Advisory Published - September 2021

Important Advisory/Best Practices - Sept 2021

Date:09/28/2021 >> Selecting and Hardening Remote Access VPNs

Recommandation: 

  • Configuring strong cryptography and authentication
  • Running only strictly necessary features
  • Protecting and monitoring access to and from the VPN


Date:09/22/2021 >>  Conti Ransomware Advisory

Recommandation:

  • Use multi-factor authentication.
  • Implement network segmentation and filter traffic.
  • Scan for vulnerabilities and keep software updated.
  • Remove unnecessary applications and apply controls.
  • Implement endpoint and detection response tools.
  • Limit access to resources over the network, especially by restricting RDP.
  • Secure user accounts.
  • Backups



Posted by No comments:
Labels: ,

Critical Security Vulnerability Summary - September 2021

Critical List:


Date:09/23/2021 >> CVE-2021-20034 | SonicWall SMA100 series | BUG | NO Active Exploitation

Date:09/21/2021 >> CVE-2021-22005 | VMware vCenter Server/Cloud Foundation | Version Impacted 7.0, 6.7 | BUG | Active Exploitation 
Posted by No comments:
Labels: ,
Subscribe to: Posts (Atom)