All posts by David

Special Webcast: Vetting Your Intel – Techniques and Tools for False Positive Analysis – May 15, 2019 1:00pm US/Eastern

This post was originally published on this site

Speakers: Robert M. Lee and Tarik Saleh

For blue teams and network defenders, false positives are a common challenge, and often result in alert fatigue. A consequence of alert fatigue, according to a study conducted by Cloud Security Alliance, is that 31.9% of IT security professionals ignore alerts. Alternatively, some security professionals blindly trust all alerts, which if not validated correctly can bring dire consequences to your network . Join DomainTools Senior Security Engineer, Tarik Saleh, and SANS instructor, Robert M. Lee, to explore areas where blue teams can identify false positives, methods of validating alerts, and real world applications of these examples.

In this webinar you will learn how to:

  • Set up your own analysis environment
  • Vet your IDS alerts
  • Evaluate your A/V alerts

VMware Releases Security Updates

This post was originally published on this site

Original release date: May 14, 2019

VMware has released security updates to address vulnerabilities in vCenter Server, ESXi, Workstation, and Fusion. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review VMware Security Advisories VMSA-2019-0007 and VMSA-2019-0008 and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.

Special Webcast: Hacking without Domain Admin – May 14, 2019 3:30pm US/Eastern

This post was originally published on this site

Speakers: Tim Medin and Mike Saunders

Tim and Mike will show you tools and techniques to find vulnerabilities and demonstrate risk, without using Domain Administrator (DA) access. DA access is the goal for many penetration tests and red teams, but it is misguided. DA is a tool, not a destination. Sometimes, a penetration tester or red team will be unable to obtain this access, but it does not mean that the test is without value.

Adobe Releases Security Updates

This post was originally published on this site

Original release date: May 14, 2019

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Adobe Security Bulletins APSB19-29, APSB19-26, and APSB19-18 and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.

Microsoft Releases May 2019 Security Updates

This post was originally published on this site

Original release date: May 14, 2019

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft’s May 2019 Security Update Summary and Deployment Information and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.

Intel Releases Security Updates, Mitigations for Multiple Products

This post was originally published on this site

Original release date: May 14, 2019

Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.
 
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Intel Product Security Center Advisories page, apply the necessary mitigations, and refer to vendors for appropriate patches, when available.


This product is provided subject to this Notification and this Privacy & Use policy.

Samba Releases Security Updates

This post was originally published on this site

Original release date: May 14, 2019

The Samba Team has released security updates to address a vulnerability in Samba. An attacker could exploit this vulnerability take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Samba Security Announcement for CVE-2018-16860 and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.

Special Webcast: Speaking the Language of the Board – May 14, 2019 1:00pm US/Eastern

This post was originally published on this site

Speakers: Mat Newfield

Hear Unisys’ Chief Information Security Officer, Mathew Newfield, speak about how CISOs are faced with the challenge of translating technical cyber risks into the language of business as boardroom discussions increasingly focus on cybersecurity. Quantifying the likelihood and impact of these risks in financial terms is essential to gaining the executive buy-in you need to protect your organization.

Special Webcast: A Better Way to Answer the Question Are We Secure? – May 14, 2019 1:00pm US/Eastern

This post was originally published on this site

Speakers: Jonathan Goldberger, Matt Soderlund

What if you could predict your companys likelihood and cost of a loss? What if you could communicate to the board, to your CISO, and to the auditor an actual return on investment (ROI) for new security controls? What if you could determine when the business should defer the risk to a cyber insurance policy? Learn how to answer the tough questions with Unisys TrustCheck.

Facebook Releases Security Advisory for WhatsApp

This post was originally published on this site

Original release date: May 14, 2019

Facebook has released a security advisory to address a vulnerability in WhatsApp. A remote attacker could exploit this vulnerability to take control of an affected device.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users to review the Facebook Security Advisory for CVE-2019-3568 and upgrade to the appropriate version.


This product is provided subject to this Notification and this Privacy & Use policy.