WinShock: Windows Secure Channel Vulnerability Update

Winshock

Microsoft announced in their security bulletin for November that a vulnerability in SChannel could allow remote code execution, nicknamed WinShock (CVE-2014-6321). The Microsoft Secure Channel (Schannel) is the security package that implements SSL/TLS in all supported versions of Windows server and client operating systems. The vulnerability could allow remote code […]

Posted in Security | Tagged , | Leave a comment

European IT Teams Woefully Underprepared for GDPR

eu

Last week we announced the results of a European online survey* that tested the attitudes of IT professionals towards regulation and compliance issues for 2015.  The results indicate a shocking lack of awareness and preparedness for the planned General Data Protection Regulation (GDPR).  The regulation is due to come into […]

Posted in Compliance, Managed File Transfer | Tagged , | Leave a comment

Two Steps to Ensuring a More Successful Transition to the Cloud

dddd

The evaluations are complete and the decision has been made, a move to the cloud is in the best interest of your organization. Transferring workloads to the cloud in order to free up or discard costly on-premise resources for the fast deployment and flexibility of an elastic environment has overwhelming […]

Posted in Cloud Computing | Tagged | Leave a comment

Two Things That Can Spook Any IT Team

Capture

Lost or stolen data is a nightmare in and of itself, but what can really make an IT team go prematurely gray is the audit that will inevitably follow. Given that today is Halloween, here are two things that can scare any IT professional, regardless of the time of year. […]

Posted in Compliance, File Security | Tagged , | Leave a comment

Stay Secure: POODLE Vulnerability Update

security POODLE

Google announced in a blog post on Tuesday a vulnerability in the design of SSL version 3.0 (CVE-2014-3566), nicknamed POODLE.  The SSLv3 protocol is used in OpenSSL and other commercial products.  This vulnerability allows the plaintext of secure connections to be calculated by a network attacker and has an overall CVSS severity rating […]

Posted in File Security, Industry News, Ipswitch Products and Services, Security | Tagged , | Leave a comment

Identity Management in a Dropbox World

Dropbox Ipswitch

Yesterday Dropbox posted an update at the end of their 10/13 blog that noted their servers were not hacked. Apparently the compromised credentials in question were stolen from a different source. At the end of the day, Dropbox isn’t to blame. The stolen credentials were used to access multiple services, […]

Posted in Data Breach, File Security, Industry News, Security | Tagged , | Leave a comment

Shellshock Bug Does Not Affect Ipswitch Products

Bug2

As you’ve likely already heard on Sept 24th a new computer security threat was identified and entered into the National Vulnerability Database as CVE-2014-7169.  This vulnerability does not affect any Ipswitch products. The vulnerability, called Shellshock, is a bug in the widely-used Bash shell, the Unix command-line shell that has been around for […]

Posted in MessageWay, MOVEit, Security, WS_FTP Professional, WS_FTP Server | Tagged , | Leave a comment