Equifax Blames One IT Guy for Not Patching

Former Equifax CEO Blames One Employee for Massive Hack After over a year of investigation, the U.S. House of Representatives Oversight and Government Reform Committee have released their report on the Equifax data breach. Their report is scathing, drawing immediate attention to massive failures. The report calls the hack “entirely preventable” and states that there…

December Patch Tuesday: Disclosed & Exploited

Patch Tuesday Release: The Latest News Microsoft has released half the updates they released last month: 39 security patches total. Thee cover Internet Explorer (IE), Edge, ChakraCore, Hyper-V, Exchange, Windows components, .NET Core, SQL Server, and Microsoft Office.  9 of these are listed as Critical with the remaining 30 as Important. Adobe Fixes Many Vulnerabilities…

Prepare for Patch Tuesday!

Do you have a patching strategy? It should include turning off Automatic Windows update. Patch Tuesday is here. To avoid the usual splitting headache, we recommend disabling automatic updates for Windows and implementing a reliable patch strategy. Windows 10 updates whether you want it to or not…unless you know the trick. While we recommend that…

What’s Better Than WSUS?

Microsoft WSUS is Not Enough While you may already have Microsoft® Windows Server Update Services (WSUS) in your IT environment for deploying Microsoft product updates to your Windows workstations, have you thought about patching non-Microsoft software that you run on your enterprise computers? These non-Microsoft software products, such as Oracle, Java®, and Adobe Reader®, may…

Critical 9.9 Zoom Vulnerability

Exploit Could Install Malware on Desktops Research done by Tenable®, Inc. has revealed a critical vulnerability in Zoom’s Desktop Conferencing Application. Over 750,000 companies use Zoom as their conferencing and webinar platform. This exploit could be leveraged to spoof chat messages, remove and lock out conference attendees, and even bypass screen control permissions to execute…

December Third-Party Security Updates

Business Evolves with Technology Recently, Forbes outlined 5 ways retail is attempting to redefine itself. Overall, businesses are experimenting with new technologies, utilizing IoT devices to craft a more engaging shopping experience. But are they exposing themselves to security risks? “Smart IoT devices such as beacons and smart shelves offer retail companies the efficiency to…

Patch Outdated Systems

The United States Postal Service has finally patched a known critical vulnerability that left 60 million user’s data exposed for over a year. As horrifying as the news is, the USPS’s actions shouldn’t come as a surprise: a recent report states that nearly 60% of organizations that suffered a data breach in the past two years…

Are Employees Disabling Defender?

Syxsense Realtime Use Case: Fortnite While bored at work, an employee manages to install Fornite on their device. However, they notice lags and the game running slow. Defender is causing issues and interrupting their gaming. What do they do? Disable Defender. While might seem like an extreme or specific case, there are many documented instances…

Malware: It’s Not If…It’s When

An unfortunate fact for IT departments is that they will, at some point, face a malware crisis. Here’s how addressing malware normally plays out. At some point after the infection occurs, usually much later, it gets noticed. Whether by pure luck or through receiving a ransom notice, the IT department becomes aware of the crisis…