A critical vulnerability that allows an attacker to intercept and manipulate emails and other network traffic, including making network services inaccessible, was recently discovered. Called SIGRed, the vulnerability was in the Windows DNS Server which is an essential component of any Windows’ network environment and Microsoft has recently issued an urgent patch for it.
F-Secure have made several new major feature updates to their Rapid Detection & Response (RDR) solution, including a new Dashboard, Response Walkthrough and Response Action.
New Dashboard
The dashboard now shows high-risk assets. With a single glance you can see which endpoints are currently at risk and what is going on. Incident statuses are now visible from many angles, including a breakdown of open incident risk levels, incident processing status, and incident type frequency.
Response Walkthrough
The new Response Walkthrough provides type-specific information to help users better understand and respond to incidents. It describes what each incident type is all about, where to focus investigation, and which response/remediation actions to consider. You can find it on every detection page or by clicking the ‘?’ in the top right corner.
New Response Action
Efficient incident investigation is crucial when you suspect a targeted attack. F-Secure have now added a response action which allows you to scan hosts for malware when suspicious activity is detected and verify endpoint protection status seamlessly also when the detection indicates a lower risk level.
F-Secure Rapid Detection & Response (RDR) acts as a single-client infrastructure with F-Secure Protection Service for Business (PSB) and F-Secure Business Suite computer and server clients.