BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:
UAC Message Box

Sneak Peek at PowerBroker Desktops 5.3 — Message Box Enhancements

Posted August 9, 2012    Peter McCalister

PowerBroker Desktops 5.3 will be released this month, and as a follow up to our previous article, this article describes additional enhancments to end user message boxes that provide users with more flexibility and functionality. The first thing we did was give you additional control over the content that can be put into message boxes…

Categories:
General
Token Tab

Sneak Peek at PowerBroker Desktops 5.3 UI Enhancements

Posted August 8, 2012    Peter McCalister

Over the past several months, our development team in North Andover, MA, has been working hard on the next release of PowerBroker Desktops, which we plan on releasing in late August. The overarching theme for this release is enhancements to usability and aesthetics. Over the next several days, we will be posting a series of…

Categories:
General
blackholetoolkit1

BlackHole toolkit targets Microsoft XML Core Services flaw

Posted August 1, 2012    Sarah Lieber

Blackhole is a popular exploit kit used to inject malware onto PCs that visit an exploited site, or are redirected to such a site from another, compromised website.  As hackers get bolder they use these types of toolkits to compromise computer networks.  This allows less sophisticated individuals and organizations to compromise computer networks since these…

Categories:
Vulnerability Management
Tags:
, , , , , , , ,
winning

July VEF Participant Wins a Kindle Fire

Posted July 31, 2012    Sarah Lieber

As you all know, every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to…

Categories:
Security Research
Tags:
, , , , ,
huawei

Huawei Routers Multiple Vulnerabilities

Disclosed July 30, 2012    Fully Patched
Vendors: Huawei
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability:
Categories:
Zeroday Tracker
whitehouse

Capitol Hill is Moving on Cyber Security Bill

Posted July 23, 2012    Peter McCalister

Will government intervention help reduce the number of security attacks on our nation’s infrastructure or is the proposed Cyber Security Act too restrictive on private business causing forced transparency of operations and raised costs? The Cyber Security Act 2012 Bill has been floating around for months and is now backed by President Obama. Sen. Joe…

Categories:
General
Picture 3

July Patch Tuesday Assessment On Demand

Posted July 22, 2012    Sarah Lieber

Miss our live VEF webinar earlier this month? In case you did, I’ve put all of the content together for you below. Enjoy!

Categories:
General
Tags:
, , ,
new-kids-on-the-block

Create custom audits for Android devices. Come on, all the cool kids are doing it.

Posted July 18, 2012    Carter Jones

Have you ever wanted to root your Android device, so you could be like all the other cool kids on the block? If you did your research, you learned that it makes it easier for attackers to keep their malware on your device, if it were to be infected, through the use of a rootkit….

Categories:
Vulnerability Management
Tags:
, , , , , , ,
fbshare

Why Innocent Looking Facebook Photos Can Be Dangerous

Posted July 16, 2012    Peter McCalister

Hacker attacks are far more publicized than insider attacks. In fact, according to the 2011 CyberSecurity Watch Survey conducted by CSO Magazine and Deloitte, 70 percent of insider incidents are handled internally without legal action. This begs the question – how many of those incidents are disclosed to the public? While a majority of U.S….

Categories:
General
patch-tuesday

Patch Tuesday July 2012: MSXML Patched (sort of?), MDAC, IE9 (Mmm), Windows 8 glimpse

Posted July 10, 2012    Marc Maiffret

In short: Get MS12-043, MS12-045, and, if running IE9, MS12-044 patched and get back to that game of Where’s My Water? MSXML 0day fixed? This month’s Patch Tuesday bulletins bring an end to a zeroday vulnerability within MSXML that was first announced towards the beginning of June. Specifically MS12-043 has the fix that IT folks…

Categories:
General