In 2016, Systems Engineering launched our first ever summer internship program, which has continued to grow and develop over the last four years. With unemployment levels for technology workers at record lows, and a steady increase in open tech positions, students have a unique opportunity with Systems Engineering to gain real-world experience through on-the-job training for a quick transition into full-time careers. Several of our past participants have chosen to take positions within Systems Engineering once they have completed formal studies, which is a testament to the strength of our program and the quality of candidates accepted into the summer internship.

You may recall from our previous blog post in October that Microsoft will replace the core terms of their customer agreement for all existing and new Microsoft customers after January 31, 2020. This new Microsoft Customer Agreement (MCA) is said to improve the purchase experience to better support all customers.

I am pleased to announce the recent promotions of two of our most influential employee-owners to our senior leadership team. These individuals have been an integral part of our company and culture since the day they arrived. They have repeatedly demonstrated what it means to be a good leader and a valued partner.

Yesterday Microsoft announced and delivered a fix for a serious vulnerability in Windows 10 cryptography function (CVE-2020-0601). The NSA had previously discovered and notified Microsoft to develop a solution. Microsoft also stated that they had seen no exploit of this vulnerability to date. The vulnerability would allow an attacker to disguise their malicious software as a valid and certified piece of code; thereby spoofing the Windows 10 PC or Windows Server 2019 into thinking it is legitimate code that can be trusted and therefore executed.

The time for Windows 7 has come and gone. As of January 2020, Microsoft stopped providing extended support for the popular operating system. While Extended Security Updates (ESU) are available for the Professional and Enterprise editions of Windows 7, this option comes at an increasing cost to organizations. It's critical to start planning your migration to Windows 10 now. 

Citrix recently published a critical security bulletin (CVE-2019-19781) advising users of a vulnerability in the Citrix Application Delivery Controller (ADC) device formerly known as NetScaler ADC, Citrix Gateway, and NetScaler Gateway. If exploited, it can allow an unauthenticated attacker to execute code on the appliance that can lead to possibly compromising a critical perimeter security component. Many organizations rely on these devices as load balancers to control access from the outside to internal Citrix Servers and to terminate SSL VPNs.

When it comes to managing networks, businesses often fall victim to assumptions and oversights. The reality is that the protection of information and applications is always evolving and, as criminals find new ways to exploit weaknesses, it's tough to stay one step ahead.