Webinar 07/07: A Practitioner’s Guide to Cloud Security and Compliance Processes
Securing your cloud environment and ensuring compliance with data protection regulation can become a challenge when you scale up cloud usage. Security teams frequently find that their tried and trusted security policies for on-premises infrastructure are not effective at mitigating the risks of decentralized cloud usage. If risks are not mitigated, misconfigurations could easily occur that expose sensitive cloud data. Developing...
Critical Vulnerabilities Identified in Apache Guacamole Remote Access System
Security researchers have discovered multiple vulnerabilities in the Apache Guacamole remote access system used by thousands of companies to support home workers. Apache Guacamole is a clientless remote desktop gateway that allows remote workers to access their corporate computers or virtual desktops in the cloud through a web browser. Apache Guacamole supports standard protocols such as VNC, SSH, RDP. The Guacamole server uses one of...
Microsoft Releases Out of Band Fixes for Two Serious Flaw in the Windows Codecs Library
Microsoft has released an out of band update to correct two serious vulnerabilities in the Windows Codecs library, which, if exploited, could allow remote code execution. The operating system uses the built-in Windows Codecs library to handle multimedia content such as photos and videos and handles how large multimedia files are compressed and decoded for playback within applications. The flaws are both concerned with how the Windows...
Warning Issued Over Maximum Severity Vulnerability in Palo Alto Networks Products
U.S. Cyber Command has issued a warning about a maximum severity vulnerability in the Palo Alto Networks’ operating system. While the flaw is not currently being exploited in the wild, it will be. Advanced persistent threat actors are expected to attempt to exploit the flaw so prompt patching is essential. The severity of this flaw should not be underestimated. The vulnerability, tracked as CVE-2020-2021, is an authentication bypass...
CloudHealth by VMware Now Available Through Azure Marketplace
The CloudHealth multi-cloud management platform has been added to the Microsoft Azure marketplace. The VMware platform allows cloud users to gain full visibility into their entire cloud footprint to help with operational governance, financial management, and cost control. While organizations are transitioning to the cloud to improve flexibility, scalability, collaboration, and reduce IT costs, many are failing to see the full benefits...