Insights

London, UK - 3. December 2024 – Integrity360, one of the leading pan-European cyber security specialists, has announced the launch of its new Managed ASM service designed to address the growing complexities of securing diverse environments, including IT (Information Technology), Operational Technology (OT) and Internet of Things (IoT). The Attack Surface Management (ASM) service provides complete visibility into an organisation’s attack surface, enabling proactive risk reduction, exposure management, and threat detection to safeguard critical assets.

As the number of vulnerabilities grows each year, organisations are grappling with an increasingly complex security landscape. Traditional, reactive security methods struggle to keep pace, often leaving critical gaps unaddressed. Continuous Threat Exposure Management (CTEM) steps in as a proactive solution, providing a continuous approach that prioritises high-risk exposures and significantly reduces the chance of breaches. This FAQ explores how CTEM works and why it’s becoming essential for effective, modern cyber security.

Integrity360 enables organisations to fully optimise their AI investment with launch of Managed dSOC Services underpinned by Darktrace’s ActiveAI Security Platform

Service improves operational efficiencies and costs caused by siloed and redundant cloud security tools

Severity: Critical
CVSSv3 Score: 9.8 
Date: Oct 23, 2024

Overview: Ivanti has released updates for Ivanti CSA (Cloud Services Application) which addresses a medium severity and two high severity vulnerabilities. Exploiting these vulnerabilities effectively enables remote attackers to execute SQL statements through SQL injection, run arbitrary code via command injection, and bypass security restrictions by taking advantage of a path traversal weakness in vulnerable CSA gateways, which provide secure access to internal network resources for enterprise users.

In today's digital-first world, cloud security is more critical than ever. Microsoft Defender for Cloud Apps (MDCA) offers a comprehensive and intelligent solution for securing cloud environments. At Integrity360, we help organisations harness its full potential. From tailored implementation and integration to ongoing monitoring, compliance management, and optimisation, our managed services ensure your cloud infrastructure is secure, compliant, and resilient against threats.

Fortinet –  CVE-2024-23113 (CVSS score: 9.8)

This vulnerability was initially published on 08 February 2024.

Overview: A newly reported vulnerability in the Common Unix Printing System (CUPS) poses a significant security threat to UNIX-based systems, including Linux and macOS. Security researcher Simone Margaritelli has published the first of a series of blog posts detailing the issue, which can be exploited by sending a specially crafted HTTP request to the CUPS service. This vulnerability allows remote attackers to gain access to affected systems and execute arbitrary code, potentially escalating privileges and compromising critical assets.

New service addresses the resource gap that can result from CTEM

London/Dublin/Cape Town – 28th August 2024 – As part of its global expansion plan Integrity360 has acquired Grove Group, a long standing cyber security and cloud services company headquartered in Cape Town, South Africa.  

 

In response to cyber security threats, the European Union has introduced the NIS2 Directive, a comprehensive update to the original Network and Information Systems (NIS) Directive. The new regulations are set to take effect by October 17th, 2024.