Averlon’s Post

🚨CVE-2024-50623: What You Need to Know 🚨 A critical vulnerability in Cleo’s Harmony, VLTrader, and LexiCom products is actively being exploited, with multiple organizations already affected. While patching (v5.8.0.24) is crucial, effective protection requires a multi-pronged approach: 1️⃣ Prioritize High-Risk Systems: Use attack chain analysis to identify vulnerable targets. 2️⃣ Remediate: Apply patches in a controlled environment. 3️⃣ Mitigate: Restrict access, monitor for IoCs, and deploy compensating controls if patching is delayed. 4️⃣ Prepare: Update your incident response plan and join ISACs for collaborative defenses. 💡 Proactive action is key. With risks evolving daily, going beyond patching is essential to protect critical systems. Sunil Gottumukkala Vishal Agarwal Rajeev R. Matthias Luft Manish Varma Datla Averlon 🔗 Read more actionable strategies: https://lnkd.in/guHu8XdE

🚨CVE-2024-50623: What You Need to Know 🚨 A critical vulnerability in Cleo’s Harmony, VLTrader, and LexiCom products is actively being exploited, with multiple organizations already affected. While patching (v5.8.0.24) is crucial, effective protection requires a multi-pronged approach: 1️⃣ Prioritize High-Risk Systems: Use attack chain analysis to identify vulnerable targets. 2️⃣ Remediate: Apply patches in a controlled environment. 3️⃣ Mitigate: Restrict access, monitor for IoCs, and deploy compensating controls if patching is delayed. 4️⃣ Prepare: Update your incident response plan and join ISACs for collaborative defenses. 💡 Proactive action is key. With risks evolving daily, going beyond patching is essential to protect critical systems. Sunil Gottumukkala Vishal Agarwal Rajeev R. Matthias Luft Manish Varma Datla Averlon 🔗 Read more actionable strategies: https://lnkd.in/guHu8XdE

🚨CVE-2024-50623: What You Need to Know 🚨 A critical vulnerability in Cleo’s Harmony, VLTrader, and LexiCom products is actively being exploited, with multiple organizations already affected. While patching (v5.8.0.24) is crucial, effective protection requires a multi-pronged approach: 1️⃣ Prioritize High-Risk Systems: Use attack chain analysis to identify vulnerable targets. 2️⃣ Remediate: Apply patches in a controlled environment. 3️⃣ Mitigate: Restrict access, monitor for IoCs, and deploy compensating controls if patching is delayed. 4️⃣ Prepare: Update your incident response plan and join ISACs for collaborative defenses. 💡 Proactive action is key. With risks evolving daily, going beyond patching is essential to protect critical systems. Sunil Gottumukkala Vishal Agarwal Rajeev R. Matthias Luft Manish Varma Datla Averlon 🔗 Read more actionable strategies: https://lnkd.in/guHu8XdE

The 2024 Vz DBIR was published today. Here's a headline: 50% of _actively exploited_ vulnerabilities still unpatched after 55 days. Those same vulnerabilities were first _observed_ within 5 days. Our industry thinks we have a vulnerability prioritization problem, but I don't believe that is true. We have a remediation problem. ❗ 20% of your machines are missing their patch management agent. They never get patched. There is no remediation if you are missing your patch management agent. ❗ Remediation is too hard - it is manual, across teams, working with different data. Prioritization _is_ important if your remediation capacity is constrained, but make remediation more effective and prioritization is less important. Sevco has been solving the first problem of missing agents for years. We launched our exposure management and remediation management features to address the second. If your vulnerability management program is not starting with a complete and accurate asset inventory, including making sure your vuln mgmt and patch agents are everywhere, you are wasting precious time. Let us help you improve it and get that 55 days of CISA KEV vulns patched down to 5 days. Read more at the links below. 2024 Vz DBIR here: https://lnkd.in/gP3E5Nvm Sevco's new exposure management platform: https://lnkd.in/gsnkw2PP

The 2024 Vz DBIR was published today. Here's a headline: 50% of _actively exploited_ vulnerabilities still unpatched after 55 days. Those same vulnerabilities were first _observed_ within 5 days. Our industry thinks we have a vulnerability prioritization problem, but I don't believe that is true. We have a remediation problem. ❗ 20% of your machines are missing their patch management agent. They never get patched. There is no remediation if you are missing your patch management agent. ❗ Remediation is too hard - it is manual, across teams, working with different data. Prioritization _is_ important if your remediation capacity is constrained, but make remediation more effective and prioritization is less important. Sevco has been solving the first problem of missing agents for years. We launched our exposure management and remediation management features to address the second. If your vulnerability management program is not starting with a complete and accurate asset inventory, including making sure your vuln mgmt and patch agents are everywhere, you are wasting precious time. Let us help you improve it and get that 55 days of CISA KEV vulns patched down to 5 days. Read more at the links below. 2024 Vz DBIR here: https://lnkd.in/gP3E5Nvm Sevco's new exposure management platform: https://lnkd.in/gsnkw2PP