The cyber threat group 'Storm-2372′ has been carrying out attacks on governments, NGOs and various industries worldwide since August 2024, abusing 'Device Code Phishing' where an access token is misused.
Storm-2372 'Device code phishing' attack Read More »
Important change for KnowBe4 users: Microsoft disables legacy Exchange Online tokens. Re-authenticate the Phish Alert Button via NAA-SSO to avoid failures. Read how to solve this easily or let us help!
Action required for KnowBe4 Phish Alert Button Read More »
A vulnerability was recently discovered in FortiOS and FortiProxy that may allow an attacker to gain unauthorised access to a firewall's management interface. Action is required!
Critical vulnerability in FortiOS and FortiProxy Read More »
These CVEs let attackers remotely execute code on the VSPC server from an authorised management agent machine. Data can also be deleted or stolen... So, with scores of 9.9 and 7.1, these are definitely serious!
Veeam Service Provider Console CVEs Read More »
A critical vulnerability (CVE) has been discovered in FortiManager. We would like to explain the nature of this problem and share practical information on how to prevent hackers from gaining unauthorised access to your systems.
CVE Fortinet: Vulnerability found in FortiManager Read More »
A new vulnerability (CVE) has been discovered in Veeam Backup & Replication versions older than v12.1.2.172. This means that all versions below this version need to be patched. If you use our Full Managed/Expertise services, you don't need to worry. Our engineers will take care of this for you!
Major Veeam Update Required Read More »
With a (maximum!) CVSSv3 score of 9.8, this issue should be fixed immediately.
VMware vCenter Server multiple heap-overflow Read More »
Fortinet has released new firmware updates for Fortigate devices to fix a critical vulnerability in SSL VPN devices.
Major security update FortiOS Read More »
A vulnerability has been identified within VMware vCenter Server. This vulnerability allows a malicious person with network access to execute code on the underlying operating system.
Vulnerability VMware VCenter Read More »
A vulnerability has been disclosed within Citrix NetScaler ADC and NetScaler Gateway. This vulnerability allows a malicious person to execute code remotely.
Vulnerability Citrix NetScaler Read More »
A vulnerability has been identified within VMware vCenter Server. This vulnerability allows a malicious person with network access to execute code on the underlying operating system.
Vulnerability VMware VCenter Read More »
Fortinet has released new firmware updates for Fortigate devices to fix a critical vulnerability in SSL VPN devices.
Major security update FortiOS Read More »
Thanks to a just-discovered vulnerability, cybercriminals can invade your system just by sending a malicious email.
Outlook client - CVSS 9.8 pre-auth RCE bug Read More »
If you are working with from VEEAM Backup, you need to update to patch some important CVEs.
VEEAM Backup & Replication 11a Update Read More »
A buffer underwrite ("buffer underflow") vulnerability in the FortiOS & FortiProxy administrative interface could allow a remote unauthenticated attacker to execute arbitrary code on the device and/or perform a DoS on the GUI...
FortiOS / FortiProxy: Heap buffer underflow in administrative interface Read More »
CVE-2022-42475: Fortinet published an advisory on an actively exploited remote code execution vulnerability affecting FortiOS via the SSL VPN service.
Remote Code Execution vulnerability in Fortinet SSL VPN service Read More »
Follina is a vulnerability in the Support Diagnostics Tool that allows remote code execution with rights of the used program.
Microsoft 'Follina' zero-day vulnerability Read More »
Soon vSphere version 6.x will no longer be supported by VMware. We are happy to inform you how you can continue to enjoy full support.
vSphere 6.x: End of General Support Read More »
We would like to inform you of a necessary upgrade in N-Central, the tool responsible for monitoring your environment.
Managed Services Portal temporarily unavailable Read More »
Last weekend, a serious vulnerability was found in the widely used Java logging tool Log4j. This vulnerability makes it possible for unauthenticated persons to remotely inject and execute arbitrary code.
Log4j vulnerability Read More »
Let our experts guide you
Like thousands of organisations, rely on our knowledge & experience to further perfect, secure or manage (all or part of) your IT environment!
