Zero-day vulnerabilities in Microsoft Exchange Server

We are working on an accelerated timeline to release a fix Microsoft is investigating two reported zero-day vulnerabilities affecting Microsoft Exchange Server 2013, Exchange Server 2016, and Exchange Server 2019. The first one, identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, and the second one, identified as CVE-2022-41082, allows Remote…

Read More

Optus commissions independent external review

Following the recent cyberattack on Optus and its customers Optus is appointing international professional services firm Deloitte to conduct an independent external review of the recent cyberattack, and its security systems, controls, and processes. The review was recommended by Optus Chief Executive Officer, Kelly Bayer Rosmarin, and was supported unanimously by the…

Read More

Increasing automation within three years

Organizations to implement infrastructure automation Eighty-five percent of infrastructure and operations (I&O) leaders that do not currently have any full automation expect to become more automated in the next two to three years, according to a new survey by Gartner, Inc. Gartner predicts that by 2025, 70 per cent of organizations will…

Read More

Employees still rely on username and password

Yubico brought together cybersecurity industry leaders for its inaugural YubiSummit Considering recent phishing-based cyberattacks and in recognition of Cybersecurity Awareness Month, Yubico, the leading provider of hardware authentication security keys, today shared the results of its inaugural State of Global Enterprise Authentication Survey 2022 at a security thought-leadership industry summit hosted by the…

Read More