Authentication, Blog and Vulnerability - Continuity Professionals Pulse

How Citrix Web App Firewall can help mitigate risk of authentication bypass vulnerability

Citrix

SEPTEMBER 1, 2022

Citrix has crafted new signatures and has updated its Citrix Web App Firewall signature file to help customers mitigate the recent authentication bypass vulnerability in multiple versions of Atlassian Confluence app (versions prior to 2.7.38 and 3.0.5).

Authentication

Authentication Vulnerability Mitigation Architecture

Cybersecurity Tips: Risk and Vulnerability Management

Security Industry Association

OCTOBER 6, 2021

Managing cybersecurity risks and vulnerabilities is a critical activity for any robust security program. Risk management and vulnerability management are performed in tandem to help keep your network safer and more secure. What Is a Vulnerability? Managing Vulnerabilities in Your Environment.

Vulnerability

Vulnerability Cybersecurity Management Outsourcing

Enable Two-Factor Authentication (2FA) to Add an Extra Layer of Security to Your Accounts

Erwood Group

MAY 20, 2024

Enable Two-Factor Authentication (2FA) to Add an Extra Layer of Security to Your Accounts Enable Two-Factor Authentication (2FA) to Add an Extra Layer of Security to Your Accounts Securing online accounts has never been more critical. This is where Two-Factor Authentication (2FA) comes into play.

Authentication

Authentication Security Banking Application

What We Can Learn from the Log4j Vulnerability

Pure Storage

JANUARY 21, 2022

In December, a critical zero-day vulnerability was reported in the widely used Log4j framework. Log4j is so ubiquitous, in fact, that Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly called this “the most serious vulnerability I have seen in my decades-long career.”. And that’s the key to the vulnerability.

Vulnerability

Vulnerability Internet Cybersecurity Authentication

Guidance for reducing HTTP protocol RCE security vulnerability risk with Citrix Web App Firewall (CVE-2022-21907)

Citrix

MAY 9, 2022

The HTTP protocol stack remote code execution vulnerability (CVE-2022-21907) lies in the management of HTTP Trailers by the kernel mode driver http.sys.

Vulnerability

Vulnerability Security Authentication Management

Reducing Cybersecurity Risks with NIST CSF 2.0

Pure Storage

OCTOBER 2, 2024

by Pure Storage Blog Summary Created by the National Institute of Standards and Technology (NIST), the Cybersecurity Framework (CSF) is a set of guidelines designed to help organizations reduce cybersecurity risks and bolster their defenses. appeared first on Pure Storage Blog. Reducing Cybersecurity Risks with NIST CSF 2.0

Cybersecurity

Cybersecurity Cyber Resilience Backup Resilience

ZTNA vs. VPN

Pure Storage

NOVEMBER 13, 2024

ZTNA vs. VPN by Pure Storage Blog Summary As data breaches become more common, organizations need a better way to protect their data. A zero trust network architecture (ZTNA) and a virtual private network (VPN) are two different solutions for user authentication and authorization. ZTNA requires additional account verification (e.g.,

Authentication

Authentication Authorization Architecture Disaster Recovery

The Top Vulnerabilities in Software Security

Assurance IT

JUNE 22, 2021

Did you know that in 2020, over 18,000 vulnerabilities were created? All of this is vulnerabilities in your enterprises’ software security. All of this is vulnerabilities in your enterprises’ software security. Keep reading to hear the top vulnerabilities in software security and how they can affect your enterprise as a whole.

Vulnerability

Vulnerability Security Authentication Application

Reflections on Career Week 2023: Employee Growth Is the Real Bottom Line

Pure Storage

JANUARY 18, 2024

Reflections on Career Week 2023: Employee Growth Is the Real Bottom Line by Pure Storage Blog As I reflect on the close of the fiscal year and my first year at Pure Storage, Career Week is still fresh on my mind. Being authentic and vulnerable is also about being yourself.” And, yes, other companies.) Here’s to a fantastic year!

Authentication

Authentication Vulnerability Communications Management

How to Implement Threat Modeling in Your DevSecOps Process

Pure Storage

AUGUST 3, 2023

How to Implement Threat Modeling in Your DevSecOps Process by Pure Storage Blog This blog on threat modeling was co-authored by Dr. Ratinder Paul Singh Ahuja, CTO for Security and Networking, and Rajan Yadav , Director of Engineering, CNBU (Portworx), Pure Storage. Dr. Ahuja is a renowned name in the field of security and networking.

Authentication

Authentication Vulnerability Authorization Audit

Seven principles of the zero trust security model

Citrix

AUGUST 11, 2022

The reality of today’s fast-paced, increasingly remote work environment positions your business as vulnerable to security breaches. … The post Seven principles of the zero trust security model first appeared on Citrix Blogs. Related Stories Why should you evolve your multi-factor authentication to adaptive authentication?

Security

Security Authentication Vulnerability

Kerberos vs. NTLM

Pure Storage

JANUARY 5, 2024

Kerberos vs. NTLM by Pure Storage Blog Kerberos and NTLM, two prominent encryption methods, differ fundamentally in their approach to authentication and security. While Kerberos employs a robust third-party authentication system with ticket-based access, NTLM relies on a challenge-response mechanism and hashing techniques.

Authentication

Authentication Communications Vulnerability Security

Cybersecurity Awareness Month 2024: Doing Our Part to #SecureOurWorld

Pure Storage

OCTOBER 1, 2024

Cybersecurity Awareness Month 2024: Doing Our Part to #SecureOurWorld by Pure Storage Blog The 20th Cybersecurity Awareness Month is upon us, and we’re taking the month to spotlight resources and insights to help you improve cyber resilience and build a culture of security. Enabling multi-factor authentication (MFA).

Cybersecurity

Cybersecurity Cyber Resilience Architecture Sports

Citrix ADC?nFactor??????

Citrix

DECEMBER 16, 2021

Authentication Policy??Action???????????????????????????????Policy first appeared on Citrix Blogs. Related Stories Guidance for reducing Apache Log4j security vulnerability (CVE-2021-44228) risk with Citrix WAF What could you lose from a DDoS attack? Citrix ADC?????????????????????Citrix Citrix Gateway???????????. ??????Gateway

Authentication

Authentication Vulnerability Security

Harnessing Static and Dynamic Code Scanning in DevSecOps

Pure Storage

FEBRUARY 12, 2024

Harnessing Static and Dynamic Code Scanning in DevSecOps by Pure Storage Blog This blog on static and dynamic code scanning in DevSecOps was co-authored by Dr. Ratinder Paul Singh Ahuja, CTO for Security and Networking, and Rajan Yadav , Director of Engineering, CNBU (Portworx), Pure Storage. What Is Code Scanning?

Vulnerability

Vulnerability Mitigation Authentication Authorization

NIST CSF 2.0: What It Is, Why It Matters, and What It Means for Your Data

Pure Storage

AUGUST 12, 2024

What It Is, Why It Matters, and What It Means for Your Data by Blog Home Summary NIST 2.0 Identify Develop an organizational understanding of how to manage cybersecurity risks in systems, people, assets, data, and capabilities, including identifying vulnerabilities and threats around critical business processes and key assets.

Cybersecurity

Cybersecurity Audit Evaluation Authentication

Ransomware Attackers Find Fresh Targets in Cultural Institutions

Pure Storage

FEBRUARY 2, 2024

Ransomware Attackers Find Fresh Targets in Cultural Institutions by Pure Storage Blog Ransomware attacks are big news when they hit giant corporations, government services, and resources like gas pipelines. Then, prioritize and address any identified vulnerabilities. Often, penetration testers take a fairly siloed approach to testing.

Backup

Backup Response Plan Vulnerability Corporate Governance

Citrix Endpoint Management now supports NetScaler advanced authentication policies (nFactor)

Citrix

JANUARY 30, 2023

That’s why we are excited to announce general availability … The post Citrix Endpoint Management now supports NetScaler advanced authentication policies (nFactor) first appeared on Citrix Blogs. Mitigating risk from Cambium Networks cnMaestro SQL injection vulnerability

Authentication

Authentication Management Vulnerability Mitigation

How to Counter AI-Driven Cybersecurity Threats to Physical Security Products

Security Industry Association

OCTOBER 5, 2023

In this blog from SIA Cybersecurity Advisory Board member Pauline Norstrom – founder and CEO of Anekanta Consulting – learn about mitigating artificial intelligence-driven cybersecurity threats to physical security products. AI can be used to automate the discovery and exploitation of zero-day vulnerabilities.

Cybersecurity

Cybersecurity Security Malware Vulnerability

7 Challenges with Applying AI to Data Security—and the Real Way to Solve Them

Pure Storage

DECEMBER 18, 2023

7 Challenges with Applying AI to Data Security—and the Real Way to Solve Them by Pure Storage Blog As AI makes headlines and augments the way we work, there’s one area to be cautiously optimistic about: cybersecurity. The post 7 Challenges with Applying AI to Data Security—and the Real Way to Solve Them appeared first on Pure Storage Blog.

Security

Security Malware Disaster Recovery Cybersecurity

Easy strategies for effective password management

Online Computers

OCTOBER 25, 2024

We’ve talked about how the human factor can weaken your cybersecurity in our previous blog article , and for good reason. Here are three password managers with a free version that offers unlimited password storage, syncing across multiple devices, and two-factor authentication: Bitwarden Dashlane NordPass 5.

Management

Management Authentication Malware Media

Managing the Perils of Data Exfiltration

Pure Storage

MARCH 21, 2024

Managing the Perils of Data Exfiltration by Pure Storage Blog Data exfiltration used to be an exploit limited to spy thrillers, but lately, a day doesn’t go by without data exfiltration popping up in the news. Technical vulnerabilities, phishing campaigns, and social engineering are well-known methods of gaining access.

Management

Management Malware Authentication Healthcare

Managing the Perils of Data Exfiltration

Pure Storage

MARCH 21, 2024

Managing the Perils of Data Exfiltration by Pure Storage Blog Data exfiltration used to be an exploit limited to spy thrillers, but lately, a day doesn’t go by without data exfiltration popping up in the news. Technical vulnerabilities, phishing campaigns, and social engineering are well-known methods of gaining access.

Management

Management Malware Authentication Healthcare

Cyber Risk & Your Supply Chain: Managing the Growing Threat

NexusTek

JANUARY 17, 2024

Capitalizing on human error and a host of other vulnerabilities, threat actors increasingly exploit weak links in supply chains to gain access to bigger targets up the chain. security awareness training, encryption, authentication, monitoring, backup, patching), your policies should also make explicit your security requirements for suppliers.

Malware

Malware Management Risk Management Cybersecurity

Don’t Pay the Ransom: Keep Your Data Protected with Auto-on SafeMode

Pure Storage

APRIL 14, 2022

Pure Storage ® continues to lead in immutable storage solutions by ensuring all data is protected from attack, on-creation and without the risk from error-prone management cycles or vulnerabilities from stale software updates. The post Don’t Pay the Ransom: Keep Your Data Protected with Auto-on SafeMode appeared first on Pure Storage Blog.

Failover

Failover Malware Vulnerability Backup

World Backup Day: Four Data Protection Best Practices to Know

Pure Storage

MARCH 29, 2024

World Backup Day: Four Data Protection Best Practices to Know by Pure Storage Blog This article originally appeared on SolutionsReview.com. The post World Backup Day: Four Data Protection Best Practices to Know appeared first on Pure Storage Blog. It has been republished with permission from the author. But how do you achieve it?

Backup

Backup Cybersecurity Architecture Resilience

Regulatory Revenue? 10 Ways to Turn Compliance into a Competitive Advantage

Pure Storage

OCTOBER 17, 2024

10 Ways to Turn Compliance into a Competitive Advantage by Pure Storage Blog Summary Not complying with regulations like DORA, GDPR, and HIPAA isn’t an option, but compliance doesn’t have to be an obstacle either. 10 Ways to Turn Compliance into a Competitive Advantage appeared first on Pure Storage Blog. Regulatory Revenue?

Cyber Resilience

Cyber Resilience Resilience Financial Services Audit

Cybersecurity tips for retail companies

Online Computers

MARCH 23, 2022

In this blog post, we will discuss some cybersecurity tips for retail companies. Aside from being vulnerable to social engineering, employees may also be prone to having equipment stolen or damaged, which can also result in breaches or data theft. Implement multifactor authentication for transactions.

Retail

Retail Cybersecurity Authentication Audit

Are Your IoT Devices Leaving the Door Open for Hackers?

NexusTek

AUGUST 15, 2023

This can create cyber vulnerabilities due to issues like lack of encryption, substandard authentication processes, or failure to provide timely security updates. Lack of Firmware Updates: As with any technology, IoT devices may have unidentified security vulnerabilities that are only discovered after they are released to the market.

Manufacturing

Manufacturing Cybersecurity Vulnerability Internet

5 Ways to Address Data Security Gaps Before an Attack

Pure Storage

SEPTEMBER 16, 2021

In this article I’ll start with the before of an attack and discuss what you should do and have in place to ensure you’re closing the gaps that create vulnerabilities and in-roads for attackers. Implement multi-factor authentication and admin credential vaulting for all systems. Other Vulnerabilities to Note.

Security

Security Vulnerability Malware Authentication

What is New with CBS Terraform Provider 0.9.0

Pure Storage

JULY 12, 2023

by Pure Storage Blog This article on CBS Terraform Provider 0.9.0 originally appeard on Adam Mazouz’s blog. In this blog post, I will cover what is new with the latest version of the Pure Cloud Block Store Terraform Provider. If you haven’t used it before, no worries, I’ve got you covered in this previous blog post.

Authentication

Authentication Publishing Audit Authorization

Managing Cyberthreats to Combat Ransomware Part Two: Emerging Technologies and Use Cases

Zerto

AUGUST 25, 2022

In part one of our blog, Managing Cyberthreats to Combat Ransomware: Current Technologies , we looked at technologies organizations are currently using to mitigate cyberthreats such as: intrusion detection system (IDS), anti-malware software, and multi-factor authentication, among others. Artificial Intelligence & Machine Learning.

Technology

Technology Disaster Recovery Management Authentication

Guest Post: “I’ve Upgraded My Credentials. My Facility Is Safe Now, Right?”

Security Industry Association

SEPTEMBER 8, 2023

Most employees will take their credentials home with them when they leave their facility, and once the employees are outside the secured environment, a secure credential is protected from many of the types of attacks vulnerable credentials are prone to. 1038 combinations), such as adding devices between readers and controllers.

Vulnerability

Vulnerability Manufacturing Communications Authentication

How to Generate a CSR

Pure Storage

JUNE 12, 2023

How to Generate a CSR by Pure Storage Blog To provide encrypted traffic using SSL/TLS between a client and a host server, companies must create a certificate signing request (CSR) and submit it to a certificate authority (CA). An OpenSSL bug was responsible for one of the biggest vulnerabilities on the open internet, Heartbleed.

Authentication

Authentication Internet Authorization Vulnerability

Do Cyber Risks Lurk in Your Business Ecosystem?

NexusTek

OCTOBER 25, 2023

Experts recommend the following: Multifactor authentication (MFA): This requires at least two forms of identity verification for login, which effectively stymies unauthorized logins using compromised credentials. Patch management: This practice ensures that any identified vulnerabilities in software are addressed in a timely manner.

Cybersecurity

Cybersecurity Evaluation Vulnerability Risk Management

Cybersecurity Audit Checklist

Reciprocity

SEPTEMBER 11, 2024

You should conduct a cybersecurity audit at least once a year to assure that your digital ecosystem is secure, no vulnerabilities have been overlooked, and no new threats are going unaddressed. This will also allow you to identify any security vectors that may be vulnerable. Identify and address vulnerabilities and risks.

Audit

Audit Cybersecurity Vulnerability Outsourcing

How Can Blockchain Be Used in Data Storage and Auditing?

Pure Storage

NOVEMBER 21, 2024

by Pure Storage Blog Summary Blockchain has the potential to transform how we think about data storage and auditing thanks to its decentralized approach and cryptographic principles that make tampering virtually impossible. appeared first on Pure Storage Blog. How Can Blockchain Be Used in Data Storage and Auditing?

Audit

Audit Data Integrity Healthcare Security

Managing Cyberthreats to Combat Ransomware Part 1: Current Technologies

Zerto

JULY 14, 2022

Not staying up to date with software patches can leave companies vulnerable to information security breaches, and as soon as attackers learn of a software vulnerability, they can exploit it to launch a cyberattack. Stay tuned for upcoming parts of this three-blog series on how to manage cyber threats.

Technology

Technology Malware Management Cybersecurity

How to Recover from a Cyber Attack

Zerto

SEPTEMBER 12, 2024

This blog will guide you through the necessary steps to recover from a cyberattack, with a focus on creating a robust cyberattack recovery plan to ensure the continuity and security of your business. This may involve reinstalling software, patching vulnerabilities, and reconfiguring security settings.

Disaster Recovery

Disaster Recovery Vulnerability Communications Backup

Top Threats to University Security and How to Prepare

BCP Builder

JULY 8, 2024

Preparation Strategies : Risk Assessment : Conduct regular risk assessments to identify vulnerabilities and the likelihood of different natural disasters affecting your campus. Regular Audits : Conduct regular security audits and vulnerability assessments to identify and address potential weaknesses.

Security

Security Emergency Planning Response Plan Audit

Top Threats to University Security and How to Prepare

BCP Builder

JULY 8, 2024

Preparation Strategies : Risk Assessment : Conduct regular risk assessments to identify vulnerabilities and the likelihood of different natural disasters affecting your campus. Regular Audits : Conduct regular security audits and vulnerability assessments to identify and address potential weaknesses.

Security

Security Emergency Planning Response Plan Audit

Upgrade Your Own FlashArray with Pure1

Pure Storage

FEBRUARY 7, 2023

We even provide two-factor authentication to validate a user’s identity before initiating any upgrades. Do this step early, as it can take some time while we perform some additional validations, including enrolling you in step-up authentication. The post Upgrade Your Own FlashArray with Pure1 appeared first on Pure Storage Blog.

Authentication

Authentication Vulnerability Failover Application

What is the cloud compliance trap, and how do you avoid it?

Online Computers

NOVEMBER 21, 2022

Apply risk-based authentication. Risk-based authentication means applying varying levels of authentication processes according to risk levels; i.e., as the risk increases, the authentication process becomes more stringent.

Authentication

Authentication Malware Cybersecurity Security

Easy strategies for effective password management

Online Computers

OCTOBER 30, 2023

We’ve talked about how the human factor can weaken your cybersecurity in our previous blog article , and for good reason. Here are three password managers with a free version that offers unlimited password storage, syncing across multiple devices, and two-factor authentication: Bitwarden Dashlane NordPass 5.

Management

Management Authentication Malware Media

How Citrix Web App Firewall can help mitigate risk of authentication bypass vulnerability

Cybersecurity Tips: Risk and Vulnerability Management

Trending Sources

Enable Two-Factor Authentication (2FA) to Add an Extra Layer of Security to Your Accounts

What We Can Learn from the Log4j Vulnerability

Guidance for reducing HTTP protocol RCE security vulnerability risk with Citrix Web App Firewall (CVE-2022-21907)

Reducing Cybersecurity Risks with NIST CSF 2.0

ZTNA vs. VPN

The Top Vulnerabilities in Software Security

Reflections on Career Week 2023: Employee Growth Is the Real Bottom Line

How to Implement Threat Modeling in Your DevSecOps Process

Seven principles of the zero trust security model

Kerberos vs. NTLM

Cybersecurity Awareness Month 2024: Doing Our Part to #SecureOurWorld

Citrix ADC?nFactor??????

Harnessing Static and Dynamic Code Scanning in DevSecOps

NIST CSF 2.0: What It Is, Why It Matters, and What It Means for Your Data

Ransomware Attackers Find Fresh Targets in Cultural Institutions

Citrix Endpoint Management now supports NetScaler advanced authentication policies (nFactor)

How to Counter AI-Driven Cybersecurity Threats to Physical Security Products

7 Challenges with Applying AI to Data Security—and the Real Way to Solve Them

Easy strategies for effective password management

Managing the Perils of Data Exfiltration

Managing the Perils of Data Exfiltration

Cyber Risk & Your Supply Chain: Managing the Growing Threat

Don’t Pay the Ransom: Keep Your Data Protected with Auto-on SafeMode

World Backup Day: Four Data Protection Best Practices to Know

Regulatory Revenue? 10 Ways to Turn Compliance into a Competitive Advantage

Cybersecurity tips for retail companies

Are Your IoT Devices Leaving the Door Open for Hackers?

5 Ways to Address Data Security Gaps Before an Attack

What is New with CBS Terraform Provider 0.9.0

Managing Cyberthreats to Combat Ransomware Part Two: Emerging Technologies and Use Cases

Guest Post: “I’ve Upgraded My Credentials. My Facility Is Safe Now, Right?”

How to Generate a CSR

Do Cyber Risks Lurk in Your Business Ecosystem?

Cybersecurity Audit Checklist

How Can Blockchain Be Used in Data Storage and Auditing?

Managing Cyberthreats to Combat Ransomware Part 1: Current Technologies

How to Recover from a Cyber Attack

Top Threats to University Security and How to Prepare

Top Threats to University Security and How to Prepare

Upgrade Your Own FlashArray with Pure1

What is the cloud compliance trap, and how do you avoid it?

Easy strategies for effective password management

Stay Connected