Blog
White House Tells All: 11 Major Government Breaches Last Year
By Antonio Sanchez on Fri, 07/12/2024
A recent report released by the White House revealed the circumstances, tactics, and results of the 11 cybersecurity incidents determined by agencies to meet the threshold for “major incidents” in the 2023 fiscal year. See the pitfalls and spot the similarities.
Blog
3 Key Takeaways from AWS re:Inforce 2024
By Mike Reed on Thu, 07/11/2024
Every year, AWS re:Inforce brings together cloud security specialists and AWS experts alike to see and advance what’s new on the cloud security horizon. Fortra’s Mike Reed, Director of Global Alliances, walks us through what he saw on the ground floor as he covers several of this year’s key highlights.
Blog
Patch Tuesday Update July 2024
By Tyler Reguly on Thu, 07/11/2024
The first thing that everyone’s going to talk about this month is SQL Server. More than a quarter of the CVEs assigned by Microsoft this month describe SQL Server vulnerabilities. Thankfully, none of them are critical based on their CVSS scores and they’re all listed as “Exploitation Less Likely.”
Emerging Threats
ServiceNow Remote Code Execution Vulnerability
Wed, 07/10/2024
Fortra is actively investigating a vulnerability in the ServiceNow Vancouver and Washington, D.C. Now Platform releases. This vulnerability, CVE-2024-4879, could enable an unauthenticated user to remotely execute code within the Now Platform. ServiceNow has released an update, patches, and hot fixes to address this vulnerability.
Live Event
Aug
07
10:00am - 4:00pm MDT
Live Event
Sep
24
All day
Live Event
10:00 - 11:00am CDT
John Salmi
Press Release
Europol Coordinates Global Action Against Criminal Abuse of Cobalt Strike
Law enforcement has teamed up with the private sector to fight against the abuse of a legitimate security tool by criminals who were using it to infiltrate victims’ IT systems.
Emerging Threats
OpenSSH Vulnerability - "regreSSHion"
Tue, 07/02/2024
Fortra is actively researching a new vulnerability in OpenSSH dubbed “regreSSHion”. This remote code execution vulnerability – CVE-2024-6387 – could allow an unauthenticated remote attacker to execute arbitrary code as root. Fortra recommends updating sshd as soon as possible to mitigate this threat.
Quote
Get Custom Penetration Testing Services Pricing
Find Your VulnerabilitiesCore Security's Security Consulting Services (SCS) simulates trending and new cyber threats to uncover security weaknesses, comply with regulatory compliance standards, and strengthen your security landscape. See how affordable pen testing can be, complete the form and get a customized quote from our experts based on your security needs.Get More With Security Consulting...
News Article
AIthority: Role of AI in Cybersecurity
By John Grancarich on Fri, 06/28/2024
How can companies utilize AI in cybersecurity? John Grancarich, Chief Strategy Officer at Fortra, spoke with AIthority about the role of AI in security operations.
News Article
Cyber Defense Magazine: New Phishing Campaign Using AI Generated Emails, Human Live Chat to Target Social Media Business Accounts
By Michael Tyler on Fri, 06/28/2024
In this Cyber Defense Magazine article, Michael Tyler, Sr. Director of Security Operations at Fortra, discusses a sophisticated phishing campaign targeting Meta business accounts. He explains the tactics behind the campaign and shares tips to protect against it.
News Article
The ChannelPro Network: Voice of the Vendor
Fri, 06/28/2024
In her interview with The ChannelPro Network, Michaela Grundman, Associate VP of Product Management at Fortra, introduced the Fortra Platform and discussed how it helps mitigate multi-vector attacks.
News Article
IT Nerd: Exclusive Insights from Fortra’s 2024 Penetration Testing Report
By Chris Reffkin on Fri, 06/28/2024
Fortra CISO Chris Reffkin spoke with IT Nerd and shared valuable insights from Fortra’s 2024 Penetration Testing Report.