home.social

#endpoint-security — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #endpoint-security, aggregated by home.social.

fetched live
  1. At Zenith Live 2026, Zscaler outlined how zero trust is evolving beyond access control to support the rise of agentic AI. The company unveiled what it describes as the industry's first complete zero trust platform for agentic AI, signalling a broader shift in enterprise cybersecurity strategy.

    Our recap: techfinitive.com/features/zero

    📷 CEO, Chairman and Founder of Zscaler, Jay Chaudhry

    #Cybersecurity #EndpointSecurity #NetworkSecurity #ZeroTrust

  2. 📣🚨 A XPC flaw let regular users disable CrowdStrike and Kandji tools, exposing security gaps that vendors patched after being reported.

    Listen or Read: hackread.com/macos-flaw-users-

  3. Cybersecurity teams have become much better at identifying vulnerabilities, but finding risks is only half the battle. In this interview, Adaptiva CEO Dr Deepak Kumar argues that the next challenge is execution: remediating vulnerabilities at scale and at machine speed. He discusses AI-driven threats, patch management, and why automation alone is not enough.

    Read the full interview: techfinitive.com/interviews/dr

    #Cybersecurity #EndpointSecurity #PatchManagement #VulnerabilityManagement

  4. Aanvallers hebben een makkelijkere weg gevonden dan het zoeken naar onbekende lekken. Ze halen de sleutels gewoon op bij de mensen die de software bouwen.

    Elke dag een nieuwe vraag die je kunt beantwoorden op ccinfo.nl

    Weet u welke inloggegevens er op dit moment in platte tekst op de laptops van uw ontwikkelaars staan?

    #Cybersecurity #credentials #endpointsecurity #devsecops #informatiebeveiliging

  5. Aanvallers hebben een makkelijkere weg gevonden dan het zoeken naar onbekende lekken. Ze halen de sleutels gewoon op bij de mensen die de software bouwen.

    Elke dag een nieuwe vraag die je kunt beantwoorden op ccinfo.nl

    Weet u welke inloggegevens er op dit moment in platte tekst op de laptops van uw ontwikkelaars staan?

    #Cybersecurity #credentials #endpointsecurity #devsecops #informatiebeveiliging

  6. Aanvallers hebben een makkelijkere weg gevonden dan het zoeken naar onbekende lekken. Ze halen de sleutels gewoon op bij de mensen die de software bouwen.

    Elke dag een nieuwe vraag die je kunt beantwoorden op ccinfo.nl

    Weet u welke inloggegevens er op dit moment in platte tekst op de laptops van uw ontwikkelaars staan?

    #Cybersecurity #credentials #endpointsecurity #devsecops #informatiebeveiliging

  7. Threat Actor Leverages AI to Craft EDR Evasion Tools

    Sophos X-Ops stumbled upon a secret laboratory while investigating a routine endpoint alert, uncovering a trove of AI-powered tools designed to sneak past modern EDR agents. The surprising discovery revealed a sophisticated operation using partly AI-generated Python scripts to craft evasive tools.

    osintsights.com/threat-actor-l

    #EdrEvasionTools #AigeneratedMalware #EndpointSecurity #ThreatActor #StealthyPostexploitation

  8. Microsoft Defender Automatically Isolates Hacked Endpoints

    Microsoft Defender for Endpoint just got a major boost with its new automatic isolation feature, which swiftly isolates compromised devices to prevent attackers from wreaking havoc on your organization. This cutting-edge capability is part of Microsoft's automatic attack disruption feature, designed to contain…

    osintsights.com/microsoft-defe

    #MicrosoftDefender #EndpointSecurity #AutomaticAttackDisruption #ThreatContainment #EmergingThreats

  9. Enable Defender for Endpoint EDR in block mode for proactive threat disruption & integration with other Defender tools. aka.ms/DefenderEndpoint

  10. CISA Mandates Patching of Ivanti Flaw Exploited in Zero-Day Attacks

    The US Cybersecurity and Infrastructure Security Agency (CISA) is requiring immediate patching of a high-risk Ivanti flaw, CVE-2026-6973, that allows attackers with admin privileges to remotely execute code on vulnerable systems. This critical vulnerability affects Ivanti Endpoint Manager Mobile (EPMM) version 12.8.0.0 and earlier.

    osintsights.com/cisa-mandates-

    #ZeroDay #Ivanti #Cve20266973 #EndpointSecurity #PatchManagement

  11. Running Ubuntu 26.04 LTS as a daily driver, enrolled in Microsoft Intune with MDE, and it just works.

    Linux endpoint management has come a long way. Zero friction, full compliance.

    #Ubuntu #Intune #MDE #Linux #EndpointSecurity #Microsoft

  12. Running Ubuntu 26.04 LTS as a daily driver, enrolled in Microsoft Intune with MDE, and it just works.

    Linux endpoint management has come a long way. Zero friction, full compliance.

    #Ubuntu #Intune #MDE #Linux #EndpointSecurity #Microsoft

  13. Running Ubuntu 26.04 LTS as a daily driver, enrolled in Microsoft Intune with MDE, and it just works.

    Linux endpoint management has come a long way. Zero friction, full compliance.

    #Ubuntu #Intune #MDE #Linux #EndpointSecurity #Microsoft

  14. Running Ubuntu 26.04 LTS as a daily driver, enrolled in Microsoft Intune with MDE, and it just works.

    Linux endpoint management has come a long way. Zero friction, full compliance.

    #Ubuntu #Intune #MDE #Linux #EndpointSecurity #Microsoft

  15. Running Ubuntu 26.04 LTS as a daily driver, enrolled in Microsoft Intune with MDE, and it just works.

    Linux endpoint management has come a long way. Zero friction, full compliance.

    #Ubuntu #Intune #MDE #Linux #EndpointSecurity #Microsoft

  16. 🥩🥩Mr T-Bone tip!🥩🥩[New from Tech Community]
    Check out what's sizzling in Microsoft Intune this April! Fresh updates, cool features—don't miss the juicy details!

    #MVPBuzz #Security #MicrosoftTechCommunity #CloudManagement #EndpointSecurity
    👉👉 tip.tbone.se/jz4Gw9
    [AI generated, Human reviewed]

  17. Ransomware Exploits QEMU VMs to Evade Endpoint Security

    Malicious software can now secretly launch a virtual machine inside your computer, allowing it to evade detection and phone home to its operator - a chilling new tactic that exposes weaknesses in traditional endpoint defenses. This stealthy approach, recently spotted in the Payouts King ransomware, uses the QEMU emulator to create a hidden…

    osintsights.com/ransomware-exp

    #Ransomware #EndpointSecurity #Qemu #VirtualMachine #MalwareOperations

  18. Malware Abuses Signed Software to Disable Antivirus Protections

    Thousands of vulnerable endpoints across schools, utilities, governments, and hospitals have fallen prey to a sneaky malware that masquerades as legitimate software, only to disable antivirus protections and wreak havoc with SYSTEM-level privileges. This stealthy attack has left countless organizations defenseless…

    osintsights.com/malware-abuses

    #SignedSoftwareAbuse #AntivirusEvasion #SystemPrivilegeEscalation #Adware #EndpointSecurity

  19. Adware Operation Neutralizes Antivirus on 23,000 Hosts via Signed Updates

    Imagine receiving a routine software update that secretly disables your antivirus protection, leaving you vulnerable to cyber threats - that's exactly what happened to 23,000 hosts in a shocking adware operation. Hackers cleverly used signed updates to deliver payloads that neutralized antivirus defenses, putting…

    osintsights.com/adware-operati

    #AdwareOperations #AntivirusProtection #EndpointSecurity #Malware #EmergingThreats

  20. CISA Mandates Emergency Patch for Exploited Ivanti EPMM Flaw

    The Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority alert, ordering US government agencies to patch a critical vulnerability in Ivanti Endpoint Manager Mobile (EPMM) within just four days, as the flaw has been under active exploitation since January. With a Sunday deadline looming, federal IT…

    osintsights.com/cisa-mandates-

    #IvantiEpmm #Cisa #EndpointSecurity #ExploitedVulnerability #EmergingThreats

  21. 🥩🥩Mr T-Bone tip!🥩🥩[New from Tech Community]
    Intune is now even faster and quicker to sync and keep up to date. Catch up on the coolest features landing this March! Fresh updates just for you—don’t miss out! 😎✨

    #CloudManagement #EndpointSecurity #MVPBuzz #Security #MicrosoftTechCommunity

    👉👉 tip.tbone.se/8vQyam
    [AI generated, Human reviewed]

  22. Don’t trust unmanaged devices. Block access with Conditional Access + Intune compliance policies. aka.ms/Intune

  23. 🛡️ Cyber Tip: Use business grade antivirus and keep it updated.

    Enterprise level protection with real time monitoring helps detect and stop threats before they spread.

    zurl.co/buqUn

    #Zevonix #CyberSecurity #EndpointSecurity #DaytonaBeach

  24. 🛡️ Cyber Tip: Use business grade antivirus and keep it updated.

    Enterprise level protection with real time monitoring helps detect and stop threats before they spread.

    zurl.co/buqUn

    #Zevonix #CyberSecurity #EndpointSecurity #DaytonaBeach

  25. 🛡️ Cyber Tip: Use device management tools to secure endpoints.

    Centralized control helps enforce policies, push updates, and respond quickly to threats across all company devices.

    zurl.co/jfPfO

    #Zevonix #CyberSecurity #EndpointSecurity #ITSecurity

  26. 🛡️ Cyber Tip: Use device management tools to secure endpoints.

    Centralized control helps enforce policies, push updates, and respond quickly to threats across all company devices.

    zurl.co/jfPfO

    #Zevonix #CyberSecurity #EndpointSecurity #ITSecurity

  27. Microsoft Intune als Einfallstor! Der Medizintechnikkonzern Stryker wurde Opfer eines Cyberangriffs und die Angreifer nutzten Microsoft Intune als Hebel. Die Folge: globale Betriebsausfälle. Intune ist kein Nischenprodukt. Es ist in Zehntausenden Unternehmen weltweit das zentrale Werkzeug für Geräteverwaltung, Zugriffssteuerung und Softwareverteilung – von KMU bis Konzern, quer durch alle Branchen. #MicrosoftIntune #Stryker #Microsoft #Endpointsecurity #Intune #MDM

  28. CISA warns of attacks targeting endpoint management systems after Stryker breach.
    • Microsoft Intune targeted
    • Ops disruption + data theft claims
    • Immediate hardening required

    Details 👇
    technadu.com/cisa-urges-organi

    #InfoSec #CISA #EndpointSecurity

  29. CISA warns of attacks targeting endpoint management systems after Stryker breach.
    • Microsoft Intune targeted
    • Ops disruption + data theft claims
    • Immediate hardening required

    Details 👇
    technadu.com/cisa-urges-organi

    #InfoSec #CISA #EndpointSecurity

  30. CISA warns of attacks targeting endpoint management systems after Stryker breach.
    • Microsoft Intune targeted
    • Ops disruption + data theft claims
    • Immediate hardening required

    Details 👇
    technadu.com/cisa-urges-organi

    #InfoSec #CISA #EndpointSecurity

  31. CISA warns of attacks targeting endpoint management systems after Stryker breach.
    • Microsoft Intune targeted
    • Ops disruption + data theft claims
    • Immediate hardening required

    Details 👇
    technadu.com/cisa-urges-organi

    #InfoSec #CISA #EndpointSecurity

  32. Brainworm: Wenn KI-Agenten durch natürliche Sprache zur Waffe werden

    Brainworm benötigt weder ausführbare Dateien noch Skripte – es genügt manipulierter Text in einer Konfigurationsdatei, um einen Agenten wie Claude Code unter fremde Kontrolle zu bringen.

    Weder klassische Endpoint-Security noch einfache Zugriffskontrollen reichen aus, um Angriffe auf dieser Ebene zuverlässig abzuwehren.

    all-about-security.de/brainwor

    #kiagenten #claudecode #endpointsecurity #edr

  33. On the note of obsidian, looks like I need different encryption on different platforms to address end point security.

    Cryptomator is infeasible on android.
    Everything else is infeasible on desktops, but can be easily work around with.

    The more I look into standard android the more I appreciate what signal has done on local encryption. Most app data are still in plaintext in lockdown and signal managed to be encrypted and still searchable when using.

    #obsidian #notetaking #notetakingapp #signal #encryption #endpointsecurity #cryptomator

  34. On the note of obsidian, looks like I need different encryption on different platforms to address end point security.

    Cryptomator is infeasible on android.
    Everything else is infeasible on desktops, but can be easily work around with.

    The more I look into standard android the more I appreciate what signal has done on local encryption. Most app data are still in plaintext in lockdown and signal managed to be encrypted and still searchable when using.

    #obsidian #notetaking #notetakingapp #signal #encryption #endpointsecurity #cryptomator

  35. 🚨 Trend Micro fixes 8 CRITICAL & high-severity flaws in Apex One (Windows/macOS). No exploits yet, but risk is significant. Patch ASAP to prevent endpoint compromise. Details: radar.offseq.com/threat/trend- #OffSeq #Vuln #EndpointSecurity

  36. 🚨 Trend Micro fixes 8 CRITICAL & high-severity flaws in Apex One (Windows/macOS). No exploits yet, but risk is significant. Patch ASAP to prevent endpoint compromise. Details: radar.offseq.com/threat/trend- #OffSeq #Vuln #EndpointSecurity

  37. 🚨 Trend Micro fixes 8 CRITICAL & high-severity flaws in Apex One (Windows/macOS). No exploits yet, but risk is significant. Patch ASAP to prevent endpoint compromise. Details: radar.offseq.com/threat/trend- #OffSeq #Vuln #EndpointSecurity

  38. 🚨 Trend Micro fixes 8 CRITICAL & high-severity flaws in Apex One (Windows/macOS). No exploits yet, but risk is significant. Patch ASAP to prevent endpoint compromise. Details: radar.offseq.com/threat/trend- #OffSeq #Vuln #EndpointSecurity

  39. Incident Overview:
    Platform: Step Finance
    Loss: ~$40M treasury theft
    Vector: Compromised executive devices
    Status: Operations terminated

    Recovery efforts:
    • ~$3.7M Remora assets recovered
    • ~$1M additional tokens recovered
    • Snapshot-based reimbursement for STEP holders
    • Buyback + redemption process underway

    Collateral shutdown:
    Remora Markets, SolanaFloor

    Strategic insight:
    Executive endpoint compromise → treasury compromise.

    Crypto treasury management must incorporate hardened device policies, hardware-backed key storage, enforced MFA, anomaly detection.

    Source: therecord.media/step-finance-c

    Follow us for tactical crypto threat briefings.
    Share mitigation strategies below.

    #Infosec #CryptoSecurity #DeFiRisk #TreasuryManagement #EndpointSecurity #Blockchain #DigitalAssets #ThreatModeling #CyberIncident #SecurityOperations

  40. Incident Overview:
    Platform: Step Finance
    Loss: ~$40M treasury theft
    Vector: Compromised executive devices
    Status: Operations terminated

    Recovery efforts:
    • ~$3.7M Remora assets recovered
    • ~$1M additional tokens recovered
    • Snapshot-based reimbursement for STEP holders
    • Buyback + redemption process underway

    Collateral shutdown:
    Remora Markets, SolanaFloor

    Strategic insight:
    Executive endpoint compromise → treasury compromise.

    Crypto treasury management must incorporate hardened device policies, hardware-backed key storage, enforced MFA, anomaly detection.

    Source: therecord.media/step-finance-c

    Follow us for tactical crypto threat briefings.
    Share mitigation strategies below.

    #Infosec #CryptoSecurity #DeFiRisk #TreasuryManagement #EndpointSecurity #Blockchain #DigitalAssets #ThreatModeling #CyberIncident #SecurityOperations

  41. Incident Overview:
    Platform: Step Finance
    Loss: ~$40M treasury theft
    Vector: Compromised executive devices
    Status: Operations terminated

    Recovery efforts:
    • ~$3.7M Remora assets recovered
    • ~$1M additional tokens recovered
    • Snapshot-based reimbursement for STEP holders
    • Buyback + redemption process underway

    Collateral shutdown:
    Remora Markets, SolanaFloor

    Strategic insight:
    Executive endpoint compromise → treasury compromise.

    Crypto treasury management must incorporate hardened device policies, hardware-backed key storage, enforced MFA, anomaly detection.

    Source: therecord.media/step-finance-c

    Follow us for tactical crypto threat briefings.
    Share mitigation strategies below.

    #Infosec #CryptoSecurity #DeFiRisk #TreasuryManagement #EndpointSecurity #Blockchain #DigitalAssets #ThreatModeling #CyberIncident #SecurityOperations

  42. Incident Overview:
    Platform: Step Finance
    Loss: ~$40M treasury theft
    Vector: Compromised executive devices
    Status: Operations terminated

    Recovery efforts:
    • ~$3.7M Remora assets recovered
    • ~$1M additional tokens recovered
    • Snapshot-based reimbursement for STEP holders
    • Buyback + redemption process underway

    Collateral shutdown:
    Remora Markets, SolanaFloor

    Strategic insight:
    Executive endpoint compromise → treasury compromise.

    Crypto treasury management must incorporate hardened device policies, hardware-backed key storage, enforced MFA, anomaly detection.

    Source: therecord.media/step-finance-c

    Follow us for tactical crypto threat briefings.
    Share mitigation strategies below.

    #Infosec #CryptoSecurity #DeFiRisk #TreasuryManagement #EndpointSecurity #Blockchain #DigitalAssets #ThreatModeling #CyberIncident #SecurityOperations

  43. Join us on Wednesday, March 4 at 11 a.m. EST for a live webinar on how to reduce endpoint risk without disrupting users or IT workflows with Keeper Endpoint Privilege Manager.

    We’ll cover how to defend against today’s most common endpoint-based attack techniques, reduce risk by removing local admin rights without impacting productivity, apply least-privilege access controls across Windows, macOS and Linux, and protect users from memory-based attacks.

    Register here 👉 bit.ly/4aQV1eE.

    #KeeperSecurity #Cybersecurity #EndpointSecurity #PrivilegedAccess #Webinar

  44. Join us on Wednesday, March 4 at 11 a.m. EST for a live webinar on how to reduce endpoint risk without disrupting users or IT workflows with Keeper Endpoint Privilege Manager.

    We’ll cover how to defend against today’s most common endpoint-based attack techniques, reduce risk by removing local admin rights without impacting productivity, apply least-privilege access controls across Windows, macOS and Linux, and protect users from memory-based attacks.

    Register here 👉 bit.ly/4aQV1eE.

    #KeeperSecurity #Cybersecurity #EndpointSecurity #PrivilegedAccess #Webinar