Endpoint Security Archives

NIST SP 800-121 Revision 2: Guide to Bluetooth Security

Endpoint Security, Network Security, Standards & Guidelines, Wi-Fi Security / By Frank Crast / January 29, 2022 March 26, 2022 / bluetooth, NIST, SP 800-121, Wireless

The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-121 Revision 2: “Guide to Bluetooth Security.”

NSA releases guidance on securing wireless devices in public settings

Cybersecurity Attacks, Endpoint Security, Guidelines, System Hardening, Vulnerabilities & Exploits, Wi-Fi Security / By Frank Crast / August 2, 2021 August 2, 2021 / BlueBorne, Bluebugging, Bluejacking, Bluesnarfing, bluetooth, LLMNR, MFA, NFC, NIST, NSA, SP 800-121, Wi-Fi, Wireless

The National Security Agency (NSA) has released guidance on securing wireless devices in public settings for government national defense entities and the general public. The new 8-page guidance infosheet summarizes ways bad actors target wireless devices as well as good safeguards to protect against such cyberattacks. The NSA warns that although connecting to public Wi-Fi …

NSA releases guidance on securing wireless devices in public settings Read More »

The top 3 endpoint threats used in 2020 cyberattacks

Cybersecurity Articles, Cybersecurity Attacks, Endpoint Security, Malware, System Hardening, Vulnerabilities & Exploits / By Frank Crast / September 22, 2020 March 26, 2021 / ATT&CK, BlueKeep, Cisco, CobaltStrike, credentials, CVE-2019-0708, Divergent, Emotet, FASTCash, GALLIUM, HIDDEN COBRA, IOT, Metasploit, Mimikatz, MITRE, PowerSHell, Powersploit

Cybersecurity criminals are continuing to change threat tactics by leveraging more fileless malware and duel-use tools to attack organizations.

Apple security updates for iOS 13.3, macOS Catalina 10.15.2 and other products

Endpoint Security, Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / December 12, 2019 December 13, 2019 / Catalina 10.15.2, iCloud, iOS 13.3, iTunes, macOS, Safari, watchOS, Xcode

Apple has released security updates for iOS 13.3 and macOS Catalina 10.15.2, as well as other products to include Safari, watchOS, tvOS, iTunes, iCloud and Xcode.

Attackers reverse Outlook vulnerability CVE-2017-11774 patch functionality

Endpoint Security, Vulnerabilities & Exploits / By Frank Crast / December 4, 2019 December 4, 2019 / APT33, APT34, CVE-2017-11774, FireEye, Outlook

Researchers at FireEye have spotted an uptick in active exploits of CVE-2017-11774, an Outlook security feature bypass vulnerability. Attackers are also actively reversing Outlook vulnerability patch functionality. To help protect against such exploits, FireEye has provided Outlook hardening guidelines.

Endpoint Security

NIST SP 800-121 Revision 2: Guide to Bluetooth Security

NSA releases guidance on securing wireless devices in public settings

The top 3 endpoint threats used in 2020 cyberattacks

Apple security updates for iOS 13.3, macOS Catalina 10.15.2 and other products

Attackers reverse Outlook vulnerability CVE-2017-11774 patch functionality

NIST SP 800-128: Security-Focused Configuration Management of Information Systems Guidelines

RobbinHood ransomware holds Baltimore City’s data hostage

Former student uses “USB Killer” device to destroy university computers

ASUS updates Live Update Software, response to APT

Cold boot attack can expose encryption keys, data on laptops