RSS_Virtulization

CVE-2020-16898: “Bad Neighbor” CVSS Score: 8.8 Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C OverviewToday, Microsoft announced a critical vulnerability in the Windows IPv6 stack, which allows an attacker to send maliciously crafted packets to potentially execute arbitrary code on a remote system. The proof-of-concept shared with MAPP (Microsoft Active Protection Program) members is both extremely simple and perfectly reliable. It results in an immediate BSOD (Blue Screen of Death), but more so, indicates the likelihood of exploitation for those who can manage…

Securing documents before cloud Before the cloud, organizations would collaborate and store documents on desktop/laptop computers, email and file servers. Private cloud use-cases such accessing and storing documents on intranet web servers and network attached storage (NAS) improved the end-user’s experience. The security model followed a layered approach, where keeping this data safe was just as important as not allowing unauthorized individuals into the building or data center. This was followed by a directory service…

2020 has seen cloud adoption accelerate with Microsoft Teams as one of the fastest growing collaboration apps, McAfee customers use of Teams increased by 300% between January and April 2020. When we looked into Teams use in more detail in June, we found these statistics, on average, in our customer base:   Teams Created                                                                 367 Members added to Teams                                      6,526 Number of Teams Meetings                              106,000 3rd Party Apps added to Teams                                 185 Guest users…

For many, Amazon Prime Day is an opportunity to score some great deals. For hackers, Amazon’s annual discount shopping campaign is an opportunity to target unsuspecting shoppers with phishing scams. In fact, researchers at McAfee Labs previously uncovered a phishing kit specifically created to steal personal information from Amazon customers in America and Japan just in time for last year’s Amazon Prime Day.  Let’s dive into the details of how this phishing kit worked and what you can do to protect yourself while hunting…

If you are someone who works for a cloud service provider in the business of federal contracting, you probably already have a good understanding of FedRAMP. It is also likely that our regular blog readers know the ins and outs of this program. For those who are not involved in these areas, however, this acronym may be more unfamiliar. Perhaps you have only heard of it in passing conversation with a few of your expert…

SANTA CLARA, Calif., Oct. 13, 2020 /PRNewswire/ — Palo Alto Networks (NYSE: PANW) today announced Prisma™ Cloud 2.0 which includes four new cloud security modules, enhancing its standing as the industry’s only comprehensive Cloud Native Security Platform (CNSP). A CNSP is designed to secure multi- and hybrid-cloud environments and cloud native applications integrating security across the full DevOps lifecycle. This announcement integrates Aporeto and builds on the November 2019 introduction of Palo Alto Networks Prisma Cloud….

News Detail In the Gartner 2020 Critical Capabilities for WAN Edge Infrastructure, VMware Receives Highest Product Scores in Three of Five Use Cases and Excellent Rating in Four of Five Use Cases PALO ALTO, Calif.–(BUSINESS WIRE)– VMware, Inc. (NYSE: VMW) today announced it has again been positioned as a Leader in the Gartner 2020 Magic Quadrant for WAN Edge Infrastructure(1). This is the third … Tue, 13 Oct 2020 00:00:00 In the Gartner 2020 Critical…

U.S. Government agencies issue joint cybersecurity advisory cautioning that advanced threat groups are chaining vulnerabilities together to gain entry into government networks and elevate privileges. Update October 13, 2020: The Identifying affected systems section has been updated to include details about the availability of a Zerologon scan template for Tenable.io, Tenable.sc and Nessus. Background On October 9, the Cybersecurity Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory….

Stay Connected and Protected During Work, School, and Play These days, work and home mean practically the same thing. Our house is now an office space or a classroom, so that means a lot of our day-to-day happens online. We check emails, attend virtual meetings, help our children distance learn, use social media platforms to check in on our friends and family – our entire lives are digital! This increase in connectivity could mean more…