Although job platforms and social networking sites work hard to combat fake listings, scammers consistently find new ways to bypass security measures. These fraudulent listings often go public, putting job seekers at serious risk. We reviewed 2,670 posts and comments…
Category: Heimdal Security Blog
Top 10 Managed Service Providers in New Jersey for 2024
New Jersey, often seen as the corridor between New York and Philadelphia, is not only a strategic location for businesses but also a hub for technology services, including top Managed Service Providers. Managed Service Providers play a crucial role in…
Top 10 SentinelOne Competitors & Alternatives in 2024 [Features, Pricing & Reviews]
SentinelOne shines in endpoint detection and response, but EDR is just one piece of the in-depth defense puzzle. Choosing the right cybersecurity solution is key to safeguarding your systems. To fully protect your network, cloud, or email, you’ll need more…
New CUPS Vulnerability Can Amplify DDoS Attacks: Patch Now!
A newly discovered vulnerability in the open-source CUPS (Common Unix Printing System) printing system can be used by threat actors to launch DDoS attacks with a 600x amplification factor. Known as CVE-2024-47176, the security flaw in the cups-browsed daemon can…
The Complete Guide to PAM Tools, Features, And Techniques
Privileged access management is one of the most important topics in cybersecurity – yet it can be a minefield to get right. For hackers, elevated permissions are one of the absolute best ways to plan and execute a successful account.…
Admin Rights in Action: How Hackers Target Privileged Accounts
Admin rights are one of the most important and fundamental aspects of cybersecurity. Without elevated permissions, hackers will have a hard time stealing your data or disrupting your services. For that reason, they’re often trying to gain access to an…
Ransomware Attack Disrupts UMC Health System Activity
UMC Health System was hit by a ransomware attack at the end of September. The attack caused the healthcare institution to divert patients to other clinics. Initially, the healthcare provider was unable to process messages from the patient portal. Also,…
Test before patching. Windows update KB5043145 turns computers unstable
System Administrators warn that an optional Windows 11 update released on September 23rd creates issues for some computers. The cumulative update preview for Windows 11 Version 23H2 for x64-based systems brought new features for the Start menu, taskbar, and lock…
Why Is IT Forcing You to Patch Your Software? Understand the Importance of Patching
Most people today have at least some experience with patching. If you own a smartphone, you will be familiar with Android or iOS updates. Same goes with the apps on your phone. Whether you use banking, travel or social media…
Zen and the Art of Modern Patch Management: How to Eliminate Stress, Improve Security, and Streamline IT Operations
Patch management is stressful. In one of our Heimdal webinars, we ran a snap poll with sysadmins about how they find the patch management process. The results confirm what most of us already know: the vast majority (93%) have experienced…
EDR vs. SIEM: Key Differences, Features, Functionality Gaps, and More
When it comes to threat detection, it’s important to get the right tools for the job. Unfortunately, that can be easier said than done. Whether it’s a SIEM, EDR, XDR, MDR, or any of a whole other range of confusing…
Heimdal and emt Distribution Aim to Dominate the Middle East Cybersecurity Market
COPENHAGEN, Denmark, and Dubai, UAE, September 30, 2024 – Heimdal and emt Distribution announce a strategic partnership that combines Heimdal’s advanced cybersecurity solutions with emt Distribution’s deep market expertise. The collaboration will deliver sophisticated yet user friendly products to the…
CISA Warns: Industrial Systems Targeted by Threat Actors Using Unsophisticated Methods
In their latest advisory, CISA warns about the dangers of threat actors trying to breach the networks of critical infrastructure by targeting Internet-exposed industrial devices using ‘unsophisticated’ methods such as brute force attacks and default credentials. Details From the Advisory…
Top 10 Managed Service Providers in New York for 2024
The bustling metropolis of New York is not only a hub for finance, media, and culture but also a dynamic space for technology services, including top Managed Service Providers. Managed Service Providers (MSPs) play a pivotal role in supporting businesses…
Cyberattack Forces Kansas Water Plant to Operate Manually
The water supply system of Arkansas City, Kansas, activated manual operation mode to contain a cyberattack. The security team discovered the attack on Sunday morning. City authorities say the water supply remains safe and there are no service disruptions. FBI…
Kaspersky Self-Deletes and Force-Installs UltraAV on Users’ Endpoints
Kaspersky deleted itself and deployed another antivirus instead without warning, say former US users. The Russian cybersecurity company will be banned from sales and software updates in the US, starting September 29th, 2024. In June this year, the U.S. government…
We analyzed 2,670 posts and comments from social media platforms. Here’s what we learned about job scams
Although job platforms and social networking sites work hard to combat fake listings, scammers consistently find new ways to bypass security measures. These fraudulent listings often go public, putting job seekers at serious risk. We reviewed 2,670 posts and comments…
Privileged Access Management Features: What You Need in Your PAM Solutions
Would you buy a car without checking if it has an engine? If you did, you’d wish you’d looked under the hood before investing. The same applies to privileged access management. Without the right controls, you expose yourself to bad…
[Free & Downloadable] Endpoint Security Policy Template – 2024
Endpoint devices, such as desktops, laptops, tablets, and smartphones, form the backbone of modern corporate infrastructure. They allow employees flexibility and access to essential resources, but they also present significant security risks if not managed properly. This Endpoint Security Policy…
Why DNS Security Is Important: 3 Real-life Use Cases
DNS security is important for protecting corporate networks from DDoS attacks, phishing, ransomware, and data breaches. The domain name system is the cornerstone of the Internet but is not safe by design. Multiple layers of protection — like DNSSEC and…
10 Best Huntress Alternatives & Competitors in 2024 [Features, Pricing & Reviews]
Choosing the right cybersecurity solution can make or break your defense strategy. While Huntress is a solid option, it has its drawbacks. Users say its reporting features could be better and that it has a steep learning curve. IT admins…
Windows MSHTML Platform Spoofing Vulnerability Exploited as Zero-Day
Microsoft revealed that hackers have exploited as zero-day a Windows MSHTML platform spoofing vulnerability for more than two months. The company released a patch for CVE-2024-43461, during the September Patch Tuesday. They didn’t know that hackers were exploiting this flaw…
How to Scale Your MSP from a Firm That Grew Revenue 440%
So, you’re running a reasonably successful MSP. You’re busy and have regular clients. Your profits, while not stellar, are good enough. You’ve got a decent reputation, not too much employee churn, and things are basically working fine. Let’s not minimize…
How MSPs Can Use the ‘Four Kinds of Luck’ to Succeed
When was the last time your business struck lucky? Perhaps a big new client contacted you out of the blue. Maybe you got talking to a stranger in a restaurant – and it turned out they needed support with IT.…
MSSPs – Why You Need a SOC Product And How to Choose the Right One
The last few years have seen a profound shift in the IT managed services market. Today, there is increasing customer demand for managed services providers (MSPs) and managed security services providers (MSSPs) to demonstrate their security and compliance credentials. To…
Microsoft Defender Endpoint Security vs. SentinelOne Singularity : Which One Should You Choose?
Are you considering investing in Microsoft Defender Endpoint Security or SentinelOne Singularity, but you are not sure which one? Choosing a cybersecurity solution is an important task that can even affect your overall business performance. Don’t worry! Knowing how important…
CrowdStrike Falcon vs. ESET Endpoint Security : Which One Should You Choose?
Are you considering investing in CrowdStrike Falcon or ESET Endpoint Security, but you are not sure which one? Choosing a cybersecurity solution is an important task that can even affect your overall business performance. Don’t worry! Knowing how important is…
CrowdStrike Falcon vs. Palo Alto Networks Cortex XDR : Which One Should You Choose?
Are you considering investing in CrowdStrike Falcon or Microsoft Defender Endpoint, but you are not sure which one? Choosing a cybersecurity solution is an important task that can even affect your overall business performance. Don’t worry! Knowing how important is…
CrowdStrike Falcon vs. IBM Security QRadar XDR : Which One Should You Choose?
Are you considering investing in CrowdStrike Falcon or Microsoft Defender Endpoint, but you are not sure which one? Choosing a cybersecurity solution is an important task that can even affect your overall business performance. Don’t worry! Knowing how important is…
CrowdStrike Falcon vs. Microsoft Defender Endpoint Security : Which One Should You Choose?
Are you considering investing in CrowdStrike Falcon or Microsoft Defender Endpoint, but you are not sure which one? Choosing a cybersecurity solution is an important task that can even affect your overall business performance. Don’t worry! Knowing how important is…
Cyberattack shuts down 34 Highline Public Schools for 3 days
A cyberattack on Highline Public Schools in Washington blocked educational activities for three days. 17,500 students in 34 schools from Washington State, as well as 2000 staff members, remained at home on September 9th. Because of this cyberattack, Highline Public…
Slim CD Data Breach Exposes Financial Data of almost 1.7 million People
Payment gateway provider Slim CD data breach compromised the credit card data of 1,693,000 US and Canadian users. The breach remained undetected for almost a year. Hackers breached Slim CD’s system in August 2023, but the company only detected suspicious…
Open XDR vs. Native XDR: A Selection Guide for Organizations
Open XDR vs native XDR is a recurring question in cybersecurity. Your guide through the decision process should be the company’s specific needs. Lack of information often makes choosing an XDR solution a slow process. Neglecting XDR because of indecisiveness…
Microchip Technology Confirms Data Was Stolen in August Cyberattack
American chip producer Microchip confirms that employee data was stolen during the cyberattack they suffered in August. The incident happened on August 17, and Microchip disclosed it on August 20, declaring that some of their manufacturing facilities had been affected.…
Russian Threat Actors Target Critical Infrastructure in the U.S. and Across the World
The Russian threat actors responsible for the worldwide attacks on key infrastructure, identified as Cadet Blizzard and Ember Bear, have been connected by the United States and its allies to Unit 29155 of the Main Directorate of the General Staff…
28 Zyxel Access Points and Router Vulnerable to OS Command Injection
Zyxel released updates to fix a critical vulnerability that impacts 28 access points (AP) and security router version. The Zyxel vulnerability is tracked as CVE-2024-7261 and has a 9.8 CVSS score, which is considered critical. The flaw enables hackers to…
Effective Privileged Access Management Implementation: A Step-by-Step Guide
Privileged access management (PAM) is a key part of modern cybersecurity. In simple terms, it’s the strategy you use to monitor and control access to the most sensitive assets or data – like confidential customer information or mission-critical servers. The…
Transport for London (TfL) Targeted in Cyberattack
Transport for London (TfL) announced on September 2nd that they have detected an ongoing cybersecurity incident. The attack did not disrupt services. For the moment, there is no evidence of the attackers succeeding to compromise customers data. TfL’s security team…
RansomHub Breached Over 200 Victims, the FBI Says
RansomHub ransomware affiliates have reportedly breached over 200 victims from a wide range of critical U.S. infrastructure sectors. This ransomware-as-a-service (RaaS) operation reached this milestone quickly, being first spotted in February 2024. The ransomware group specializes in data-theft-based extortion rather…
What Is XDR Threat Hunting?
Extended detection and response (XDR) products have become an increasingly common feature of the cybersecurity market in recent years. Today, they’re by far the most advanced option on the market for identifying and responding to emerging threats and sophisticated attacks.…
Top Cybersecurity Companies You Need to Know in 2024 (And How to Choose One)
Top cybersecurity companies play a pivotal role in addressing the financial impact of cybercrime, as evidenced by Cybersecurity Ventures’ forecast that in 2024, global cybercrime damage costs will reach $9.5 trillion USD annually, $793 billion USD monthly, and $182.5 billion…
Cybersecurity Companies Join Microsoft to Discuss Safe Deployment Practices following CrowdStrike Outage
Microsoft announced hosting a Windows Endpoint Security Ecosystem Summit on September 10th. The event aims to find ways of improving security and resiliency for joint customers. Discussions will take place at Microsoft’s headquarters in Redmond, Washington. Corporate Vice President Aidan…
Park’N Fly Data Breach Compromised Sensitive Data of 1 Million Customers
The Canadian airport parking company revealed that the Park’N Fly data breach impacted the data of 1 million customers. An unauthorized third party breached their network between July 11 and July 13. According to the company’s note to the impacted…
MSSPs: Why You Need a SOC And How to Choose the Right One for Your Business
The last few years have seen a profound shift in the IT managed services market. Today, there is increasing customer demand for managed services providers (MSPs) and managed security services providers (MSSPs) to demonstrate their security and compliance credentials. To…
EDR vs NGAV: Which Works Better for Your Organization?
Choosing between EDR and NGAV can feel like standing at a crossroads. Both NGAV and EDR solutions safeguard your organization from cyber threats but take a different approach. To make the right choice, you must understand what challenges they address…
Cybersecurity Solutions for Small and Medium Businesses (SMBs)
Small and medium businesses must prioritize cybersecurity to avoid financial, legal, and reputational risks. Using a unified cybersecurity platform or partnering with an MSSP offers effective, cost-efficient protection for endpoints and networks. This article will help you make an informed…
EDR vs NGAV: Which One Is Better For Your Organization?
Choosing between EDR and NGAV can feel like standing at a crossroads. Both safeguard your organization from cyber threats but take a different approach. To make the right choice, you must understand what challenges they address and how they integrate…
Cyberattack Disrupts Microchip Technology’s Activity
American microprocessor producer Microchip Technology Incorporated suffered a cyberattack last weekend. The incident impacted its systems and disrupted the workflow of some manufacturing units. On Saturday, August 17th, the IT team detected suspicious activities in their systems. The incident impacted…
How Should Your MSP Deal With the ‘Small Client Problem’?
The ‘small client problem’ is one of the most common issues that MSPs (and indeed, most service businesses) come up against. Small and medium-sized enterprises (SMEs) have far fewer resources than larger companies. They also tend not to fully appreciate…
Cyber Stressed! Top 3 MSP Cybersecurity Challenges [And How to Fix Them]
Running an MSP is an awesome job. You get to work with super smart people, solve intellectually stimulating problems, and make a measurable, positive difference to your customers’ businesses. But no one’s saying it’s all a bed of roses. There…
Heimdal and ViroSafe Partner to Strengthen Nordic Cybersecurity
COPENHAGEN, Denmark, August 19, 2024 – Heimdal has announced a strategic partnership with ViroSafe, one of Norway’s top IT security distributors. The collaboration will expand access to advanced cybersecurity solutions across Norway. Heimdal offers the widest range of cybersecurity tools…
SystemBC Malware Used to Target Users by Black Basta-Linked Threat Actors
“Multiple intrusion attempts” have been connected to an ongoing social engineering campaign purportedly tied to the Black Basta ransomware group, which aims to steal credentials and install a malware dropper named SystemBC. What Do We Know About the Operation? According…
2.7 billion Leaked Data Records Expose Personal Information of US People
Hackers leaked 2.7 billion data records containing personal information belonging to citizens of the United States for free, on a dark forum. The attackers claim they had exfiltrated the data from the National Public Data. The type of data in…
Microsoft Patched SmartScreen Zero-Day Without Announcing
Microsoft revealed that it had patched a critical SmartScreen zero-day vulnerability two months ago, during June 2024, on Patch Tuesday. Hackers had been exploiting the flaw in the wild as a zero-day since March 2024. More about the SmartScreen zero-day…
EDR Importance: Why Is EDR Important? (With Use Cases)
In 2021, it was revealed that a group of hackers dubbed ‘LightBasin’ had compromised over a dozen telecom firms around the world. Their activity had been going on, undetected, for at least five years. This breach is a classic example…
MDR vs MSSP: Key Differences and Full Guide
If you’re looking for external help with your organization’s security posture, one of the big decisions to make is whether you’ll go with generalists or specialists. On one hand, you could opt to work with a managed security service provider…
0.0.0.0 Day Vulnerability: An 18-Year-Old Flaw Actively Exploited by Threat Actors
Cybersecurity researchers have found a brand-new “0.0.0.0 Day” that affects all popular web browsers and that malevolent websites might use to compromise local networks. It is reported that the vulnerability exposes a fundamental flaw in how browsers handle requests, potentially…
ADT Breached: Customer Data Leaked on a Hacking Forum
The American building security company, ADT, announced that it had been the victim of a data breach. Threat actors allegedly broke into certain of ADT’s systems and stole customer information, the company claims in a Form 8-K regulatory document it…
RaaS Group Targets Corporate Networks with SharpRhino RAT
The Hunters International ransomware gang targets IT professionals with SharpRhino remote access trojan (RAT). The malware spoofs the installer of Angry IP Scanner, an ethical hacking tool. Hunters International is a top 10 ransomware group that shares code similarities with…
The Best MSSP Software You Should Consider Looking At in 2024
So, you’ve got together a team of security experts. You have a business plan for your managed security service provider (MSSP) company. You’ve identified a target market, chosen a security framework – and maybe you even have potential customers lined…
StormCloud Hacks ISP to Spread Malware Posing as Software Updates
The StormCloud Chinese threat group used a compromised Internet Service Provider (ISP) to distribute malware that spoofed software updates. The attackers exploited a vulnerable HTTP software system that failed to authenticate digital signatures. The DNS spoofing campaign impacted Windows and…
EDR Implementation: Essential Features, Considerations, And Best Practices
Today’s organizations rely on a more diverse array of devices than ever before. From laptops to desktops, smartphones to smart devices, IoT and more… the list goes on. This leaves a huge cybersecurity risk for those organizations that can’t inventory,…
10 Best Fortinet Competitors and Alternatives
While Fortinet offers strong endpoint protection and good integration, it has a few drawbacks including management complexities and also lacks OS compatibility checks. This article reviews the top 10 competitors and alternatives to Fortinet, showcasing options that might provide better…
MSSP vs. SOC – Key Considerations When Deciding Your Strategy
For many cybersecurity professionals, there comes a time when you need to weigh up outsourcing security to a Managed Security Service Provider (MSSP), versus keeping those tasks in-house by building your own Security Operations Center (SOC). So, we will be…
Sitting Ducks DNS Attacks Used to Hijack Over 35,000 Domains
More than 35,000 registered domains have been hijacked by threat actors in so-called Sitting Ducks attacks that allow claiming a domain without having access to the owner’s account at the DNS provider or registrar. Cybercriminals utilize inadequate ownership verification at…
8 EDR Best Practices You Need to Pay Attention to in 2024
Endpoint detection and response (EDR) is one of the most important and fundamental cybersecurity products on the market. Effectively, it acts as a modern-day, cloud-based defense against viruses, malware, and a whole range of other real-time cyber threats. And of…
Hackers Exploit Vmware ESXi Vulnerability in Ransomware Attacks
Microsoft researchers revealed that ransomware threat groups exploit the VMware ESXi vulnerability CVE-2024-37085 for mass encryption. The researchers discovered the VMware ESXi authentication bypass vulnerability on June 25. After that, VMware released a fix in the ESXi 8.0 U3 version.…
DigiCert Revokes 83,267 TLS Certificates Due to DNS Check Problem
DigiCert announced they’ll revoke 83,267 SSL/TLS certificates impacting 6,807 subscribers due to an issue of DNS-based validation. The Certificate Authority organization required the affected customers to reissue their certificates within 24 hours. Then set the deadline for August 3rd, to…
The Most Common DNS Security Risks in 2024 (And How to Mitigate Them)
DNS security risks are everywhere, and the stats show it too. A 2021 IDC survey of over 1,100 organizations across North America, Europe, and the Asia Pacific revealed that 87% had encountered DNS attacks. The average cost per attack was…
8 Benefits of Endpoint Detection & Response (EDR) You Should Know [2024]
Did you know, the average employee today uses 2.5 devices to carry out their work? Across businesses, this can add up to hundreds or even thousands of bits of kit. One 2021 study in the UK found two-thirds of large…
ServiceNow RCE Flaws Actively Exploited by Threat Actors to Steal Credentials
Threat actors are exploiting publicly known exploits to chain together ServiceNow flaws in order to infiltrate government organizations and commercial companies in data theft campaigns. Security researchers monitored the malicious activity and identified multiple victims, including government agencies, data centres,…
[2024] 10 Qualys Alternatives That Should Be on Your Shortlist
Qualys is one of the leading vulnerability, patch, and compliance management providers. While Qualys has long been a leader in cloud-based cybersecurity (it launched in 1999), it’s not suitable for everyone. It can be expensive, its scanning process can be…
Russia-Linked Brute-Force Campaign Targets EU via Microsoft Infrastructure
Summary The European Union is experiencing a surge in brute-force cyberattacks on corporate and institutional networks, mostly originating from Russia, according to a Heimdal investigation. These attackers exploit Microsoft infrastructure, particularly in Belgium and the Netherlands, to avoid detection. Heimdal’s…
Heimdal Integrates with Autotask PSA to Elevate MSP Operations and Drive Market Expansion
LONDON, July 23, 2024 – Heimdal proudly announces its integration with Autotask PSA, a renowned Professional Services Automation tool developed by Datto, a Kaseya company. This new integration is poised to significantly enhance support ticket creation and management, driving productivity…
Major Outages Worldwide Caused by CrowdStrike Update
Many machines all around the world are at a halt. A faulty component in the latest CrowdStrike Falcon update is crashing Windows systems. The mass outage causes worldwide chaos, with major banks, healthcare companies, media outlets, logistic companies, and even…
Best DNS Software in 2024
Choosing the right DNS software can make a significant difference in your network’s speed, security, and reliability. With a variety of options available, finding the best DNS software for your needs in 2024 can be challenging. This guide will help…
The Complete Guide to Zero Trust Implementation
If you pay any attention to the world of cybersecurity, there’s a good chance you’ve heard the term ‘zero trust’ at some point over the last few years. In fact, the term is so ubiquitous that it’s often difficult to…
AT&T Data Breach Compromises 109 million Customers’s Information
Hackers got access to phone call and text message records belonging to roughly 109 million people in the AT&T data breach. The breaching of AT&T’s online database hosted in a Snowflake account happened in April 2024. What information did the…
Hackers Only Need 22 Minutes Since Disclosure to Exploit a PoC
Security researchers observed hackers exploiting a vulnerability only 22 minutes after releasing proof of concept (PoC). It is the case of CVE-2024-27198, an authentication bypass flaw in JetBrains TeamCity. The CVE has a 9.8 CVSS score, which is critical. Hackers…
Automated Incident Response: What You Need to Know
If you’re responsible for an organization’s cybersecurity, then the appeal of automated incident response is obvious. Any technology that speeds up breach response time, reduces your workload, and prevents attacks is going to tick a lot of boxes. The concept…
Hackers Only Need 22 Minutes after Disclosure to Exploit a PoC
Security researchers observed hackers exploiting a vulnerability only 22 minutes after releasing proof of concept (PoC). It is the case of CVE-2024-27198, an authentication bypass flaw in JetBrains TeamCity. The CVE has a 9.8 CVSS score, which is critical. Hackers…
New Heimdal-HaloPSA Integration Boosts Efficiency for Managed Service Providers
LONDON, July 11, 2024 – Heimdal is pleased to announce its integration with HaloPSA, a premier helpdesk ticketing system designed for Managed Service Providers (MSPs). This integration allows Heimdal customers and partners using HaloPSA to automate and customize ticket management,…
Over 16,400 Private and State-Owned Businesses Exposed to RegreSSHion Vulnerability
Over 16,400 global organizations are at risk due to a critical security flaw that could lead to the remote compromise of systems, an investigation by Heimdal has found. Tracked as CVE-2024-6387 and known as RegreSSHion, this vulnerability carries a CVSS…
Hackers Use the BlastRADIUS Flaw for Man-in-the-Middle Attacks
Researchers warn that BlastRADIUS, a flaw in the RADIUS network authentication protocol helps hackers conduct Man-in-the-middle (MitM) attacks. RADIUS is short for Remote Authentication Dial-In User Service. It is a client/server protocol for authenticating users and devices. Various networked devices…
Best Zero Trust Solutions in 2024
Looking for the best zero trust solutions in 2024? We’ve got your back. In this article, we’ll discuss the best options available to help you make an informed decision. Here’s a quick glance for you: Heimdal XDR: Best platform. Enhances…
National Security Agency Data Leak Exposes 1.4 GB of Data
Hackers claim seizing 1.4 GB of data belonging to National Security Agency (NSA) after third-party contractor data breach. The announcement appeared on a dark forum, according to the Cyber Press journalists, who swiftly notified the US gov and NSA officials…
What Is a Cybersecurity Platform?
For decades, the way cybersecurity professionals used tools to protect their networks remained largely the same: they relied on point solutions. Whether for patch management, network security, threat hunting, or anything else, specialized tools were purchased from vendors to deal…
Cybersecurity in Healthcare: An In-Depth Guide by Heimdal®
Healthcare organizations are prime targets for cyber-attacks due to the sensitive nature of patient data. Heimdal®’s ‘Cybersecurity in Healthcare’ playbook aims to provide a comprehensive guide to protect healthcare systems from potential threats. In this guide, you’ll find: Detailed explanations:…
Best Automated Patch Management Software in 2024
Did you know? — Recent research shows that 80% of cyberattacks happen due to unpatched software vulnerabilities. This highlights the critical role of automated patch management software in safeguarding systems. These tools not only streamline updates but also fortify your…
HealthEquity Hit by Data Breach: Protected Information Exposed
HealthEquity, a healthcare fintech company, is warning that it suffered a data breach after a partner’s account was compromised and used to access the company’s systems. Protected health information was stolen during the attack. Details About the Incident The company…
RegreSSHion Vulnerability Exposes Linux Systems to RCE Attacks
Researchers revealed a signal handler race condition RegreSSHion vulnerability that puts OpenSSH servers at risk. The flaw is tracked as CVE-2024-6387 and got a high severity CVSS – 8.1. Hackers can exploit it to obtain unauthenticated remote code execution (RCE)…
How Patch Management Software Solves the Update Problem
I’ve never met an IT leader who doesn’t know how important patch management is. Keeping your software up to date means it’s far harder for hackers to break into your systems and wreak havoc. So it’s surprising that this knowledge…
Cross-Platform Product Release: Heimdal Integrates with HaloPSA
We are excited to announce a special release, substantiating our key cross-platform product direction. New features and improvements are rolling out for Linux Ubuntu, macOS, and Windows. The updates are available in the Release Candidate and Production versions of the…
New MOVEit Transfer Critical Vulnerability Targeted by Threat Actors
A new critical authentication bypass flaw in Progress MOVEit Transfer was disclosed, and threat actors are already trying their best to exploit it. The new security flaw, which goes by the number CVE-2024-5806, enables attackers to get around the Secure…
Heimdal and Escom Bulgaria Partner to Strengthen Cybersecurity in Bulgaria
Heimdal has agreed to a long-term partnership with Escom Bulgaria to distribute our products in Bulgaria, so we sat down with Mr. Alexander Zhekov, Escom Bulgaria’s Managing Director. He’s a seasoned professional with over 10 years of security experience. Escom…
LockBit Claims Breaching the US Federal Reserve but Fails to Prove It
On June 23rd, LockBit announced breaching the US Federal Reserve System, while security experts remained skeptical. The Russian threat group claimed to exfiltrate 33 terabytes of banking information from the USA’s central bank servers. They also threatened to publish the…
LockBit Claims Breaching the US Federal Reserve but Fails Proving It
On June 23rd, LockBit announced breaching the US Federal Reserve System, while security experts remained skeptical. The Russian threat group claimed to exfiltrate 33 terabytes of banking information from the USA’s central bank servers. They also threatened to publish the…
Top 10 NinjaOne Alternatives to Consider in 2024
Choosing an IT management software is one of the most important decisions you make as an IT team. There are a few well-known platforms on the market, one being NinjaOne. Considering the feedback from review sites, NinjaOne customers are switching…
GrimResource Technique Exploits Years-Old Unpatched Windows XSS Flaw
New GrimResource technique exploits a 2018-old, unpatched, Windows XSS flaw and crafted MSC files to deploy malware via the Microsoft Management Console (MMC). Researchers detected the new exploitation technique in the wild on June 6th, 2024. Exploiting the Microsoft Management…
Sophos vs. Trend Micro: How Do They Shape Up?
If you’re in the market for an endpoint detection and response (XDR) product, there are plenty of options available. But within the word salad of overlapping terms (XDR, EDR, ASM, and more), it can be a real challenge to actually…