Dieser neue Sicherheits-Feed ist eine Ressource für MSPs und IT-Profis, um über die neuesten Cybersicherheitsnachrichten und Schwachstellenwarnungen in Bezug auf Betriebssysteme, Browser, VPN und RDP auf dem Laufenden zu bleiben. Schützen Sie Ihr Unternehmen und Ihre Kunden mit aktuellen Sicherheitsnachrichten.

General Advisory: Microsoft Releases One-Click Mitigation Tool for Critical On-Premises Exchange Vulnerabilities

Monday, March 15, 2021

Microsoft has released a one-click mitigation tool as an interim mitigation for on-premises exchange vulnerabilities. It’s designed to prevent attacks for servers that have not yet applied the on-premises exchange security updates.

The on-premises exchange vulnerabilities are being exploited in the wild at an alarming rate, causing CISA to issue an emergency directive on March 3rd, 2021.

Attackers can gain persistent system access and control of an enterprise network without authenticating, and are known to install malware on compromised systems.

Any on-premises exchange servers should run the mitigation tool immediately to prevent exploitation of these vulnerabilities and then apply security updates as soon as possible.

Read the full details here:
One-Click Microsoft Exchange On-Premises Mitigation Tool – March 2021

General Advisory: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities

Wednesday, March 3, 2021

CISA has issued an emergency directive after observing active exploitation of vulnerabilities in Microsoft Exchange on-premises products. Successful exploitation of these vulnerabilities allows an attacker to access on-premises Exchange Servers, enabling them to gain persistent system access and control of an enterprise network.

Neither the vulnerabilities nor the identified exploit activity is currently known to affect Microsoft 365 or Azure Cloud deployments.

Read the full details here:
Mitigate Microsoft Exchange On-Premises Product Vulnerabilities

General Advisory: Massive increase in RDP attack attempts during 2020

Monday, February 8, 2021

Between Q1 and Q4 2020, ESET telemetry recorded a staggering 768% increase in RDP attack attempts.

Read the full details here:
ESET issues its Q4 2020 Threat Report recording a massive increase in RDP attack attempts since Q1

General Advisory: Heightened Cybersecurity Threats Amid COVID-19

Wednesday, December 30, 2020

The healthcare sector is experiencing a new increase in cyber risk due to resource constraints from COVID-19 and a transition to remote work environments.

Read the full CISA blog here:
Confronting heightened cybersecurity threats amid COVID-19

General Advisory: Enterprise VPN Security Considerations for Working Remotely

Friday, March 13, 2020

As organizations prepare for possible impacts of Coronavirus Disease 2019 (COVID-19), many may consider alternate workplace options for their employees. Remote work options—or telework—require an enterprise virtual private network (VPN) solution to connect employees to an organization’s information technology (IT) network. As organizations elect to implement telework, the Cybersecurity and Infrastructure Security Agency (CISA) encourages organizations to adopt a heightened state of cybersecurity.

Read the full details here:
CISA NCAS Alert: Enterprise VPN Security

Subscribe to the Feed