433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (813) 563-2652

Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Unpatched MS Office flaw may leak NTLM hashes to attackers (CVE-2024-38200) A new MS Office zero-day vulnerability (CVE-2024-38200) can be exploited by attackers to grab users’ NTLM hashes, Microsoft has shared late last week. Critical RCE bug in SolarWinds Web Help Desk fixed (CVE-2024-28986) SolarWinds has fixed a critical vulnerability (CVE-2024-28986) in its Web Help Desk (WHD) solution that may … More → The post Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions appeared first on Help Net Security.
http://news.poseidon-us.com/TC3YnJ

What? A new government agency for homeowner insurance?

Bad weather has caused increasing real estate damage and insurance losses. My next guest proposes a federal solution to a problem. The post What? A new government agency for homeowner insurance? first appeared on Federal News Network.
http://news.poseidon-us.com/TC0l99

Mattel taps 25-year tech veteran to fill CTO role

Sai Koorapati is joining the toy company after most recently serving as SVP of Global IT at Topgolf Callaway Brands.
http://news.poseidon-us.com/TC0ZBM

Critical Start helps organizations reduce cyber risk from vulnerabilities

Critical Start announced Critical Start Vulnerability Management Service (VMS) and Vulnerability Prioritization. These new offerings are a foundational pillar of Managed Cyber Risk Reduction, allowing organizations to assess, manage, prioritize, and reduce cyber risk exposure posed by vulnerabilities across their environments. Critical Start’s Vulnerability Management Service is a fully managed service that enables security leaders to effectively run a vulnerability management program by offloading burdensome operational tasks. The managed service leverages Critical Start’s collaboration with … More → The post Critical Start helps organizations reduce cyber risk from vulnerabilities appeared first on Help Net Security.
http://news.poseidon-us.com/TBzkSQ

ISC Stormcast For Friday, August 16th, 2024 https://isc.sans.edu/podcastdetail/9100, (Fri, Aug 16th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/TBzG1v

Army to divest its oldest accounting systems to date

“It’s one thing to take a legacy system and to divest that system. It’s another thing to write it to a newer system,” Army’s Bradley Knick said. The post Army to divest its oldest accounting systems to date first appeared on Federal News Network.
http://news.poseidon-us.com/TByrXD

Two-plus years in, TSP website is almost there

The TSP board and its contractor have fixed the bulk of the problems. A few remain. Auditors find the big issue was the board’s inexperience in acquisition. The post Two-plus years in, TSP website is almost there first appeared on Federal News Network.
http://news.poseidon-us.com/TByR3C

Hide yo environment files! Or risk getting your cloud-stored data stolen and held for ransom

Cybercriminals are breaking into organizations’ cloud storage containers, exfiltrating their sensitive data and, in several cases, have been paid off by the victim organizations to not leak or sell the stolen data. “The attackers behind this campaign likely leveraged extensive automation techniques to operate successfully and rapidly,” according to Palo Alto Networks researchers. Exposed environment files hold keys to hosting cloud environments The attackers gained access to the cloud storage containers by scanning for and … More → The post Hide yo environment files! Or risk getting your cloud-stored data stolen and held for ransom appeared first on Help Net Security.
http://news.poseidon-us.com/TByHVQ