#HelpdeskSecurity

CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability

October 16, 2024 by Xynik

October 16, 2024 at 01:42AM CISA has added a critical vulnerability (CVE-2024-28987) in SolarWinds Web Help Desk software to its KEV catalog, noting active exploitation. This flaw allows unauthorized remote access to modify sensitive help desk ticket data. Federal agencies must apply security fixes by November 5, 2024, to protect their networks. **Meeting Takeaways – … Read more

Securing helpdesks from hackers: What we can learn from the MGM breach

January 8, 2024 by Xynik

January 8, 2024 at 10:51AM Organizations must rethink helpdesk security in light of the MGM Resorts hack. Attackers used social engineering to impersonate an employee, bypassed verification systems, and executed a ransomware attack. Helpdesk training, multi-factor authentication, and secure communication channels are crucial for preventing such incidents. Specops Secure Service Desk offers advanced employee verification. … Read more