Update: The Prohibition Order effective date is January 16th, 2021. Get more details

Threat Intelligence Report

THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 1

Windows CryptoAPI Vulnerability

January 14, 2020 –  Microsoft announced a critical vulnerability in CryptoAPI, a Microsoft interface which provides certificate validation for HTTPS connections, signed flies, signed emails, and signed executable files. Exploitation of this vulnerability could allow attackers to modify or replace downloaded files, as well as intercept and decrypt encrypted files, including HTTPS and VPN traffic.   
 

Download the FULL REPORT
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 2
Utilities
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 3
Transportation
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 4
Healthcare
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 5
Finance
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 6
Energy
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 7
Additional Industries
THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 8

THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 9 THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 10 THREAT INTELLIGENCE REPORT: Windows CryptoAPI Vulnerability 11

189 S. Orange Avenue, Ste 1950, Orlando, FL 32801
(407) 573.6800
sales@fortressinfosec.com

COPYRIGHT © 2020. FORTRESS INFORMATION SECURITY. ALL RIGHTS RESERVED. PRIVACY POLICY

DOWNLOAD THE FULL

THREAT INTELLIGENCE REPORT

ORACLE LINUX 7 REPOSITORIES INFECTED WITH “HTML.EXPLOIT.C99-24” EXPLOIT

DOWNLOAD THE FULL

THREAT INTELLIGENCE REPORT

ZOOM VIDEO CONFERENCING AND COMMUNICATIONS

THREAT INTELLIGENCE REPORT

Windows CryptoAPI Vulnerability

White Paper

Asset to Vendor Network for Power Utilities

PRESS RELEASE

FORTRESS LAUNCHES INNOVATIVE COLLABORATION TO HELP PROTECT THE POWER GRID FROM CYBER THREATS

Emerging Risk Brief

ASSET RISK MANAGEMENT - FOR PORT AUTHORITIES

Advisory

5 STEPS FOR AN EFFECTIVE THIRD PARTY VENDOR RISK PROGRAM

White Paper

CIP COMPLIANCE – UPDATES, ENFORCEMENT AND PRACTICAL IMPLEMENTATION

Advisory

5 STEPS TO A STRONG VULNERABILITY MANAGEMENT PROGRAM

WHITE PAPER

NERC CIP COMPLIANCE

Subscribe to Fortress Newsletter

For breach reports, threat intelligence, regulatory updates, cyber security news alerts and more, sign up to receive the Fortress Newsletter.

No, thanks!

Threat Advisory

Outdated Security Appliance Facilitates Denial-of-Service Attack on U.S. Grid

WEBINAR DOCUMENT

NERC CIP SUPPLY CHAIN SECURITY STANDARDS