Lucene search
K

1379 matches found

Akamai Blog
Akamai Blog
added 2018/05/08 1:17 p.m.28 views

Make Application Access IT-Friendly

More and more companies are looking at alternatives to VPNs due to the security risks associated with network level access. And increasingly, the goal is to eliminate network trust through a zero trust architecture - which is one of the primary reasons many of these organizations are deploying...

7.5AI score
Exploits0
Akamai Blog
Akamai Blog
added 2018/05/02 2:27 p.m.16 views

How to Make Your Demo Environment Easy, Accessible...AND Secure

A common misconception I've heard in the field is that a tradeoff exists between easy access for applications and network security. For example, companies want to allow their sales team, partners, and prospects access into demo environments. With traditional access solutions, there is a question ...

0.6AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2018/05/01 4:0 p.m.18 views

First things first: Envisioning your security deployment

This blog post is part of a series that responds to common questions we receive from customers about deployment of Microsoft 365 Security solutions. In this series youll find context, answers, and guidance for deployment and driving adoption within your organization. Check out our last blog...

0.1AI score
Exploits0
CISA
CISA
added 2018/03/27 12:0 a.m.23 views

Creating and Managing Strong Passwords

NCCIC/US-CERT reminds users of the importance of creating and managing strong passwords. Passwords are often the only barrier between you and your personal information. There are several programs attackers can use to help guess or "crack" passwords. However, choosing strong passwords and keeping...

7.1AI score
Exploits0References2
Malwarebytes
Malwarebytes
added 2018/03/12 3:0 p.m.26 views

The digital entropy of death: what happens to your online accounts when you die

Unless you're planning on having your mind jammed inside some sort of computer chip, eventually mortality will catch up and you're going to have to work out what you'll do with all of your online accounts. When it's time to shuffle off this mortal coil, you might, theoretically, be slightly annoy...

6.7AI score
Exploits0
CNVD
CNVD
added 2018/03/12 12:0 a.m.3 views

Abine Blur Information Disclosure Vulnerability

Abine Blur is a private account management application from Abine USA.Password Manager Extension is one of the password management plug-ins. A security vulnerability exists in Password Manager Extension in Abine Blur version 7.8.2428 prior to 7.8.242. A remote attacker can exploit this...

9.8CVSS7.2AI score0.01663EPSS
Exploits0References1
Prion
Prion
added 2018/03/11 5:29 a.m.16 views

Code injection

The Password Manager Extension in Abine Blur 7.8.242 before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured...

5CVSS9.1AI score0.01663EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2018/03/11 5:29 a.m.17 views

CVE-2018-7213

The Password Manager Extension in Abine Blur 7.8.242 before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured...

9.8CVSS9.3AI score0.01663EPSS
Exploits0References4
OSV
OSV
added 2018/03/11 5:29 a.m.4 views

CVE-2018-7213

The Password Manager Extension in Abine Blur 7.8.242 before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured...

9.8CVSS5.8AI score0.01663EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/03/11 5:0 a.m.15 views

CVE-2018-7213

The Password Manager Extension in Abine Blur 7.8.242 before 7.8.2428 allows attackers to bypass the Multi-Factor Authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured...

9.3AI score0.01663EPSS
Exploits0References4
CVE
CVE
added 2018/03/11 5:0 a.m.49 views

CVE-2018-7213

The CVE concerns Abine Blur’s Password Manager Extension. Affected: Blur 7.8.242* pre-release 7.8.2428. Root cause: an unsecured right-click context menu allows bypass of Multi-Factor Authentication and macOS disk encryption protection, enabling exfiltration of secured data. Documents do not spec...

9.8CVSS9.1AI score0.01663EPSS
Exploits0References4Affected Software1
Krebs on Security
Krebs on Security
added 2018/03/01 7:4 p.m.59 views

Financial Cyber Threat Sharing Group Phished

The Financial Services Information Sharing and Analysis Center FS-ISAC, an industry forum for sharing data about critical cybersecurity threats facing the banking and finance industries, said today that a successful phishing attack on one of its employees was used to launch additional phishing...

7.3AI score
Exploits0
Akamai Blog
Akamai Blog
added 2017/12/13 2:0 p.m.15 views

Akamaizing Your Dev & QA Environments

Over the last few months, I've been talking to many development and test teams who deliver their sites and applications through the Akamai Intelligent Platform. One common challenge they face is how to test their Akamai delivery configurations on the Internet against their private development and...

7.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2017/10/05 1:0 p.m.75 views

When Phishing Starts from the Inside

A growing concern of security professionals is internal phishing attacks - phishing emails sent from one trusted user to another of the same organization. Internal phishing emails are used in multi-stage attacks in which an email account is owned either by controlling the users device with...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/08/14 4:35 p.m.74 views

Back to school cybersecurity tips for parents and kids

The time to start the new school term is just around the corner. And for parents, the excitement and anxiety may be palpable, especially if it's their kid's first time attending a new school. Ads for back-to-school gear start as early as July, increasing in frequency and urgency until the kiddos...

6.6AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2017/07/18 12:0 p.m.49 views

How Do SMEs Fight Off Cyberattacks?

I'd like to address some of the concerns that small and medium sized enterprises SMEs may have around cybersecurity, especially in the wake of the WannaCry ransomware attack and a continuous news flow around successful attacks on high profile companies. Does the fact that well-known brands are...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2017/07/05 2:13 p.m.21 views

Zeus - AWS EC2 / S3 Auditing & Hardening Tool

Zeus is a powerful tool for AWS EC2 / S3 best hardening practices. It checks security settings according to the profiles the user creates and changes them to recommended settings based on the CIS AWS Benchmark source at request of the user. Identity and Access Management Avoid the use of the "roo...

7.6AI score
Exploits0References1
CISA
CISA
added 2017/05/31 12:0 a.m.12 views

FBI Releases Article on Protecting Business Email Systems

The Federal Bureau of Investigation FBI has released an article on Building a Digital Defense with an Email Fortress. FBI warns that scammers commonly target business email accounts with phishing and social engineering schemes. Strategies for preventing email compromises include avoiding the use ...

6.7AI score
Exploits0References3
CISA
CISA
added 2017/05/25 12:0 a.m.13 views

FTC Releases Alert on Identity Theft

The Federal Trade Commission FTC has released an alert about how quickly criminals begin using your personal information once it is posted to a hacker site by an identity thief. FTC researchers found that it can take as few as 9 minutes for crooks to access stolen personal information posted to...

6.7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2017/05/18 12:5 p.m.9 views

Senate's Use of Signal A Good First Step, Experts Say

On Tuesday the United States Senate made it official and approved the use of encrypted messaging app Signal by staffers. Encryption advocates applauded the measure, but say more needs to be done to protect “civic” infrastructure critical to democracy. “The move to secure communications...

0.7AI score
Exploits0References4
Rows per page
Query Builder