Secure Critical Infrastructure Top of Mind for U.S.

When it comes to cyber-threats and defense, the U.S. government says that critical infrastructure threats are a growing concern. Rob Joyce, senior advisor of cybersecurity strategy for the National Security Agency NSA, said that while attacks targeting the systems that power the manufacturing,...

NVIDIA GeForce Experience Vulnerabilities - Lenovo Support US

No description provided...

NVIDIA GeForce Experience Vulnerabilities - Lenovo Support US

Lenovo Security Advisory: LEN-24779 Potential Impact: Information disclosure, denial of service, privilege escalation Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2018-6257, CVE-2018-6258, CVE-2018-6259, CVE‑2018‑6261, CVE‑2018‑6262 Summary Description: NVIDIA has released a...

Supply Chain Security: Managing a Complex Risk Profile

NYC — From Delta Airlines to Best Buy, a number of big-name companies were involved this year in data breaches – but even though their names made headlines, the actual security incidents occurred due to flaws in third-party partners. Across the board, companies are scratching their heads trying t...

CISO series: Strengthen your organizational immune system with cybersecurity hygiene

One of the things I love about my job is the time I get to spend with security professionals, learning firsthand about the challenges of managing security strategy and implementation day to day. There are certain themes that come up over and over in these conversations. My colleague Ken Malcolmso...

CISO series: Secure your privileged administrative accounts with a phased roadmap

In my role, I often meet with CISOs and security architects who are updating their security strategy to meet the challenges of continuously evolving attacker techniques and cloud platforms. A frequent topic is prioritizing security for their highest value assets, both the assets that have the mos...

Lenovo XClarity Integrator Vulnerabilities - US

Lenovo Security Advisory: LEN-23800 Potential Impact: Privilege escalation, information disclosure, file system modification Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2018-9072, CVE-2018-16093, CVE-2018-16097 Summary Description: In a recent internal audit, Lenovo...

Brocade Fabric OS Advisory - US

Lenovo Security Advisory: LEN-24765 Potential Impact: Privilege escalation, information disclosure, denial of service Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2018-6433, CVE-2018-6434, CVE-2018-6435, CVE-2018-6436, CVE-2018-6437, CVE-2018-6438, CVE-2018-6439, CVE-2018-644...

Intel DCI Policy Update - US

Lenovo Security Advisory: LEN-23611 Potential Impact: Privilege escalation, information disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2018-3652 Summary Description: Intel is releasing Direct Connect Interface DCI policy update. Existing UEFI setting restrictions for...

Intel DCI Policy Update - Lenovo Support US

No description provided...

Intel RST Installer Vulnerability - US

Lenovo Security Advisory: LEN-25086 Potential Impact: Privilege escalation, denial of service Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2018-3635 Summary Description: A potential security vulnerability in Intel® Rapid Store Technology RST installer may allow an unprivilege...

Intel RST Installer Vulnerability - Lenovo Support US

No description provided...

With The NASDAQ Bell Ceremony, We Kick Off The Next Leg of Imperva’s Incredible Journey

On Friday morning our CEO Chris Hylen and company execs rung the NASDAQ opening bell in New York, welcoming another day of trading for the world’s second-largest stock exchange; and taking full advantage of the opportunity to celebrate recent corporate milestones for Imperva. “I’m honored to be...

Multiple potential vulnerabilities in User Mode driver components of Intel Graphics Driver Unified Shader Compiler - US

Lenovo Security Advisory: LEN-24426 Potential Impact: Elevation of Privilege, Denial of Service Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2018-12152, CVE-2018-12153, CVE-2018-12154 Summary Description: The Intel® Graphics Drivers for Windows version 15.40.4963 and 15.36.48...

Multiple potential vulnerabilities in User Mode driver components of Intel Graphics Driver Unified Shader Compiler - Lenovo Support US

No description provided...

Insecure Handling of UEFI Variables - Lenovo Support US

No description provided...

Insecure Handling of UEFI Variables - US

Lenovo Security Advisory: LEN-23850 Potential Impact: Elevation of Privilege, Denial of service Severity: Medium Scope of Impact: Industry-wide Summary Description: Intel has reported to Lenovo that the BIOS reference code supplied for certain CPUs may permit an attacker to alter certain UEFI...

CMM Security Concerns - Lenovo Support US

No description provided...

Synaptics Touchpad Driver Leaks Kernel Memory Pointers - US

Lenovo Security Advisory: LEN-23156 Potential Impact: Privilege escalation Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2018-15532 Summary Description: Synaptics has informed Lenovo of a vulnerability in the Synaptics TouchPad driver. The driver can reveal freed kernel memo...

AMI Firmware Permits Microcode Downgrade - US

Lenovo Security Advisory: LEN-24239 Potential Impact: Unauthorized microcode downgrade Severity: Medium Scope of Impact: Industry-wide Summary Description: AMI has reported to Lenovo that the BIOS supplied by AMI may allow an attacker to revert the CPU firmware to an older version. Mitigation...