News

Latest news on the subject of B2B cyber security >>> PR agencies: Add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

US agency CISA takes Ivanti devices offline
B2B Cyber ​​Security ShortNews

The American Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency order calling on all federal agencies to take Ivanti devices offline. The background to this measure is the discovery of security gaps in network products from the manufacturer Ivanti. The “Ivanti Connect Secure” and “Ivanti Policy Secure” products are affected. CISA published conditions that must be met before the US manufacturer's devices are allowed back on the network. This includes resetting to factory settings and updating to a bug-fixed version. Passwords and certificates also have to be reissued. CISA writes on…

Read more

Executives don’t take cybersecurity too seriously
Executives don’t take cybersecurity too seriously

More than a third of German managers have shared their password with someone outside their own company. A recent study shows how relaxed managers are about cybersecurity. Security provider Ivanti has presented the results of the Executive Security Spotlight Report. The study deals with security behavior specifically at the C-level in the company. Although this group of people is constantly in the focus of spear phishing or whaling actors, executives are surprisingly relaxed when it comes to cybersecurity. Managers are often the target of threats. The main sticking point: Due to their management tasks, they are often given extensive access rights...

Read more

Prioritize and resolve vulnerabilities more easily
Prioritize and resolve vulnerabilities more easily

The provider Ivanti has presented an update for its risk-based vulnerability/patch management of the Ivanti Neurons platform. Ivanti has announced new features for the Ivanti Neurons platform. They strengthen the digital employee experience, provide customers with scalability, and improve vulnerability prioritization and remediation in the face of increasing data breaches and ransomware attacks. To achieve this, the company has merged two of its solutions, Ivanti Neurons for RBVM and Ivanti Neurons for Patch Management. There are also innovations in the areas of Unified Endpoint Management (UEM) and Enterprise Service Management (ESM). The new functions of Ivanti Neurons…

Read more

Cybersecurity: Younger employees are often more careless
Cybersecurity: Younger employees are often more careless

Younger employees in companies in particular are often more careless when dealing with passwords or phishing links. A study reveals hidden dangers in corporate security. In a recent study, Ivanti took a closer look at the risk exposure of companies worldwide - from risky employee behavior to inconsistencies in safety culture. The study shows that standardized corporate security imposed from above tends to ignore specific risks. These go hand in hand with demographics, gender and function in the company, among other things. A key finding of the study: One in three employees is of the opinion that...

Read more

Another 10.0 vulnerability in Endpoint Manager Mobile
B2B Cyber ​​Security ShortNews

After the first 10.0 vulnerability in Ivanti Endpoint Manager Mobile (EPMM) in July, the BSI again warns of another 10.0 vulnerability. This time, the CVE-2023-35082 vulnerability affects all versions of the EPMM. A script to close the vulnerability is available. However: Old versions can no longer be protected! After the Federal Office for Information Security (BSI) had already warned of a vulnerability in the Endpoint Manager Mobile - EPMM (formerly MobileIron Core) in July, the manufacturer Ivanti has now published information on another security gap. According to Common…

Read more

Ransomware Index Report identifies new vulnerabilities
Ransomware Index Report identifies new vulnerabilities

Groups of hackers continuously monitor new vulnerabilities and analyze their suitability for potential attacks. In March 2023, the total number of security breaches reported was higher than the previous three years combined. The Ransomware Index Report from Securin, Cyware and Ivanti provides a regular update on the latest threat vectors used for such attacks. He also gives suggestions on how companies can protect their data and assets from ransomware. In the first quarter of 2023, twelve new vulnerabilities were linked to ransomware. Three quarters of these were already in the 4th quarter…

Read more

Ivanti fixes 10.0 vulnerability in Endpoint Manager Mobile
B2B Cyber ​​Security ShortNews

The CISA - Cybersecurity and Infrastructure Security Agency - warns of the critical 10.0 vulnerability in Ivantis Endpoint Manager Mobile (EPMM) and recommends the immediate update. Otherwise unauthenticated access to API paths is possible. The update is ready. The American CISA reports that the critical vulnerability with a maximum CVSS value of 10.0 in Ivantis for Endpoint Manager Mobile (EPMM) with CVE-2023-35078 should be closed immediately. Ivanti provides a corresponding update. The discovered vulnerability allows unauthenticated access to certain API paths. An attacker with access to these…

Read more

World of work: Return to the office
World of work: Return to the office

The "Everywhere Work Report" paints a rather gloomy picture of the hybrid working world in 2023. Because there is a huge gap between what employees expect from a self-determined choice of their place of work and what employers are willing to allow. The result: burnout and dissatisfaction in German offices are reflected in an attitude of denial. For the study, 8.400 office workers, IT specialists and executives were surveyed worldwide - 1.300 of them from Germany. Since Ivanti's last "Everywhere Workplace Study 2022" the number of employees who want to choose their place of work independently has remained consistently high....

Read more

Younger employees disregard safety rules
B2B Cyber ​​Security ShortNews

According to the German Association of Civil Servants, around a quarter of all public sector employees will resign in the next ten years for reasons of age. They are being replaced by young employees from Millennials and Generation "Z". An example of this: a good third of Generation Z employees also use private passwords at work (35%). Among millennials, this behavior is still found in one in four respondents (26%). In contrast, just 8% of employees born before 1965 (baby boomers) use the same passwords for private and business use....

Read more

Security study: Poor preparation for emergencies
Security study: Poor preparation for emergencies

In 2023, security departments must work more purposefully in vulnerability management and supply chain security. This is a central result of the "State of Security Preparedness 2023" study published by the security provider Ivanti. In contrast to their international colleagues, the degree of maturity of German security departments is only mediocre. This is particularly evident in business-critical issues such as dealing with weak points and in security training for business partners in the company's own distribution chain. German security teams have some catching up to do According to the Ivanti study, the maturity of German IT security departments is significantly lower than in neighboring European countries and worldwide. Just 19% of respondents estimate...

Read more