Blog

QueueJumper (CVE-2023-21554) Enables Remote Execution with MSMQ 

With CVE-2023-21554 aka QueueJumper, an attacker can use TCP port 1801 to execute code remotely and without authorization on a MSMQ-enabled server — effectively taking over the server.

Read More

By Jake Ouellette April 20, 2023

in Security Alert

Patch Released For Sophos Firewall RCE Vulnerability (CVE-2022-1040)

An authentication bypass vulnerability (CVE-2022-1040) that allowed for remote code execution (RCE) was discovered in the User Portal and Webadmin of Sophos Firewall.

Read More

By Matthew Warner March 28, 2022

in Security Alert

PrintNightmare (CVE-2021-1675 and CVE 2021-34527) Explained

Proof-of-concept exploit code was published on Github on June 29, 2021 for a vulnerability (CVE-2021-1675) in Print Spooler.

Read More

By Brian Laskowski June 30, 2021

in Security Alert

How Blumira Helped Fechheimer Evade a HAFNIUM Exchange Attack

Blumira's customer, Fechheimer, was able to successfully evade a Microsoft Exchange attack. Learn how Blumira helped them to detect the incident early.

Read More

By Mike Behrmann May 05, 2021

in Customer Success Story

How To Detect Password Lists With Blumira

When users engage in risky behavior, security teams should know about it. Here's how Blumira can detect and alert you about password lists.

Read More

By Brian Laskowski April 29, 2021

in Security How-To

How to Disrupt the Ransomware Kill Chain

Ransomware attacks often start with indicators that are easy to overlook. Learn how to identify and detect each stage in the ransomware kill chain.

Read More

By Thu Pham April 19, 2021

in Security How-To

Security news and stories right to your inbox!