Category: Security
-
Veeam Supported Products Reaching End of Life in 2023
Times change, and software changes with them, until it’s no longer supported. At any point, a patch to an operating system, a .NET framework update, or anything else really, could end up with the software no longer being backed up properly, or not working at all in production. Without valid support there’s no process to get a fix, and whilst your backup software may still be in support with Veeam, if the vendor won’t fix the problem, it’s time to start panicking. With this in mind, lets explore the software & operating systems being declared end of life in 2023 so we can start planning our upgrades/migrations if necessary.
-
Veeam Backup for Microsoft Azure: Updating Account Permissions
With Veeam Backup for Microsoft Azure v4 being released this week and unlocking new functionality, permissions inevitably require adjusting in scope. In this blog post I show you how to update the necessary permissions.
-
Configuring PfSense Dynamic DNS with Azure DNS
Does your ISP force you to have a dynamic IP address? Tired of using free Dynamic DNS services that make you revalidate all the time? It’s nice and easy & cheap to use Azure DNS, in this blog post I show you how to integrate Azure DNS with PfSense to keep track of your dynamic IP address.
-
Securing Veeam Backup for Microsoft Azure: Password/Certificate Auth & Other Hardening Tips
Veeam Backup for Microsoft Azure is a brilliant product for protecting Microsoft Azure-based workloads, but there are certainly some configuration changes that could help secure the product better. Especially when this is the application protecting your data. Read on to find out how to secure the Veeam Backup for Microsoft Azure appliance.
-
Microsoft Exchange Server vNext Delayed – New Details Available
In 2020, Microsoft announced the vNext editions of their popular SharePoint, Skype for Business, Project, and Exchange Server applications, due for release in the second half of 2021. However, as of the time of publication, only SharePoint and Project Server Subscription Editions are available. The other products have had their delays greeted with a wall […]
-
Denial of Service via… SSL Certificates? CVE-2022-0778
Congratulations if this was on your InfoSec Bingo Card, Denial of Service via maliciously crafted SSL certificates! Read on for full details!
-
Critical VMware Vulnerability: VMSA-2022-0014
VMware recently released information regarding VMSA-2022-0014, a critical authentication bypass & privilege escalation vulnerability for multiple products. In this blog post, I’ve collated some key information to swiftly identify if you’re impacted, as well as calling out must know information around remediation.
-
Using an Asustor NAS? Shut it down now!
Hi everyone, Quick one here due to time sensitivity. Deadbolt, the ransomware that has previously been utilised to attack QNAP NAS devices, has been used to attack Asustor NAS devices. Looks like there’s an exploit in the EZ Connect system, so advice is currently to disconnect the NAS from the internet and disable this service […]
-
Backups, Trust, Boundaries, and Cloud Security Considerations in 2022
Cloud adoption continues to increase as organisations are either taking their first steps into the cloud, or progressing their IT strategies, whether it’s a full cloud migration, multi-cloud or delivering a hybrid architecture. A great workload to leverage the cloud has been as a backup repository. By using the cloud, we can meet multiple improvements […]