CyberArm partners with Neustar Security Services to offer best-in-class DNS, application, and network security CyberArm and Neustar Security Services are pleased to announce our entrance into a strategic partnership, combining CyberARM’s industry leading Managed Security & Consulting Services with Neustar Security’s cloud-delivered security services to enable businesses to thrive online. [...]
Survival Bias is a type of selection bias that occurs when a non-representative subset of data is used to draw conclusions. What does this mean? Consider Figure 1 below, let’s say you were tasked to examine the damage of aircraft that had returned from missions and recommend the best place ...
CyberArm’s risk advisories are intended for senior management to aid their understanding of current events and the cyber risk posed to their organizations. What has happened? A vulnerability in the ‘print spooler’ (which handles interactions between the operating system and USB or network printers) for Microsoft Windows has been identified ...
Firewalls are critical components of your enterprise network and comes in various shapes and sizes, from basic statefull firewall, to full “Next-Generation” with threat prevention and sandboxing. Firewalls have evolved to protect even your cloud services and assets. If misconfigured, your network will be vulnerable to cyber attacks. By their ...
How to ensure having an effective DLP implementation? Protecting digital assets and intellectual property (IP) is becoming increasingly challenging for organizations. Recent studies describe external hacking as the primary cause of data loss in the corporate world; however, organizations have few mechanisms to assess and report data losses through internal ...
This post by Rich Warren and Sander Laarhoven discusses NCC Group observed in the wild exploitation attempts and detection logic for the F5 BIG-IP/BIG-IQ iControl REST API vulnerabilities CVE-2021-22986. Update March 20th, 2021 We have seen PoCs of a variant posted to Twitter that doesn’t require SSRF, our advice is ...
Implement an IIS Re-Write Rule and disable Unified Messaging (UM), Exchange Control Panel (ECP) VDir, and Offline Address Book (OAB) VDir Services These mitigations have some known impact to functionality described below in detail. These mitigations are effective against the attacks we have seen so far in the wild but ...
Note: This Alert was updated by our security researchers on March 4, 2021 to provide further guidance. CyberARM has observed active exploitation of vulnerabilities in Microsoft Exchange Server products. Successful exploitation of these vulnerabilities allows an unauthenticated attacker to execute arbitrary code on vulnerable Exchange Servers, enabling the attacker to gain ...
