TWINN #128 Attack surface management is hard work.
Attack surface management is hard work. It requires a continuous discipline of all aspects of an organization’s information exposure. To make matters even more serious, consider that the good guys have to patch all weaknesses, but a criminal needs to find only one single weakness. One of the areas we all have to pay attention to is the login systems we manage and maintain, along with the password reset option. This story here illustrates that:
Table of Contents
The 5 Top Cyber Security Stories Of The Week – June 12, 2023
Likely a developer’s oversight is what led to this weakness that exposed a lot of private data.
The company states that SaaS email solutions were not impacted by this vulnerability, and most small organizations that are still running an appliance like this should be moving to a cloud solution anyhow.
“While not mentioned in the release notes, security professionals and admins have hinted that the updates quietly fixed a critical SSL-VPN RCE vulnerability that would be disclosed on Tuesday, June 13th, 2023.”
Learning about BatCloak really made me pause and reflect. If it wasn’t obvious before that relying on endpoint security alone for protection is insufficient, this makes it abundantly obvious. Defense necessarily must be in depth.
“The Kimsuky group is adept at building relationships at target organizations to more easily deliver malware and steal credentials.” When we do have proper security posture but criminals still target us, it will be by building relationships.
Did you know?
A phone thief’s first step is to turn on airplane mode. This automation allows you to require a passcode. Sad we have to resort to this tactic, but that is ultimate nerdom!