Subscribe to Email Updates

Subscribe

Author: Michael Rosen

Michael is Director of Technical Product Marketing for Bitdefender’s Data Center and Network Security Products. He has an MBA in Information Systems, a JD in Law, and 20 years of experience bringing innovative enterprise security software systems to market. Michael enjoys diving deep into products and making technical content accessible to general audiences.

All about Virtualization and Cloud Security | Recent Articles:

Is Security at a Tipping Point? Should You Still Go It Alone?

Mar 11 by Michael Rosen
  • Have we reached a tipping point where providing for your own cyber-defense no longer makes sense?
  • Could you achieve better overall security outcomes by partnering with a top MDR service provider?
  • Have you considered the critical decision factors that could tip the balance between EDR and MDR?
  • Do you know which questions to ask when considering a prospective MDR service provider?
Read More

How They Did It: New Infographic Dissects Complete Chinese APT Attack Cycle

Dec 09 by Michael Rosen
  • New Infographic breaks down the key attack stages and specific detections revealed by Bitdefender solutions
  • Visually summarizes our detailed exposé of a Chinese APT group targeting Southeast Asian governments
  • Bitdefender technology detects the malicious payloads and maps the behavior in each attack stage
  • Proves the value of Endpoint Detection & Response, Managed Detection & Response and MSP solutions
Read More

Dissecting a Chinese APT Targeting Southeast Asian Government Institutions

Nov 17 by Michael Rosen
  • Detailed exposé of a potential Chinese APT group targeting Southeast Asian governments 
  • Extensive custom toolset designed for reconnaissance, data exploration and exfiltration  
  • Sophisticated and distributed attack infrastructure remains partially operational to this day 
  • Bitdefender technology detects the malicious payloads and maps the behavior in each stage of the attack 
Read More

New APT Campaign Investigation Reveal on November 17th: Dissecting a Chinese APT Targeting Southeast Asian Government Institutions

Nov 09 by Michael Rosen
  • Bitdefender unveils a long-running cyberespionage campaign against high-profile government targets
  • Dive into the detailed attack timeline and learn the attacker tactics, techniques and procedures (TTPs)
  • Explore applicable security use cases and security hygieneto keep you safe from sophisticated attacks
Read More

HVI Blocks SIGRed, Prevents Zero-Day Execution from Suspicious Memory Regions

Jul 16 by Michael Rosen
  • Windows DNS server remote code execution vulnerability permits full takeover of infected systems
  • Wormable exploits can spread via malware between vulnerable computers without user interaction
  • SIGRed vulnerability impacts nearly all versions of DNS in Windows Server dating back over 17 years
  • Hypervisor Introspection (HVI) prevents zero-day code execution from suspicious memory regions

On July 14, Microsoft published Security Vulnerability CVE-2020-1350 describing a longstanding, broad-based Windows DNS server remote code execution vulnerability whereby Windows Domain Name servers fail to properly handle malformed DNS requests, allowing an attacker to corrupt memory and run arbitrary code in the context of the Local System Account. All Windows servers that are configured as DNS servers are at risk from this critical (CVSS 10) vulnerability—which Microsoft acknowledges dates back at least 17 years—putting directly at risk multiple versions of Windows Server 2008, 2012, 2016, and 2019 in widespread production worldwide.

Read More

MDR Creates New Revenue Opportunities for Managed Services Providers

Jul 16 by Michael Rosen
  • Managed Detection and Response is one of the fastest growing areas of cybersecurity with a 30.4% CAGR
  • Huge revenue opportunity with MDR for MSPs to help customers that lack security extended teams
  • Opportunities involving MDR tend to be larger, stickier, and foster deeper customer relationships than tools
  • MDR solves key customer gaps in alert response management, technical skills, and overall security outcomes

MSPs, are you thinking about jumping into managed security services?

Read More

Beyond the Hype – Putting MDR Service Providers to the Test with Forrester

Jun 15 by Michael Rosen
  • Managed detection and response programs vary widely so carefully evaluate service provider competencies
  • Beware of buzzwords in MDR vendor claims that provide little insight into their true service capabilities
  • Focus your MDR goals on achieving superior security outcomes, not just on managing the flow of alerts
  • Effective MDR integrates people, processes, and technology to provide wide coverage at an affordable cost
Read More

It’s Time to Step Up Linux Server and Container Workload Security

Jun 15 by Michael Rosen
  • Linux Server security historically pales in comparison to what has long been available for Windows Servers
  • Transient containers frequently run the most sensitive business workloads yet are blind to security teams
  • Security often breaks when upgrading server OS or changing multi-distro Linux configurations
  • Server Security for Linux and Containers Beta Evaluation Program enrolling now
Read More

Adding MDR Services to EDR is an Easy Way to Improve Security Outcomes

May 19 by Michael Rosen
  • EDR alerts require rapid and thorough investigation and response to deliver beneficial security outcomes
  • Your business may be at risk and attackers can sneak in and remain if you don’t keep on top of your alerts
  • Upgrading to MDR lets you quickly and painlessly add network security analytics visibility to your defenses
  • MDR brings critical security response capabilities found at Fortune 500 companies to midmarket customers

Raising defenses to meet the demands of the changing threatscape

Read More

How to Evaluate Competing MDR Service Providers

Apr 09 by Michael Rosen
  • Managed detection and response services vary widely so carefully evaluate competencies against your needs
  • MDR delivery and execution success depends on the service provider’s people, processes, and technology
  • Effective response requires game-planning pre-approved actions and escalations for foreseeable events
Read More

Are You Ready for Managed Detection and Response?

Mar 25 by Michael Rosen
  • Security’s challenge is matching awareness of external threats to internal goals and the ability to execute
  • Managed Detection and Response addresses key customer gaps in visibility, alerts, skills, and outcomes
  • Outsourcing security operations to a managed SOC allows internal teams to focus on higher-value projects
Read More

Hypervisor Introspection Thwarts Web Memory Corruption Attack in the Wild

Feb 10 by Michael Rosen
  • New remote memory corruption vulnerability in Internet Explorer browsers allows for full takeover of infected systems
  • Bitdefender has confirmed exploitation in the wild of CVE-2020-0674 with analysis of 2 distinct executable payloads
  • Hypervisor Introspection delivers true zero-day protection by preventing all common memory exploit techniques
Read More

Cloud Security




Subscribe to Blog Updates

Latest Tweets

Posts by Month