Blog

By Eric Corcoran, Posted in Technology Week in Review

Monday 1/27 Fortinet removes SSH and database backdoors from its SIEM product Fortinet has released patches this month to remove two backdoor accounts from FortiSIEM, the company's Security Information and Event Management (SIEM) product. Due to the sensitive nature of the data processed by a SIEM product and its central role in a company's cyber-security defenses, any backdoor mechanism in these systems is considered a dangerous and highly critical vulnerability. https://zd.net/38Mi3Sf Old Scams Gettin... read more.

• January 31, 2020

By Eric Corcoran, Posted in Technology Week in Review

Monday 1/20 Vulnerability Update: First permanent fixes available, timeline accelerated Gotham’s Professional Services team is actively remediating the Citrix ADC vulnerability. If you are running versions 11.1 or 12, there is new firmware available to apply. The process can typically be completed within two hours with a minimum of downtime in an HA configuration. Other versions of NetScaler firmware still need to apply the available mitigation. Gotham NetScaler Managed Services customers are being... read more.

• January 24, 2020

By Eric Corcoran, Posted in Technology Week in Review

Monday 1/13 Recommended connectivity for virtual apps and desktops in the cloud (via Citrix) Reliable, secure, high-performance network connectivity with QoS is critical to providing a great user experience with virtual apps and desktops, and Citrix SD-WAN offers unique integration with Citrix Virtual Apps and Desktops to deliver exactly that and more. http://bit.ly/388gH3X IGEL Trends 2020: All Signs Point to Desktop-as-a-Service (via IGEL) The cloud is no longer a trend, it’s there, and we must... read more.

• January 17, 2020

By Timothy Karl, Posted in Infrastructure, Security

Microsoft Windows 7 and Windows Server 2008 reached end of life on January 14, 2020. This means that Microsoft will no longer be releasing free security patches, updates, or support when something goes wrong. Although these operating systems won’t instantly stop working or become security risks overnight, there are risks with staying on these operating systems for an extended period of time. What happens if I stay on these operating systems? There is a huge risk of being exploited by cyber crimina... read more.

• January 16, 2020

By Timothy Karl, Posted in Infrastructure, Security

On December 17, 2019, Citrix released a critical advisory regarding a vulnerability that allows for remote code execution: CVE-2019-19781 - Vulnerability in Citrix Application Delivery Controller and Citrix Gateway (https://support.citrix.com/article/CTX267027). The vulnerability exploits a directory traversal attack on the /vpn directory on the NetScaler. It allows for remote execution of code under the user nobody. Gotham previously alerted customers to this vulnerability. Citrix plans to release a perma... read more.

• January 15, 2020

By Ed Bratter, Posted in Infrastructure, Security

Perhaps one of the most popular features of Exchange is the ability to connect Outlook running on a PC to Exchange over the Internet when outside the corporate network without the need to establish a VPN connection. This feature was introduced with Exchange 2003 and is called Outlook Anywhere. Of course, convenience always comes at a price: once enabled, Outlook Anywhere allows anyone with Outlook to connect to Exchange from any PC regardless of who owns it. Many organizations want or need to restrict Outlo... read more.

• January 10, 2020

By Eric Corcoran, Posted in Technology Week in Review

Monday 12/23 Cloud Mobility using Nutanix Move (via Nutanix) Available to all Nutanix customers, Move 3.4 will support moving VMs back and forth between Nutanix AHV and AWS. With this capability, you can move your running applications across completely different infrastructure stacks/clouds with very minimal downtime and zero manual efforts. http://bit.ly/2Q8wXdK Announcing the Citrix Virtual Apps and Desktops 1912 LTSR (via Citrix) The Citrix Virtual Apps and Desktops 7 1912 Long-Term Service Release... read more.

• January 10, 2020

By Timothy Karl, Posted in Infrastructure, Virtualization

Microsoft Teams is a unified communication and collaboration platform that combines chat, audio calling, video conferencing, file storage, and application integration. It is a replacement for Skype for Business, which will reach end of life in July 2021. It comes with a company's Office 365 subscription, depending on your licensing plan, and can integrate with non-Microsoft products. The following Office 365 subscription licensing plans enable users for Teams: Image via Microsoft. By hosting Micros... read more.

• December 23, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 12/16 The Urgent Need for Network Security It’s clear that state-of-the-art firewall technology has reached new pinnacles of real-time threat intelligence and security, working to protect entire enterprises including data center, mobile, endpoint, cloud and IoT. http://bit.ly/2LZHczD Rubrik Intelligent Data Tiering Helps Customers Optimize Microsoft Azure Storage Consumption The intelligence and logic that is built into Rubrik’s Instant Tiering and Smart Tiering technologies will hel... read more.

• December 20, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 12/2 Build an Enterprise-grade Hybrid Cloud with Pure on AWS Pure and AWS got together to help provide enterprises with a consistent data layer across their on-premises and cloud environments. This consistent data layer with consistent data services and APIs is now possible with Pure Storage Cloud Data Services. http://bit.ly/2Y6TZVO SOC Efficiency Improving Thanks to SOAR SOAR solutions help security analysts with the complete visibility of the cyber campaign delivered as a unified dashboard. R... read more.

• December 13, 2019