BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

We’re Getting Pumped up for RSA

Posted January 30, 2014    Sarah Lieber

JAWBONE BANDS

Here at BeyondTrust we’re getting pumped up for RSA, which takes place Feb 24th – 27th, 2014! This year in San Francisco we’re going to demonstrate how our PowerBroker Privilege Management and Retina Vulnerability Management solutions ensure that IT environments are healthy and ready to fend off threats. We’ll also be featuring some amazing “feats of strength” and raffling off several Jawbone UP wristbands.

If you’re planning on attending RSA, be sure to stop by our booth #1415, South Hall to check out a demonstration and even test your strength. It’s going to be a fun one! Hope to see you there!

p.s. Want a free RSA Expo Pass? Visit here and use the code: SC4BEYONB to sign up and get in totally free!

In the meantime, here’s a little something we put together to get YOU pumped up too! Enjoy!

Tags:
, , , , ,

Leave a Reply

Additional articles

asp-mvc

Exploiting MS14-059 because sometimes XSS is fun, sometimes…

Posted October 17, 2014    BeyondTrust Research Team

This October, Microsoft has provided a security update for System.Web.Mvc.dll which addresses a ‘Security Feature Bypass’. The vulnerability itself is in ASP.NET MVC technology and given its wide adoption we thought we would take a closer look. Referring to the bulletin we can glean a few useful pieces of information: “A cross-site scripting (XSS) vulnerability exists…

Tags:
4bestpracticesaudits-blog

Four Best Practices for Passing Privileged Account Audits

Posted October 16, 2014    Chris Burd

Like most IT organizations, your team may periodically face the “dreaded” task of being audited. Your process for delegating privileged access to desktops, servers, and infrastructure devices is a massive target for the auditor’s microscope. An audit’s findings can have significant implications on technology and business strategy, so it’s critical to make sure you’re prepared…

Tags:
, , , ,

Bad POODLE, Don’t Bite!

Posted October 16, 2014    BeyondTrust Research Team

Researchers at Google (Bodo Moller, Thai Duong, and Krzysztof Kotowicz) have discovered that the encryption schemes used by SSL 3.0 are exploitable (CVE-2014-3566). Although the majority of web servers implement Transport Layer Security (TLS), the majority of clients will downgrade to SSL 3.0 in an attempt to maintain interoperability between protocols. For example, when a…

Tags:
,