Security News

Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks
2021-03-16 03:01

Microsoft on Monday released a one-click mitigation software that applies all the necessary countermeasures to secure vulnerable environments against the ongoing widespread ProxyLogon Exchange Server cyberattacks. Called Exchange On-premises Mitigation Tool, the PowerShell-based script serves to mitigate against current known attacks using CVE-2021-26855, scan the Exchange Server using the Microsoft Safety Scanner for any deployed web shells, and attempt to remediate the detected compromises.

Microsoft Ships One-Click Mitigation Tool for Exchange Attacks
2021-03-16 00:22

Microsoft's scramble to address the fallout from the zero-day attacks against on-prem Exchange Server installations continued this week with the release of a one-click mitigation tool help businesses contain the damage. The new Exchange On-premises Mitigation Tool is aimed at companies without dedicated security or IT teams to manage patching and post-incident forensics.

Microsoft releases one-click Exchange On-Premises Mitigation Tool
2021-03-16 00:13

Microsoft has released a one-click Exchange On-premises Mitigation Tool tool to allow small business owners to easily mitigate the recently disclosed ProxyLogon vulnerabilities. This month, Microsoft disclosed that four zero-day vulnerabilities were being actively used in attacks against Microsoft Exchange.

Microsoft shares detection, mitigation advice for Azure LoLBins
2021-03-09 18:05

Attackers can abuse a wide range of Window legitimate tools, including but not limited to Microsoft Defender, Windows Update, and even the Windows Finger command. While being legitimately used by thousands of admins each day for managing their organizations' Azure fleets, their capabilities can also be used for malicious purposes, including circumventing network defense lines.

Microsoft Shares Additional Mitigations for Exchange Server Vulnerabilities Under Attack
2021-03-06 15:30

Microsoft on Friday released alternative mitigation measures for organizations who have not been able to immediately apply emergency out-of-band patches released earlier this week that address vulnerabilities being exploited to siphon e-mail data from corporate Microsoft Exchange servers. "These mitigations are not a remediation if your Exchange servers have already been compromised, nor are they full protection against attack," Microsoft warned in a blog post.

The economics behind global disinformation engines and strategies for mitigation
2021-03-04 04:00

Broad propaganda penetration is achieved by following a specific set of steps, according to a new IDC Government Insights report. The most successful generators of false news use large networks of pop-up news sites and bot networks to help echo sentiments and increase pass-along rates.

SentinelOne acquires Scalyr to deliver XDR platform for realtime threat mitigation across enterprise and cloud
2021-02-11 00:15

With this acquisition, SentinelOne will be able to ingest, correlate, search, and action data from any source, delivering the industry's most advanced integrated XDR platform for realtime threat mitigation across the enterprise and cloud. Through this acquisition, SentinelOne sets the bar for the XDR market and solves one of the biggest challenges in delivering a fully integrated XDR platform: ingesting and actioning all operational data in realtime from a security-first perspective.

What analytics can unveil about bot mitigation tactics
2021-01-15 06:00

These bots work to expose and take advantage of vulnerabilities at a rapid pace, stealing critical personal and financial data, scraping intellectual property, installing malware, contributing to DDoS attacks, distorting web analytics and damaging SEO. Luckily, tools, approaches, solutions and best practices exist to help companies combat these malicious bots, but cybercriminals have not been resting on their laurels and are constantly working on ways to bypass the protections used to block bot activity. It is important to regularly review what tactics you are using to combat bot traffic and analyze your success rate, as this process will help you understand whether your mitigation approach has already been figured out and worked around by cybercriminals.

BAE Systems unveils cyber-threat detection and mitigation solution for U.S. military platforms
2020-10-15 01:30

BAE Systems has unveiled a next-generation cyber-threat detection and mitigation solution for U.S. military platforms. The system's cyber resilience capabilities can be integrated into ground, air, and space vehicles to protect our warfighters and platforms from cyber attacks designed to access and degrade mission capabilities.

Corero Network Security SmartWall TDS enhanced with automatic DDoS detection and mitigation
2020-10-09 00:15

Corero Network Security announces that it has released a major update to its SmartWall Threat Defense System. Corero's SmartWall Threat Defense System already delivers line-rate performance for the fastest, always-on, real-time DDoS protection but these new enhancements propel the solution to industry leading levels of accuracy and effectiveness for automatic DDoS detection and mitigation.