August 2020 Patch Tuesday
Welcome to Patch Tuesday, August 2020. This month’s salvo of patches fix 120 vulnerabilities, 17 of which have been declared ‘Critical’ by Microsoft, and 2 of which have been exploited in the wild. Read on for an overview
The WFH Cybersecurity & Business Continuity Lessons of Covid-19
A couple quarters into the global pandemic experience, it’s safe to say we’ve all learned a lot. In this blog, I’m going to summarize some of the high-level cybersecurity and business continuity lessons learned. 1. The “scramble” phase is behind us
Protecting Twitter Business Accounts with BeyondTrust’s Privileged Remote Access
In light of the recent high-profile social media account breaches, organizations are strategizing how to protect their own social media accounts (Twitter, LinkedIn, Facebook, Instagram, Tik Tok, etc.). from the next breach. While it is a hard truth that little can be done to protect an organization when the SaaS vendor and its employees are breached, there are myriad security best practices that can be enacted to mitigate the risks of a privileged attack vector and inappropriate account access.
Enabling Secure Remote Access, Telehealth, & mhealth for Healthcare
The coronavirus pandemic has disrupted organizations and the lives of billions throughout the world, but no industry has felt the impact quite as uniquely as healthcare. Healthcare organizations have faced a dual battle. The industry’s workers on the frontlines are addressing the health effects of the coronavirus, while healthcare organizations are struggling to accommodate the social distancing challenges that necessitated a large shift to remote work for many employees, as well as the expansion of telehealth offerings and mhealth. Addressing these three technology challenges is critical to the success of the frontline workers as well as to protect the healthcare system itself from being overwhelmed. In this blog, let’s briefly explore 3 big technology challenges, and then share anecdotes from two of BeyondTrust’s amazing and courageous healthcare customers.
How to Reduce IT Service Desk Tickets by Removing Endpoint Admin Rights
The global health pandemic has forced many companies to change their work-from-home policies. But supporting remote workers increases the burden on the helpdesk as users face issues like authentication problems and exposure to more phishing and malware threats. Removing administrative privileges from endpoints prevents attacks that rely on admin rights to infect systems. Proactive elimination of excess endpoint privileges is also an effective strategy for protecting against zero-day attacks, which aren't detected by antimalware software. Of course, once infected with malware, PCs suffer from instability, data leakage, and operational issues that lead to increased demand on the helpdesk.
Remote Work is Here to Stay: Is your Service Desk Prepared?
More than ever, organizations are relying on remote access technologies and cloud applications to enable productivity for their dispersed workforces. For IT organizations, the most significant change to normal workflows has generally been a new focus on remote access to centralized IT resources and corporate networks for employees outside the office. A remote team can reap many benefits if the adequate technology, resources, support, and processes are in place.
Remote Access, Cloud Adoption, & Digital Transformation are Accelerating: PAM is the Key to Secure & Enable It
Work from home (WFH) and remote access have accelerated the digital transformation journey, and IT’s move to the cloud. Security programs must address visibility, continuous monitoring, and a unified identity and privilege model for the multicloud environment. Privileged access management solutions are a key enabler.
How Attackers Exploit Remote Desktop & 6 Ways to Step up Your Cyber Defense
This blog will focus on Remote Desktop Protocol/Services (RDP/RDS) security, which tends to be more commonly used in MB environments due the ease of deployment. Please read on for an overview of known RDS/RDP, vulnerabilities, to walkthrough several attack scenarios against network infrastructure based on Active Directory, and to learn some key mitigation strategies. Hopefully, this information will help some of you steer clear of typical slip-ups and strengthen your enterprise security.
BeyondTrust DevOps Secrets Safe v20.3 Strengthens Secrets Management with New Authentication & Integration Options
BeyondTrust DevOps Secrets Safe v20.3 release expands on the principle of treating applications with the same granular access control and scrutiny as you would human identities by releasing support for Kubernetes Authentication. This provides organizations with enhanced visibility and control over secrets and other privileged credentials used in dynamic environments and DevOps workflows, effectively enhancing DevOps security and meeting compliance targets.
July 2020 Patch Tuesday
This month, Microsoft patched 123 vulnerabilities, 18 of which are rated “Critical” by Microsoft. None of the vulnerabilities have been exploited in the wild.
BeyondTrust Remote Support Version 20.1 Ushers in Chatbot Integration, Enhanced Credential Management, & Seamless Multi-Platform Session Experience
BeyondTrust is pleased to announce the availability of version 20.1 of our leading Remote Support solution. This new version enhances performance across the entire service desk with deeper chatbot integration, more scalable privileged credential management, and broader, more seamless platform support, to name just a few highlights of this latest release. Please read on for a brief round-up of what’s new and improved with Remote Support version 20.1.
Passwordless Administration Explained
Passwordless administration refers to the ability to perform administrative functions on an endpoint without the need for privileged or administrator credentials. Passwordless administration is a simple concept with huge ramifications for securing an organization. The primary goal is to remove administrative rights from any and all users, while still allowing them to execute necessary operating system tasks and use applications that require administrative rights.