Resources

Blog

Microsoft Launches Brute Force Attack Protection For All Windows Versions

Microsoft Releases Policy to Further Prevent Brute Force Attack Attempts Earlier this week, Microsoft announced additional protection against brute force attacks, one of the most common methods used to attack Windows machines. IT admins can now configure a group policy to automatically block brute force attacks targeting local administrator accounts

Read More »

What is an Active Directory Forest?

Active Directory (AD) Organizational Structure: Understanding AD Forests Active Directory is a vital component of any Microsoft enterprise and often a target for threat actors. As such, it is important not only to secure Active Directory but understand how to best configure and manage its’ components in order to reduce

Read More »
Active Directory Security Software

Cayosoft Guardian 3.1 Release | Now Available

We’re excited to announce the release of Cayosoft Guardian v3.1! New enhancements are now available as part of the Cayosoft Guardian 3.1 release. We’re always in pursuit of ways to help you better secure and protect your Microsoft platforms, from on-premises, to hybrid, to Azure AD, and Office 365. This

Read More »

Azure AD Connect: New Update

New Azure AD Connect Version 2.0.91.0 Released This week, Microsoft released an updated version of Azure AD Connect. This new version provides compliance of the Azure AD Connect Health component with the Federal Information Processing Standards (FIPS) requirements. Keep track and understand all the versions that have been released —

Read More »

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

Microsoft Releases Over 100 Updates in Patch Tuesday for January 2022 The January security updates from the Redmond-based software giant cover security defects in a wide range of default Windows OS components, including a critical flaw in the HTTP Protocol Stack (http.sys) that Microsoft describes as “wormable,” and another code

Read More »
Zoho ManageEngine Zero Day Flaw Active Exploit

ManageEngine Zero-Day Flaw Actively Being Exploited

FBI Warns: APT Groups Exploiting Critical Vulnerability in ManageEngine Software Earlier this month, the FBI and Cybersecurity and Infrastructure Security Agency (CISA) released a joint advisory highlighting a newly discovered vulnerability being actively exploited in ManageEngine ServiceDesk Plus, owned by Zoho Corp, an IT help desk and asset management software.

Read More »
Active Directory Software Release Updates Cayosoft Administrator and Guardian

Now Available: Q4 Releases for Cayosoft Administrator and Guardian

We’re excited to announce the Q4 2021 releases of Cayosoft Administrator and Cayosoft Guardian! By combining customer feedback and the latest Microsoft revisions, our products — Cayosoft Administrator: advanced Active Directory and Azure AD management software and Cayosoft Guardian: all-in-one, change auditing and immediate Active Directory recovery software, are now

Read More »
Launch of Cayosoft Guardian Forest Recovery

Announcing Launch of Cayosoft Guardian Forest Recovery

Cayosoft Launches Innovative, All-in-One Active Directory Recovery Software, Cayosoft Guardian Forest Recovery — A Single Solution for All Microsoft Directory Recovery Scenarios Including Immediate Full Forest Recovery, to Save Businesses from Costly Outages New Cayosoft solution delivers continuous change monitoring and immediate recovery for all for Active Directory (AD), hybrid

Read More »
Security Flaw Found in ManageEngine

FBI & CISA Warning: ManageEngine Flaw Poses Serious Risk

APT Actors Exploit Vulnerability in ManageEngine ADSelfService Plus Reports confirm a critical security vulnerability in ManageEngine ADSelfService Plus, a self-service password management and single sign-on (SSO) tool for Active Directory environments, is actively being exploited. This newly discovered vulnerability, CVE-2021-40539, presents a critical authentication bypass risk that affects REST API

Read More »
Fortinet VPN Password Leak

Credentials for Nearly 500,000 Fortinet VPN Users Leaked

Hackers Leak Passwords for Fortinet VPN Servers A list with nearly half a million Fortinet VPN user credentials, allegedly scraped from unprotected devices, is now being shared on hacker forums across the dark web. On Tuesday, a threat actor known as “Orange”, thought to be a member of the popular

Read More »
Microsoft Zero-Day Exploit Vulnerability RCE MSHTML

New Microsoft Vulnerability, MSHTML RCE, Under Active Attack

Microsoft Alerts of New Zero-Day Flaw in Windows Microsoft released a security alert yesterday announcing a newly discovered flaw for a remote code execution (RCE) in MSHTML that is currently being exploited. MSHTML, also known as Trident, is a component used as a browser rendering engine for Microsoft Office documents.

Read More »