Webinar 07/07: A Practitioner’s Guide to Cloud Security and Compliance Processes
Jul06

Webinar 07/07: A Practitioner’s Guide to Cloud Security and Compliance Processes

Securing your cloud environment and ensuring compliance with data protection regulation can become a challenge when you scale up cloud usage. Security teams frequently find that their tried and trusted security policies for on-premises infrastructure are not effective at mitigating the risks of decentralized cloud usage. If risks are not mitigated, misconfigurations could easily occur that expose sensitive cloud data. Developing...

Read More
Critical Vulnerabilities Identified in Apache Guacamole Remote Access System
Jul03

Critical Vulnerabilities Identified in Apache Guacamole Remote Access System

Security researchers have discovered multiple vulnerabilities in the Apache Guacamole remote access system used by thousands of companies to support home workers. Apache Guacamole is a clientless remote desktop gateway that allows remote workers to access their corporate computers or virtual desktops in the cloud through a web browser. Apache Guacamole supports standard protocols such as VNC, SSH, RDP. The Guacamole server uses one of...

Read More
Microsoft Releases Out of Band Fixes for Two Serious Flaw in the Windows Codecs Library
Jul02

Microsoft Releases Out of Band Fixes for Two Serious Flaw in the Windows Codecs Library

Microsoft has released an out of band update to correct two serious vulnerabilities in the Windows Codecs library, which, if exploited, could allow remote code execution. The operating system uses the built-in Windows Codecs library to handle multimedia content such as photos and videos and handles how large multimedia files are compressed and decoded for playback within applications. The flaws are both concerned with how the Windows...

Read More
Warning Issued Over Maximum Severity Vulnerability in Palo Alto Networks Products
Jul01

Warning Issued Over Maximum Severity Vulnerability in Palo Alto Networks Products

U.S. Cyber Command has issued a warning about a maximum severity vulnerability in the Palo Alto Networks’ operating system. While the flaw is not currently being exploited in the wild, it will be. Advanced persistent threat actors are expected to attempt to exploit the flaw so prompt patching is essential. The severity of this flaw should not be underestimated. The vulnerability, tracked as CVE-2020-2021, is an authentication bypass...

Read More
CloudHealth by VMware Now Available Through Azure Marketplace
Jul01

CloudHealth by VMware Now Available Through Azure Marketplace

The CloudHealth multi-cloud management platform has been added to the Microsoft Azure marketplace. The VMware platform allows cloud users to gain full visibility into their entire cloud footprint to help with operational governance, financial management, and cost control. While organizations are transitioning to the cloud to improve flexibility, scalability, collaboration, and reduce IT costs, many are failing to see the full benefits...

Read More