Sedara arms you with everything you need to protect your cybersecurity infrastructure. From articles to white papers and video content to news updates, we ensure your organization is prepared to detect and eliminate threats to your network.
Cybersecurity terminology can be complicated. Not sure what something means? Look it up on our Cybersecurity Glossary of Terms >
Get our actionable content delivered to your inbox monthly (videos, blogs, papers, and more), and get timely updates on new and evolving threats–and what to do about them–just like our clients do.
Filter By:
Security Bulletin
Sedara Security Bulletin: PaperCut Software Vulnerabilities
Summary: PaperCut is enterprise software used for print and file management. They recently published two vulnerability reports for high-severity security issues in their PaperCut MF/NG products. The most severe vulnerability enables remote code execution (CVE-2023-27350) and is scored 9.8 (critical) on the CVSS. This vulnerability allows attackers to bypass authentication…
May 1, 2023
Security Bulletin
Sedara Security Bulletin: Microsoft Outlook Elevation of Privilege Vulnerability
Summary: Recently, Microsoft discovered a vulnerability in Microsoft Outlook for Windows. The vulnerability lets a remote, unauthenticated attacker to steal a victim’s NTLMv2 hash by sending a specially crafted email…
March 16, 2023
Security Bulletin
Sedara Security Bulletin: GoTo and LastPass Security Incidents
Summary: GoTo, formerly known as LogMeIn and the parent company of LastPass, released a security advisory about a malicious actor stealing encrypted backups for several GoTo products: Central Pro Join.me…
January 31, 2023
Security Bulletin
Sedara Security Bulletin: Malicious Use of RMM Software
Summary: CISA, the NSA, and the MS-ISAC have released a joint Cybersecurity Advisory (CSA) of the malicious use of legitimate Remote Monitoring and Management (RMM) software, including ScreenConnect and AnyDesk.…
January 27, 2023
Security Bulletin
Sedara Security Bulletin: NYSIC CAU Ransomware Variant
Summary (provided by NYSIC): The New York State Intelligence Center (NYSIC) Cyber Analysis Unit (CAU) received updated current IOCs by a trusted 3rd party regarding a ransomware incident that is…
January 20, 2023
Security Bulletin
Sedara Security Bulletin: Zoho ManageEngine Security Flaw
Summary: Zoho ManageEngine has released an advisory of a high-severity security flaw that affects multiple credential management products in the ManageEngine family. The bug has been published under CVE-2022-47523. This…
January 13, 2023
Security Bulletin
Sedara Security Bulletin: Direct Deposit Phishing Scam
Overview of Vulnerability Sedara has seen a recent uptick in direct deposit phishing scams. We’d like to share what we’ve seen and remind you of ways to protect against these…
October 7, 2022
Security Bulletin
Sedara Security Bulletin: Zero-Day Microsoft Exchange Vulnerabilities
What Happened? On September 29, Vietnamese security group GTSC released a blog identifying two zero-day security vulnerabilities, CVE-2022-41040 and CVE-2022-41082. Used together, these vulnerabilities could give an attacker the ability…
September 30, 2022
Security Bulletin
What to Do About the LastPass Breach
Overview of Vulnerability LastPass, one of the world’s biggest password managers with at least 25 million users, has confirmed that it has been recently compromised. According to LastPass CEO Karim…
September 2, 2022