Blog

Herjavec Group Accelerates Growth with Acquisition of Award-Winning Identity Management Firm, Securience

Herjavec Group Accelerates Growth with Acquisition of Award-Winning Identity Management Firm, Securience

LOS ANGELES, CA – Robert Herjavec, leading investor on the Emmy Award-winning show, Shark Tank, and Founder & CEO of global cybersecurity firm, Herjavec Group, proudly announces the acquisition of Securience, a prominent Identity & Access Management, IT security consulting firm in the UK. The acquisition will expand Herjavec Group’s existing capabilities, which are recognized by Forrester, IDC and Gartner,... Read More
July 9, 2020
Ecommerce Retailers: It’s Time to Update to Magento v2.3

Ecommerce Retailers: It’s Time to Update to Magento v2.3

Contributed by David Mundhenk, Principal Security Consultant at Herjavec Group As of June 30, 2020, Magento, an eCommerce software vendor, is ending support for its flagship product Magento v1.0 which includes both Magento Commerce 1 (formerly known as Enterprise Edition) and Magento Open Source 1 (formerly known as Community Edition). With this change, eCommerce retailers around the world may begin to... Read More
July 7, 2020
WEBINAR: Extending from MSSP to MDR with MSSP Alert

WEBINAR: Extending from MSSP to MDR with MSSP Alert

According to Gartner, by 2024, 25% of organizations will be using MDR services, up from less than 5% in 2019.  Given the significant uptick in global cybercrime, it's clear that organizations are prioritizing threat detection and speed of response. As a result, many Managed Security Services Providers (MSSPs) have extended their Managed Services to include Managed Detection & Response (MDR). However, there is... Read More
July 2, 2020
Threat Advisory: Palo Alto PAN-OS Authentication Bypass in SAML Vulnerability

Threat Advisory: Palo Alto PAN-OS Authentication Bypass in SAML Vulnerability

On June 29, 2020, Palo Alto Networks released a security advisory relating to a critical authentication bypass vulnerability within PAN-OS Security Assertion Markup Language (SAML) authentication. Currently, the affected products include: GlobalProtect Gateway GlobalProtect Portal GlobalProtect Clientless VPN Authentication and Captive Portal PAN-OS next-generation firewalls (PA-Series, VM-Series) and Panorama web interfaces Prisma Access The vulnerability affects PAN-OS versions 9.1, 9.0,... Read More
June 30, 2020
Cybersecurity CEO: As COVID-19 Surged, So Did Demand for Cybercrime Fighters

Cybersecurity CEO: As COVID-19 Surged, So Did Demand for Cybercrime Fighters

The cybersecurity labor market bucks the trend. Los Angeles, Calif. – June 17, 2020 With unemployment rates plummeting globally, it’s hard to fathom a spike in demand for talent. But that’s exactly what the cybersecurity industry witnessed in the first half of 2020. A recent study by Gartner revealed that as the number of cases of COVID-19 spiked globally, so... Read More
June 22, 2020
10 Managed Services Trends You Need to Know in 2020

10 Managed Services Trends You Need to Know in 2020

Most organizations believe they will experience a security incident in the next 6-12 months. Recently, HG partnered with Cybersecurity Insiders to release the 2020 Managed Security Services Trends Report to highlight the opinions of IT security decision-makers across a variety of industries, such as healthcare, education, manufacturing, etc. We surveyed 400K security professionals to evaluate key challenges that organizations are... Read More
June 11, 2020
2 Years Later: How Has GDPR Impacted Your Business?

2 Years Later: How Has GDPR Impacted Your Business?

In May 2018, the European Union (EU) enacted a privacy regulation that would become a turning point for data protection and cybersecurity – the General Data Protection Regulation (GDPR). The goal of GDPR was to change how organizations conducted their data collection and storage practices. It applies to any business or individual that collects, stores, transfers, or processes personal data... Read More
June 4, 2020
Threat Advisory: Sandworm Actors Exploiting Exim Vulnerability

Threat Advisory: Sandworm Actors Exploiting Exim Vulnerability

A critical remote code execution vulnerability is actively being scanned for and exploited across the Internet. Herjavec Group initially published a Threat Advisory for CVE-2019-10149, known as “Return of the WIZard”, when it was discovered in June 2019. Recently, the NSA published an updated advisory regarding Sandworm threat group operators exploiting the same vulnerability in the Exim Mail Transfer Agent... Read More
May 29, 2020
Cybersecurity CEO: Identity Management is Here to Stay

Cybersecurity CEO: Identity Management is Here to Stay

Los Angeles, Calif. – May 25, 2020 Not long ago if you had asked any security pro about how they protect their perimeter, they would have said - firewalls. In fact, when I started Herjavec Group over 15 years ago, we were the first firewall reseller in Canada!   Today, the security landscape looks a lot different – especially with entire workforces forced to work remotely... Read More
May 25, 2020
Threat Advisory: Citrix ADC/Netscaler Breach Activity

Threat Advisory: Citrix ADC/Netscaler Breach Activity

Herjavec Group has been investigating a spike in Citrix ADC/NetScaler breaches as a result of recently published zero-day exploits for CVE-2019-19781 affecting Citrix Application Delivery Controller (ADC), formerly known as NetScaler ADC, Citrix Gateway, and NetScaler Gateway. The scope of this vulnerability includes Citrix ADC and Citrix Gateway Virtual Appliances (VPX) hosted on any of Citrix Hypervisor (formerly XenServer), ESX, Hyper-V,... Read More
May 19, 2020