There have been a number of vulnerabilities published for the Remote Desktop Services protocol stack over the last little while. The catch with all of them is to have a RDP listener open to the Internet on any port with Network Level Authentication disabled or not available as it was […]
Security
7 posts
We don’t receive a lot of these kinds of messages from SonicWALL so when it came in it was treated with much suspicion. The message can be found here: SonicWALL Security Advisory Announcement Below is a quote with all of the tracking stuff removed from the URLs. July 19, 2019A […]
We’re in the process of digging in to the methodology for securing our Office 365 (O365) and Azure resources. One of the things we are doing is building an on-boarding checklist for setting up O365 and Azure tenants as we sign them up. The first place to start is the […]
When clicking on the Outlook App (2019) to get it set up with our Office365 account we hit this: Outlook: Something went wrong and Outlook couldn’t set up your account. Please try again. Well, nothing worked. With Office365 we can’t set up our Outlook client manually either. Logging in to […]
The first place in any “security strategy” should be to train the human. Most malware infections today are caused by a user clicking through when they should not have. The posters below give a very clear set of workflows for an infection. Excellent posters via MALWARE-TRAFFIC-ANALYSIS.NET Note the STEP IN […]
We have a need to set up SSL certificates for a number of the WordPress sites we have set up as an Azure Web App. The simplest way to do this, at least for us, is to use the built-in CSR certificate request mechanism as we just happen to have […]
With the abundance of malware and ransomware it’s absolutely necessary that we take the time to examine our virtualization host and backup structures. Volume Shadow Copies Obviously not a “backup” Most ransomware kills all shadow copies available on a system Backup to Disk/NAS/SAN Disk Rotated NAS/SAN needs to be streamed […]