Resources
Blog
Patch Now: Microsoft Releases Updates for Over 75 Flaws
Microsoft Releases Patches for 9 Critical Flaws & 3 Zero-Day Vulnerabilities On Tuesday, Microsoft released its security updates for February 2023, including patches for over 75 flaws. Among the 75 vulnerabilities, nine were rated “critical” and 66 “important” in terms of severity of threat to the organization. Three of them
Four Different Microsoft Azure Services Found Vulnerable to Server-Side Request Forgery Attacks
Microsoft Azure Services Flaws Could’ve Exposed Cloud Resources to Cyberattacks According to a blog post Tuesday by Orca Security, four Microsoft Azure services have been found vulnerable to server-side request forgery (SSRF). The security issues were discovered by Orca between October 8, 2022 and December 2, 2022. The vulnerable services include: Azure
Microsoft Launches Brute Force Attack Protection For All Windows Versions
Microsoft Releases Policy to Further Prevent Brute Force Attack Attempts Earlier this week, Microsoft announced additional protection against brute force attacks, one of the most common methods used to attack Windows machines. IT admins can now configure a group policy to automatically block brute force attacks targeting local administrator accounts
What is an Active Directory Forest?
Active Directory (AD) Organizational Structure: Understanding AD Forests Active Directory is a vital component of any Microsoft enterprise and often a target for threat actors. As such, it is important not only to secure Active Directory but understand how to best configure and manage its’ components in order to reduce
Visit Cayosoft at Gartner Identity and Access Management Summit | Booth #116
Connect With Us at the Gartner Identity and Access Management Summit Cayosoft is proud to be a sponsor for Gartner Identity and Access Management Summit 2022. Identity and access management (IAM) and IT leaders will come together to explore the latest trends in privileged access management, IAM programs and strategy, cloud
Connect with Cayosoft at Gartner Security and Risk Management Summit
Join Us at the Gartner Security and Risk Management Summit Cayosoft is proud to be a sponsor for Gartner Security and Risk Management Summit 2022. IT and security professionals will come together to explore and share the latest trends in cybersecurity, IT threat mitigation, and new initiatives to safeguard their
Understanding IAM: Everything You Need to Know About the Components of Identity and Access Management
Discover the Essential Components of Identity and Access Management Beginning in 2021, the second Tuesday of April is Identity Management Day. As a joint venture between the Identity Defined Security Alliance (IDSA) and the National Cybersecurity Alliance (NCA), Identity Management Day was created to raise awareness and educate business leaders,
Cayosoft Guardian 3.1 Release | Now Available
We’re excited to announce the release of Cayosoft Guardian v3.1! New enhancements are now available as part of the Cayosoft Guardian 3.1 release. We’re always in pursuit of ways to help you better secure and protect your Microsoft platforms, from on-premises, to hybrid, to Azure AD, and Office 365. This
Senate Passes Cybersecurity Act: Orgs to Report Cyberattacks & Ransom Payments
The Senate on Tuesday passed major cybersecurity legation, moving one step closer toward forcing critical infrastructure companies to report cyberattacks and ransomware payments. The passage comes as federal officials have repeatedly warned of the potential for Russian cyberattacks against the United States amid the escalating conflict in Ukraine. The legislation,
Azure AD Connect: New Update
New Azure AD Connect Version 2.0.91.0 Released This week, Microsoft released an updated version of Azure AD Connect. This new version provides compliance of the Azure AD Connect Health component with the Federal Information Processing Standards (FIPS) requirements. Keep track and understand all the versions that have been released —
‘Wormable’ Flaw Leads January 2022 Patch Tuesday
Microsoft Releases Over 100 Updates in Patch Tuesday for January 2022 The January security updates from the Redmond-based software giant cover security defects in a wide range of default Windows OS components, including a critical flaw in the HTTP Protocol Stack (http.sys) that Microsoft describes as “wormable,” and another code
ManageEngine Zero-Day Flaw Actively Being Exploited
FBI Warns: APT Groups Exploiting Critical Vulnerability in ManageEngine Software Earlier this month, the FBI and Cybersecurity and Infrastructure Security Agency (CISA) released a joint advisory highlighting a newly discovered vulnerability being actively exploited in ManageEngine ServiceDesk Plus, owned by Zoho Corp, an IT help desk and asset management software.
Now Available: Q4 Releases for Cayosoft Administrator and Guardian
We’re excited to announce the Q4 2021 releases of Cayosoft Administrator and Cayosoft Guardian! By combining customer feedback and the latest Microsoft revisions, our products — Cayosoft Administrator: advanced Active Directory and Azure AD management software and Cayosoft Guardian: all-in-one, change auditing and immediate Active Directory recovery software, are now
Announcing Launch of Cayosoft Guardian Forest Recovery
Cayosoft Launches Innovative, All-in-One Active Directory Recovery Software, Cayosoft Guardian Forest Recovery — A Single Solution for All Microsoft Directory Recovery Scenarios Including Immediate Full Forest Recovery, to Save Businesses from Costly Outages New Cayosoft solution delivers continuous change monitoring and immediate recovery for all for Active Directory (AD), hybrid
FBI & CISA Warning: ManageEngine Flaw Poses Serious Risk
APT Actors Exploit Vulnerability in ManageEngine ADSelfService Plus Reports confirm a critical security vulnerability in ManageEngine ADSelfService Plus, a self-service password management and single sign-on (SSO) tool for Active Directory environments, is actively being exploited. This newly discovered vulnerability, CVE-2021-40539, presents a critical authentication bypass risk that affects REST API
