Security Detection Update – 2024-3-26
Welcome to our weekly security detection and report update. Our Incident Detection Engineering (IDE) Team is constantly hard at work. Creating, testing, and writing detections ...
Read MoreCVE-2023-48788 – FortiClientEMS Pervasive SQL injection in DAS component
What Happened? Fortinet disclosed a critical vulnerability (FG-IR-24-007) on March 12, 2024, which has been identified in the FortiClient Enterprise Management Server (FortiClie...
Read MoreSecurity Detection Update – 2024-3-19
Welcome to our weekly security detection and report update. Our Incident Detection Engineering (IDE) Team is constantly hard at work. Creating, testing, and writing detections ...
Read MoreSecurity Detection Update – 2024-3-12
Security Detection Update - 2024-3-12 Welcome to our weekly security detection and report update. Our Incident Detection Engineering (IDE) Team is constantly hard at work. Creat...
Read MoreSecurity Detection Update – 2024-3-5
Security Detection Update - 2024-3-5 Welcome to our weekly security detection and report update. Our Incident Detection Engineering (IDE) Team is constantly hard at work. Creati...
Read MoreReal-World Examples of Detecting Attacks with Sysmon
Sysmon provides detailed system, process, and network activity logging that Windows itself does not natively provide. This extra visibility has helped security teams detect many re...
Read MoreSecurity Detection Update – 2024-02-27
Security Detection Update - 2024-02-27 Hello World! Welcome to our weekly security detection and report update. Our Incident Detection Engineering (IDE) Team is constantly hard ...
Read MoreIvanti Connect Secure VPN & Policy Secure Vulnerabilities
Ivanti Connect Secure VPN & Policy Secure Vulnerabilities What Happened? Researchers have released and reported active exploitation of a collection of four different vu...
Read MoreWhy You Should Migrate From On-Premise Exchange
Writing this article takes me back to my first IT job out of college. I worked at a small ISP that also hosted email, web servers, backups, and other MSP services (before we called...
Read MoreMasked Application Attack Incident Report
Executive Summary On November 20, 2023, Blumira produced three findings that led to a Security Incident investigation regarding remote code being run on two separate XYZ Company h...
Read More