BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:
marc-maiffret-fox-news-screenshot

Marc Maiffret Interviewed on Fox News: How Safe is Consumer Data on the ObamaCare Website?

Posted January 17, 2014    Mike Yaffe

Yesterday, Marc Maiffret appeared as a special guest of “The Willis Report” on Fox News where he discussed how safe consumer data is on the ObamaCare website. As background, according to news reports, ObamaCare continues to leave consumer data vulnerable to theft months after security problems were first exposed. In the wake of a Christmas-season…

Categories:
General
Tags:
, , , ,
dell

Dell PowerConnect Products Multiple Vulnerabilities

Disclosed January 17, 2014    Zeroday : 189 days
Vendors: Dell
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker
cisco

Cisco NTP Mode 7 Denial of Service Vulnerability

Disclosed January 15, 2014    Zeroday : 191 days
Vendors: Cisco
Vulnerability Severity: Medium
Exploit Impact: Denial of Service
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
patch-tuesday

January 2014 Patch Tuesday

Posted January 14, 2014    BeyondTrust Research Team

Welcome to 2014! This month is a light month for Patch Tuesday bulletins. Microsoft has released patches for Microsoft Word and Office Web Apps, the Windows Kernel (and drivers), and Microsoft Dynamics AX. There are a total of four bulletins addressing six unique vulnerabilities; all of which are rated as important. The NDProxy zero-day vulnerability…

Categories:
Security Research
Tags:
, , ,
imageline

EZGenerator Cross-Site Request Forgery

Disclosed January 8, 2014    Zeroday : 198 days
Vendors: Image-Line
Vulnerability Severity: Medium
Exploit Impact: Cross-Site Request Forgery
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
seagate

Seagate BlackArmor Multiple Vulnerabilities

Disclosed January 6, 2014    Zeroday : 200 days
Vendors: Seagate
Vulnerability Severity: High
Exploit Impact: Cross-Site Scripting
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
ophcrack

Ophcrack Insecure Library Loading Vulnerability

Disclosed January 1, 2014    Zeroday : 205 days
Vendors: Ophcrack
Vulnerability Severity: Medium
Exploit Impact: Insecure Library Loading
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker
sercom

SerComm Products Backdoor

Disclosed December 31, 2013    Zeroday : 206 days
Vendors: SerComm
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker

Top 8 Security Insights for 2014

Posted December 23, 2013    Sarah Lieber

Recently our VP of Marketing, Mike Yaffe, wrote an insightful piece, Top 8 Security Insights for 2014, which was featured on a few publications last week. This was a “what we’re predicting in 2014″ type of article that goes into predictions and expectations for the new year around security and privilege. An excerpt and link to the…

Categories:
Vulnerability Management
Tags:
, , , , , , ,

December VEF Participant Wins a Apple iPad Air

Posted December 19, 2013    Qui Cao

Every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to your organization and a way to…

Categories:
Vulnerability Management