Microsoft Azure Security Tools Besides the Microsoft Security Response Center (MSRC), Microsoft offers a handful of security related tools and APIs which are available via Web-based consoles, Microsoft Graph API and Powershell. By navigating to https://security.microsoft.com/info, you should be able to utilize all available security tools and consoles as described […]
Introduction The Covid-19 era has introduced a series of changes which are still being unfolded and which are bringing a profound impact on the lives of billions of people around the world. New terms such as “the future of work”, “remote working” and “remote learning” are being used in at […]
Case Citrix announced on November 10th 2020 the following vulnerabilities. CVE ID Description Vulnerability Type Pre-conditions CVE-2020-8269 An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM CWE-269: Improper Privilege Management The attacker must be an authenticated user on the Windows VDA with write access to the C:\ directory CVE-2020-8270 An unprivileged Windows user on the VDA or a SMB user can perform arbitrary command execution as SYSTEM […]
Citrix released today (11th June 2020) a security bulletin alert regarding a discovered software vulnerability in the Citrix Workspace App client: https://support.citrix.com/article/CTX275460 A new version of Citrix Workspace app client for Windows has been released. Citrix strongly recommends that all customers upgrade Citrix Workspace app to the latest version via Auto Update, or by directly running […]
In 2016, 81% of hacking-related breaches leveraged stolen and/or weak passwords. The most common way credentials are stolen is through phishing, and these attacks often take advantage of the prevalence of password reuse. Turning on multi-factor authentication (MFA) and maintaining good password hygiene greatly strengthen account security. Together, LastPass and […]
The Tinywall software firewall has recently been revamped to its new major version, i.e. version 3.0. The following release notes from the developer and creator of TinyWall outline its new functionality. TinyWall 3.0 focuses on improving its firewall engine, and achieves this by not piggybacking on the built-in firewall in […]
Introduction to security and privacy Security and privacy is a frequent topic of discussion nowadays. With ever increasing IT infrastructures at the service provider and enterprise level as well as with increasing IT knowledge among the average knowledge workers and home users, being aware of security and privacy fundamentals is […]
The Cybersecurity and Infrastructure Security Agency (CISA) has released a utility that enables users and administrators to test whether their Citrix Application Delivery Controller (ADC) and Citrix Gateway software is susceptible to the CVE-2019-19781 vulnerability. According to Citrix Security Bulletin CTX267027, beginning on January 20, 2020, Citrix will be releasing new versions of […]
By Vaidyanathan Iyer, Security Software Leader, IBM India/South AsiaToday, the biggest test chief information security officers (CISOs) face is to find the perfect balance between watertight security and seamless user experience across all the endpoints in their network. This even as the traditional management of endpoints has undergone a sea change from […]
An Azure Active Directory (Azure AD) business-to-business (B2B) collaboration user is a user with UserType = Guest. This guest user typically is from a partner organization and has limited privileges in the inviting directory, by default. Depending on the inviting organization’s needs, an Azure AD B2B collaboration user can be […]
