It's been a little over a year since the official release of Windows 11 in October 2021. During this time, we have been deploying it to customers upon request, and our engineering teams have been assessing and monitoring the latest OS for stability and quality issues. We recently completed the evaluation and can report that our systems and services are now compatible with Microsoft Windows 11 for workstations, and ready to support our clients as they move onto this new OS.
Systems Engineering is aware of the following security vulnerability in Fortinet operating systems, FortiOS: CVE-2022-40684 / FG-IR-22-377.
Systems Engineering SE EventWatch Powered by the Arctic Wolf Security Operations Cloud Now Provides Clients Industry-Leading Cybersecurity Capabilities to Tackle the Increasing Dangers of Advanced Cyberattacks.
On Tuesday, August 23, an advisory notification was released by VMware, the virtualization technology software firm, announcing a local privilege escalation vulnerability (CVE-2022-31676). Updates are available to remediate this vulnerability in affected VMware products.
Backing up your critical data should be a fundamental part of every data protection strategy. With ransomware breaches and recovery costs nearly doubling over the last year, at 66% up from 37% and $1.85M up from $760K respectively, organizations cited data backups as the #1 method used to restore compromised data.
For years now, multi-factor authentication (MFA) has been at the top of the cybersecurity best practices list. MFA has proven to curb data breaches due to compromised credentials (usernames and passwords), and according to Microsoft, 99.9% of cyber-attacks on company accounts are preventable with properly deployed MFA. This is a statistic no business leader can afford to ignore.
Several cybersecurity research groups have identified and studied the use of a Zero-Day vulnerability found in the Mitel VoIP MiConnect solution, CVE-2022-29499. The vulnerability exists due to improper input validation in the Mitel Service Appliance. A cyberattacker can send a specially crafted HTTP GET request to the application and execute arbitrary Operating System commands on the target system. Successful exploitation of this flaw may result in the complete compromise of the vulnerable system. This vulnerability has been successfully exploited by at least one ransomware group.
