ArmorPoint

08/18/2022

Each year, cybercriminals grow more dangerous and utilize
sophisticated attack methods to breach the networks and data banks of
enterprises.
Are you secure? Armor Up!

The IT Leaders’ Guide to Choosing the Right SIEM Deployment Method by Katie Simmons April 4, 2019 Guide A Security Information & Event Management (SIEM) is a platform used for managing security incidents. It enables the collection and analysis of security logs and machine data from across an organ...

08/17/2022

Have you ever wondered how hackers steal your information?
Spear-phishing is a common method, and this is how it works.

When it comes to cyber-attacks, the most common method of gaining access to your passwords and information may surprise you- it is just by asking for it. Hackers use a method called Spear Phishing to trick users into giving up their data freely.

08/17/2022

Even defibrillators can get hacked!
No instances have occurred yet, but the risk remains.
How should the medical industry react?

Any connected device these days is a potential target of hackers — and that now includes defibrillators.

08/17/2022

Struggling to figure out which SIEM solution is right for you? We provided a guide to help you get there.

The IT Leaders’ Guide to Choosing the Right SIEM Deployment Method by Katie Simmons April 4, 2019 Guide A Security Information & Event Management (SIEM) is a platform used for managing security incidents. It enables the collection and analysis of security logs and machine data from across an organ...

08/17/2022

Have you ever heard of hash-and-roll? It is a new and completely free way of creating new, secure passwords.

In the electronic battlefield that is 2019, the realm of password security is fraught with dangers. Websites from companies big and small leak like sieves, storing user data in completely unsecure …

08/17/2022

A new vulnerability being dubbed “Evil PLC Attack” has been discovered affecting PLC’s (program logic controllers). Currently, it is affecting top automation companies such as Rockwell Automation, Schneider Electric, GE, B&R, XINJE, OVARRO, and Emerson. The attack targets engineers on industrial networks who work on PLC’s in top industries such as manufacturing, automotive, utilities, electricity, and water and waste among others. Products include:
• OVARRO: TBox platform
• B&R (by ABB Group): X20 System platform
• Schneider Electric: Modicon platform (mainly M340, M580)
• General Electric (GE): Mark VIe platform
• Rockwell Automation: Micro800 Control Systems platform
• Emerson: PACSystems platform
• XINJE: XD Series platform
For more information, please see: https://bit.ly/3pwCDQF

08/16/2022

A security issue was discovered in aws-iam-authenticator that affects the logged identity and is not discernible from valid requests. Users are only affected if they use the AccessKeyID template parameter to construct a username and provide different levels of access based on the username. To learn more about this issue, please click the following link:
[Security Advisory] CVE-2022-2385: AccessKeyID validation bypass (https://bit.ly/2mX8eI)

08/16/2022

A vulnerability with Netwrix Auditor has been discovered where an insecure object deserialization issue can allow attackers to use remote code ex*****on to submit arbitrary objects to achieve remote code ex*****on. This can lead to a compromise of the Active Directory domain. Recommended actions: update to version 10.5. More information can be found at:

Bishop Fox covers the Insecure Object Deserialization vulnerability within the Netwrix Auditor application and suggested fixes in this advisory.

08/16/2022

A flaw was found with the Questions for Confluence app that could allow a remote, unauthenticated attacker with knowledge of the hardcoded password to log into Confluence and access all content accessible to users in the confluence-users group. This exploit is now being seen in the wild. Uninstalling does not remediate this issue – please update the Questions for Confluence app to a fixed version:
2.7.x >= 2.7.38
Versions >= 3.0.5
For more information, please visit: https://bit.ly/3PK7QLV

08/16/2022

VMWare has released patches for VMware Workspace ONE Access, Identity Manager and vRealize Automation. These help to resolve a critical flaw involving an authentication bypass vulnerability affecting local domain users. Attackers with network access to the UI may be able to access administrative access without the need to authenticate. Currently, the exploit has not been seen in the wild. For more information, please see:
https://bit.ly/3oSUFwo

08/15/2022

The CMMC program includes cyber protection standards for companies in the defense industrial base (DIB). By incorporating cybersecurity standards into acquisition programs, CMMC provides the Department assurance that contractors and subcontractors are meeting DoD's cybersecurity requirements. The enhanced “CMMC 2.0” program maintains the original goal of safeguarding sensitive information by simplifying the CMCC standards and increasing Department oversight of professional and ethical standards in the assessment ecosystem.

At ArmorPoint we offer customizable CMMC Consulting and Managed Services which are efficient and effective to meet your needs:

• vCISO
• Strategic and tactical
• Leadership and Guidance
• Gap Assessments
• MSP – MSSP Services

Contact us today to learn if our CMMC consulting services are right for you.

08/15/2022

It’s no secret that today’s digital climate has forced businesses into making cybersecurity awareness and planning a primary focus...Yet, while the need to create a cybersecurity plan and take proactive business security measures may be clear to many, for executive leadership, it can be difficult to know where to begin. NIST has outlined 5 easy to follow guidelines to help manage this process efficiently.

The Executive’s Guide to Creating a Cybersecurity Plan by Katie Simmons March 29, 2019 Guide It’s no secret that today’s digital climate has forced businesses into making cybersecurity awareness and planning a primary focus. Today, on average, less than 50 percent of small to medium-sized busi...