BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:

BeyondInsight: Privilege and Vulnerability Management Unification

Posted February 18, 2014    Morey Haber

Fifteen years ago there was a revolution in information technology operations. Different teams that managed networks and systems merged their practices and technology under frameworks like Computer Associates Unicenter and IBM Tivoli. Today, these solutions have evolved to CA Spectrum, SolarWinds, and SpiceWorks. These are all fantastic technologies that have proven that the fusion of…

Categories:
New Features, Privileged Account Management, Vulnerability Management
Tags:
, , , , , ,
Access-Report1

Neophytes and Professionals

Posted February 14, 2014    Morey Haber

There is a first time for everything. Your first steps, your first date, your first child, your first vulnerability assessment scan. A first time for everything. The Retina Network Security Scanner Unlimited makes taking the first step incredibly easy and affordable. For security professionals, it is just another step in making sure your assets are…

Categories:
Vulnerability Management
Tags:
, , , ,

Least Privilege on Windows Desktops and Servers

Posted February 13, 2014    Morey Haber

We have all seen the news. Least privilege attacks on the NSA and companies like Target have lead to elevated privileges on sensitive systems and access to confidential data. Securing administrative privileges on desktops and servers is beginning to take center stage for many organizations since low level entry points are now being used to…

Categories:
Privileged Account Management
Tags:
, , , ,
microsoft

IE10 Use-After-Free 0day

Disclosed February 13, 2014    Fully Patched
Vendors: Microsoft
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability:
Categories:
Zeroday Tracker
belkin

Linksys Routers Command Injection

Disclosed February 12, 2014    Zeroday : 312 days
Vendors: Belkin (Linksys)
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker
patch-tuesday

February 2014 Patch Tuesday

Posted February 11, 2014    BeyondTrust Research Team

February’s Patch Tuesday comes to us with patches for XML Core Services, IPv6, Direct2D, Forefront, .NET, Internet Explorer, and VBScript. There are a total of seven bulletins (4 critical, 3 important) addressing 31 unique vulnerabilities. Most notable this month is the patch for Internet Explorer, MS14-010, which fixes 24 vulnerabilities: over two thirds of this…

Categories:
Vulnerability Management
Tags:
, , ,
BeyondSaaS-vulnerabilitiesrootcause3

Staring At The Clouds… BeyondSaaS

Posted February 11, 2014    Morey Haber

Daydreamers tend to stare at the clouds and imagine entities from the shapes they see. Our minds form relationships from the bulges, wedges, and puffy forms to make animals, star ships, and people. From the clouds looking down, we see roads, farms, buildings, and all the physical entities we interact with everyday. For our information…

Categories:
New Features, Vulnerability Management
Tags:
, , , , ,
PBW-Risk Report

Greylisting Applications with PowerBroker for Windows Risk Compliance

Posted February 10, 2014    Morey Haber

PowerBroker for Windows is designed to elevate privileges on an application based on rules. It does so using technology that does not alter the user but rather the security token for the application at runtime. The results allow a standard user to launch and interact with an application that requires administrative privileges, without changing the…

Categories:
New Features, Privileged Account Management
Tags:
, , , , ,
combined-executive-dashboard

BeyondInsight Reports: All The Difference In The World

Posted February 7, 2014    Morey Haber

Last week, we announced the release of the BeyondInsight IT Risk Management Platform, which provides a central environment for managing several of our PowerBroker Privileged Account Management and Retina Vulnerability Management solutions. A quick look at the BeyondInsight Analytics and Reporting module uncovers a startling revelation for our competitors and a hidden gem for our…

Categories:
New Features, Privileged Account Management
Tags:
, , , , , ,
Plex

Plex Media Server Multiple Vulnerabilities

Disclosed February 6, 2014    Zeroday : 318 days
Vendors: Plex
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker