights, John Grancarich, Fortra's Chief Strategy Officer, explores why security awareness training matters more than ever. Drawing from personal experiences with cyber extortion and phishing, John highlights how continuous practice can better prepare us for real-world risks.Originally published in CyberTech Insights.Excerpt:“We’re not going to get any less busy, so...
Fortra’s cybersecurity experts share insights into their customers’ top concerns and strategies for 2025. This article uncovers how businesses prepare to navigate the evolving cybersecurity landscape, from static budgets to compliance pressures and modern threats.
When disaster strikes, scammers follow. Antonio Sanchez, Principal Cybersecurity Evangelist at Fortra, shares key tips on how to avoid scams and ensure your donations are secure after hurricanes.
As the world prepares for the 2024 election cycle, cybersecurity, disinformation, and AI-driven manipulation are emerging as major threats to democratic processes. From deepfakes to foreign influence campaigns, the risks to election integrity are growing. Individuals, businesses, and governments must unite to protect global elections from these evolving challenges.
Fortra is actively researching vulnerabilities in NVIDIA Container Toolkit. A malicious container can exploit these vulnerabilities to gain access to the host filesystem in read-only mode. Successful exploitation and subsequent actions can lead to code execution and privilege escalation. The greatest risk appears to be that an attacker can escape from their container and gain control over other containers on the same host.
NVIDIA has released patched versions of the affected products. Customers are recommended to update to a patched version as soon as possible.
On The Tech Talks Daily Podcast, Michael Tyler sheds light on a phishing campaign that exploited Yousign’s trusted domain to bypass email security gateways.
Fortra is actively researching several vulnerabilities in UNIX systems. These vulnerabilities can allow a remote unauthenticated attacker to achieve remote code execution via a UDP packet to port 631 if the CUPS port is open. LAN attacks are also possible via spoofing zeroconf / mDNS / DNS-SD advertisements. Customers are recommended to update the CUPS package to mitigate this vulnerability.
Insider threats—whether intentional or accidental—can have devastating effects on businesses of all sizes. Antonio Sanchez of Fortra, along with other industry experts, shares key insights into the evolving landscape of insider threats and offers strategies for mitigating these risks.
Join us as we proudly sponsor the VMUG UserCon on October 24th! Swing by for a chat about MFT and see how we can help with your IT problems. Haven’t secured your spot yet? It’s free!
...
Times have changed since the happy-go-lucky internet days of the dot-com boom. Find out just how much, what that means, and what cybersecurity practitioners can do about it.
This blog is about two chained bugs: Stage one is a DLL Hijacking bug caused by the remapping of ROOT drive and stage two is an Activation Cache Poisoning bug managed by the CSRSS server.The first stage was presented in detail at Ekoparty 2023 in the presentation called "I'm High" by Nicolás Economou from BlueFrost Security. He explained how to exploit the vulnerability which, at the time, had not...
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integrity process without the intervention of a UAC prompt.