BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:
cnbc-uk-video-maiffret

CNBC Interview Featuring our CTO: Security Takes a Backseat in Tech

Posted April 22, 2013    Sarah Lieber

Marc Maiffret, our CTO, was interviewed earlier today in the UK on CNBC. He tells CNBC most aspects of society are being built around technology and most companies aren’t building technology with security in mind. In the interview, Marc states: “Most aspects of society today are being built around technology from every facet. If you…

Categories:
General
Tags:
, , , , , ,
oracle-logo-98x98

Java: Sizeable Critical Patch Update and Two Sugars, Please

Posted April 15, 2013    BeyondTrust Research Team

Oracle is rolling out yet another Critical Patch Update (CPU) for Java – and this time they’ve fixed 39 remotely exploitable vulnerabilities. This is not to say that all of these vulnerabilities may provide an attacker with remote code execution. However, the highest CVSS Base Score of all the vulnerabilities was a 10.0, meaning that…

Categories:
Vulnerability Management
Tags:
, , , , , ,
dlink

D-Link DIR-865L Cross-Site Request Forgery

Disclosed April 13, 2013    Fully Patched
Vendors: D-Link
Vulnerability Severity: Medium
Exploit Impact:
Exploit Availability:
Categories:
Zeroday Tracker
SMART_PERSON

Security Intelligence: Finding Out What Part Actually Makes You Smart

Posted April 12, 2013    Mike Yaffe

Organizations of all sizes having been trying to address Big Data, Security Intelligence and contextual security for awhile, but without much success. For security folks in particular this is a sensitive topic, as nestled among the thousands of lines of code or logs files is what they need to know to prevent the next successful breach. SIEM…

Categories:
Vulnerability Management
Tags:
, , , , ,
215px-SOAP_poster

Hackers on a Plane

Posted April 11, 2013    BeyondTrust Research Team

If I were cast in a movie in which the plotline centered on a person on a plane maliciously controlling the entire 550MPH Pringles Can via smartphone, I’d demand the movie be called ‘Hackers on a Plane’, just so people knew what they were getting into when purchasing their matinee ticket. However, this seemingly far-fetched…

Categories:
Vulnerability Management
Tags:
, , ,
microsoft

MS13-036 (KB2823324) Windows Kernel-Mode NTFS Drivers

Disclosed April 11, 2013    Fully Patched
Vendors: Microsoft
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability:
Categories:
Zeroday Tracker

April 2013 Patch Tuesday

Posted April 9, 2013    BeyondTrust Research Team

Patch Tuesday is here again, and April’s collection of patches will fix vulnerabilities across various pieces of Microsoft operating systems and software. This includes Internet Explorer, the Remote Desktop Client, SharePoint, the Windows kernel (and some kernel-mode drivers), Active Directory, the Windows Client/Server Run-time Subsystem (CSRSS), Microsoft Antimalware Client, and an HTML sanitization component in…

Categories:
Vulnerability Management
Tags:
, , ,
img-oracle-logo

BeyondTrust & Oracle, The Perfect Partnership

Posted April 8, 2013    BeyondTrust Product Management

No one will dispute that Oracle is a heavyweight when it comes to the relational database market, but Oracle is far more than a one trick pony.  Oracle has a plethora of enterprise products and hardware solutions that will fit the needs of almost any business.  However the key to success for many of the…

Categories:
Privileged Account Management
Tags:
, , , , , , ,
jpeg blog pic

Die Hard – Windows XP Against the World

Posted April 8, 2013    Mike Puterbaugh

Today marks the beginning of a significant year-long event in the worldwide computer industry – a year from today, Microsoft will end support for the Windows XP Operating System. Mainstream support had already ended in 2009  and this new milestone marks the end of security updates on the platform. Are you ready? According to a…

Categories:
Vulnerability Management
Tags:
, , ,
Closing the Door on Hackers

Closing the Door on Hackers – from the New York Times

Posted April 5, 2013    Marc Maiffret

I recently had the pleasure of contributing an Op-Ed piece to The New York Times. In the article, I talk about some of the aspects of cyber-security that I think are far too-often left out of mainstream media discussions. Specifically, the shared burden that all of us in the technology industry should feel in helping…

Categories:
General
Tags:
, , , ,