Blog | Herjavec Group

Threat Advisory: New Vulnerability Affecting Exim Servers

A critical remote code execution vulnerability is actively being scanned for and exploited across the Internet. Known as "Return of the WIZard", the vulnerability (tracked under CVE-2019-10149) affects the Exim mail transfer relays (versions 4.87-4.91), which currently operate on more than half of all mail servers on the Internet. The vulnerability was exploited as early as June 9, 2019. While... Read More

June 13, 2019 Threat Advisory

Bolster Your Organization’s Cybersecurity By Prioritizing Cyber Hygiene

On May 14, 2019, Microsoft released a patch for some of its legacy systems (e.g. Windows 2003, Windows 7, XP, and Server 2008) for a vulnerability found in the remote desktop protocol (RDP). The vulnerability, known as BlueKeep, allows hackers to gain remote access without authorization and send requests through the RDP, which can proliferate like a malware infection to... Read More

June 11, 2019 Thought Leadership

How To Prevent and Manage a Ransomware Attack

A new organization will fall victim to ransomware every 14 seconds in 2019, and every 11 seconds by 2021 (Cybersecurity Ventures). Ransomware is constantly evolving and as long as adversaries can keep up with the latest defense tactics, the result is always the same. When infected by ransomware, users get a message informing them, “Your files have been encrypted”, followed... Read More

June 6, 2019 Thought Leadership

Herjavec Group Recognized as a Strong Performer on the Forrester Midsize Consulting Wave

Herjavec Group is thrilled to announce our placement on the Forrester Midsize Consulting Wave. We have been recognized as a Strong Performer. Herjavec Group’s strengths in privacy consulting, and assessment services (current state, social engineering, pen testing) were called out within the analysis. Herjavec Group also has a proven track record in PCI Compliance as a PCI Qualified Security... Read More

May 30, 2019 Security News

Cybersecurity CEO: Recognizing Incident Response as the Emergency It Is

The industry is moving from an IT-centric model to crisis centric incident response. – Robert Herjavec Los Angeles, Calif. – May 21, 2019 The old “IT” way of responding to security incidents with the CIO standing over your shoulder asking, “Is it fixed yet?”, is long gone. We’ve seen a drastic change in how enterprises today are speaking about incident... Read More

May 21, 2019 Cybersecurity CEO, Robert Herjavec, Thought Leadership

Threat Advisory: Remote Desktop Services Vulnerability

This week, Microsoft released a critical update for their Remote Desktop Services (formerly Terminal Services) impacting multiple Windows versions. It is critical that organizations apply the patch as soon as possible because this vulnerability is “wormable”, meaning it is pre-authentication and requires no user interaction. An exploit for this weakness could be used to create malware that would spread similarly... Read More

May 15, 2019 Threat Advisory

Ira Goldstein: Peak Breach in a World of Ubiquitous Computing

We have seen breaches across various industries dominating the headlines in recent years. From entertainment organizations to social media networking sites, to the more notable vulnerabilities of insurance and hospitality enterprises, data of every nature has been compromised. The fact is, organizations today have more data than they know what to do with. Like gold or oil, data has become... Read More

May 9, 2019 Thought Leadership

Cyber Defense Media Group Announces Black Unicorn Awards Applications for 2019 Are Now Open

Most Prestigious Awards for Cybersecurity Companies Who Have the Potential of Being Valued at $1B NEW YORK, NY (PRWEB) MAY 1, 2019 – CYBER DEFENSE MEDIA GROUP (CDMG), the industry’s leading electronic information security media group, is announcing that the annual Black Unicorn awards are now open! Innovative information security companies of any size, that have not yet gone public,... Read More

May 2, 2019 Robert Herjavec, Security News

Preparing for a Security Incident: Building an Incident Response Plan

In the cybersecurity realm, a cyber incident is inevitable. In 2017, there were a number of high-profile security breaches and confidential customer data being leaked on the Dark Web. We have to ask ourselves...what can we do to protect our organizations? In his book, Scouting for Boys, Robert Baden-Powell, the founder of the Boy Scouts, wrote: “Be Prepared … by... Read More

Security News, Thought Leadership

IT World Canada: Evaluate Suppliers for Cyber Risk, Canadian Manufacturers Told

Originally published by Howard Solomon, IT World Canada News BRAMPTON, Ont. — Few Canadian manufacturers make every part of their products. Instead, they rely on a large number of suppliers. But criminals and nation states also see those third party suppliers as a big opportunity to slip into the computer systems of manufacturers, and from there, get into the bigger... Read More

April 30, 2019 Thought Leadership