Welcome to Watchguard Online Support and Customer Services. Please read the online Knowledge Base or submit a ticket and one of our team will be happy to deal with your request. You may also call our Watchguard team on +44(0)3300 881114

Search the Portal

Recent Articles

OCT19
InfoSec News From Last Week October 18th, 2021

[image] Azure, BitBucket, GitHub, and GitLab revoke SSH Keys After GitKraken Vulnerability Git software client GitKraken disclosed an SSH key generation flaw in a post this past Monday. The flaw was discovered in versions 7.6.x, 7.7.x, and 8.0.0...

Security Updates by Josh Stuifbergen
OCT18
VirusTotal Global Ransomware Report

[image] This week on the podcast we cover VirusTotal’s first ever global ransomware report which analyzes ransomware trends over the last year from the unique position of the world’s largest malware intelligence platform. Before that though, we...

Security Updates by Marc Laliberte
OCT15
HTML Basics That We Often Miss

[image] By now you have probably heard of Missouri governor Mike Parson tweet threatening to prosecute a journalist for responsibly disclosing a data breach. If you missed it though, according to the tweet and the governor’s ensuing press...

Security Updates by Trevor Collins
OCT11
The SMS Breach You Didn’t Hear About

[image] This week on the podcast we discuss a breach that lasted over 5 years involving a company responsible for routing SMS messages for 95 of the top 100 mobile carriers in the world. Before that though, we’ll cover the recent Facebook...

Security Updates by Marc Laliberte
OCT9
InfoSec News Weekly Wrap-Up October 8th, 2021

[image] SMS Routing Company Syniverse Discloses Breach Spanning 5 Years Syniverse claims to be “the world’s most connected company” serving so many large telecommunication companies that it should be assumed that your provider is one of their...

Security Updates by Josh Stuifbergen
OCT9
US Agencies Have Been Busy

[image] U.S. Agencies have been making headlines recently for a lot of their new cyber related regulations. The following are several noteworthy of examples of what they have been up to. The Federal Communications Commission (FCC) and Robocalls...

Security Updates by Josh Stuifbergen
OCT8
How SMBs Deal With An Uptick in Breaches

[image] A recent survey of 700 SMBs (small and medium businesses) by Untangle shows an increase in cybersecurity budgets and awareness. While some companies still have users working remotely, 50% of respondents have moved back into the office or...

Security Updates by Trevor Collins
OCT7
Twitch Affected by Large Data Leak

[image] Update 1: Twitch believes login credentials have not been exposed (October 7th, 2021): Twitch posted a statement on their blog that, “At this time, we have no indication that login credentials have been exposed.” Additionally, as...

Security Updates by Josh Stuifbergen
OCT5
To Not Share is To Care

[image] October is Cybersecurity (or, for the less civilized, ‘cyber security’) Awareness Month. Every October, CISA hosts security awareness presentations. Additionally, Cybersecurity Awareness month means an increase in jaded by posts by...

Security Updates by Josh Stuifbergen
OCT5
Q2 2021 Internet Security Report

[image] This week on the podcast we cover the latest quarterly Internet Security Report from the WatchGuard Threat Lab. We’ll go over the latest attack trends and key findings from Q2 2021 as well as defensive tips for keeping your systems safe...

Security Updates by Marc Laliberte
OCT4
FBIs Botched Plan to Catch REvil Cost Victims Millions

Earlier this year Kaseya, who provides IT management software to service providers that support tens of thousands of organizations from schools to hospitals, was involved in a ransomware attack fueled by a compromise of their VSA Remote Monitoring and Management (RMM) software. While the ransomware only impacted a small percentage of their customer base, thousands […] Read More - FBIs Botched Plan to Catch REvil Cost Victims Millions

Security Updates by Trevor Collins
SEP28
Half of Respondents Admitted to Sharing Their Passwords

We often write about passwords and password policies from the IT/security administrator side, usually after a password becomes compromised. We recently found a survey that looked at compromised passwords from the user’s side to better understand how users feel about them. The survey shows a few key points that shed light on the social […] Read More - Half of Respondents Admitted to Sharing Their Passwords

Security Updates by Trevor Collins
SEP27
Kaseya’s Trusted Third Party

This week on the podcast we discuss the recently disclosed identify of the”Trusted Third Party” that Kaseya acquired the REvil ransomware master decryption key from, as well as the morals around a decision to hold on to the decryption key for multiple weeks before handing it off to Kaseya. We then cover a new APT […] Read More - Kaseya’s Trusted Third Party

Security Updates by Marc Laliberte
SEP23
OMIGOD!

[image] This week on the podcast we discuss the recently patched zero-click vulnerability in iOS, macOS and WatchOS that researchers at TheCitizen Lab discovered while investigating NSO Group’s Pegasus spyware. After that, we cover a...

Security Updates by Marc Laliberte
SEP16
OWASP Update

[image] This week on the podcast we discuss the first update to the OWASP Top 10 since 2017. OWASP servers as an excellent resource for improving web application security so we’re excited to run through the latest refresh of their top security...

Security Updates by Marc Laliberte
SEP16
Azure Linux VMs Vulnerable Due to Pre-Installed Agents

[image] Update 1: OMI agent is not installed on Azure FireboxV/Cloud instances (September 17th, 2021): We reviewed our FireboxV/Cloud instance for Azure and confirmed that the OMI agent cannot be installed on the image. We recommend reviewing...

Security Updates by Josh Stuifbergen
SEP10
ProxyWare

[image] This week on the podcast we cover ProxyWare, a form of malware that monetizes your internet access for the benefit of the attacker. After that, we discuss ChaosDB, a vulnerability that could have enabled any Azure user to gain full...

Security Updates by Marc Laliberte
SEP2
Stop Following Me – Rewind

[image] This week on the podcast we dig back in the archives to 2019 where we discussed how web servers manage to track users across sites using browser fingerprinting methods. Even though some improvements like removing third-party cookies have...

Security Updates by Marc Laliberte
AUG27
PolyNetwork Heist

[image] This week on the podcast we cover one of the largest cryptocurrency heists in history, with a surprising twist of an ending! Before that we’ll chat about the latest T-Mobile data breach and what we can learn about protecting user...

Security Updates by Marc Laliberte
AUG20
Mobile Carriers Leak 123 million Customer Records in One Week

[image] Over the last week we saw 70 million AT&T customers and 53 million T-Mobile customers have their personal data leaked to hackers. While we didn’t find any connections between these two breaches the timing of the incidents is strange...

Security Updates by Trevor Collins