10 Apr
The Security Customer Immersion Experience (CIE) is a rare chance to get hands-on with the latest security technology. This immersive simulation features a full sandbox tenant powered by the Microsoft Cloud. Learn how to achieve the highest levels of security in your existing environment with exclusive tips from our experts. The Security CIE is a Read more…
14 Mar
The Security Customer Immersion Experience (CIE) is a rare chance to get hands-on with the latest security technology. This immersive simulation features a full sandbox tenant powered by the Microsoft Cloud. Learn how to achieve the highest levels of security in your existing environment with exclusive tips from our experts. The Security CIE is a Read more…
06 Feb
What is PrivExchange? Last week Microsoft acknowledged a vulnerability, now being referred to as PrivExchange, that impacts all supported versions of Exchange (2010 through 2019). (Technically, the issue exists due to NTLM and not to Exchange itself. But, given how Exchange leverages NTLM, this is a big deal. ) To summarize, this vulnerability involves a man-in-the-middle Read more…
22 Jan
The number-one question we’ve received from inquiring law firms over the past two years has been, ‘How can I tell if my firm is safe?’ Our best suggestion? Test yourself! Take this cybersecurity assessment. You may have checked off your security to-do’s, patched and updated, and escaped harm in 2018, but that doesn’t mean you’re Read more…
29 Nov
We’d like to share some helpful safety tips from our Security Awareness partner, Knowbe4 1. Phishing scams are skyrocketing, especially driven by deals and rebate offers. Don’t open any attachments or click on links appearing to be from trusted vendors you shop with. Go directly to the website of the vendor looking for the sales Read more…
01 Aug
Windows Server 2008 will reach end of support in early 2020 Windows 7 is not the only Microsoft product hurtling towards its end. Extended support for Server 2008 will expire on the same date, January 14, 2020, which may pose an even bigger security risk than end of support for the desktop OS, especially to Read more…
24 Jul
Reprinted with permission from: New York State Bar Association Journal, May 2018, published by the New York State Bar Association, One Elk Street, Albany, NY 12207. Authored by Nina Lukina of Kraft Kennedy. Addressing common concerns about privacy, compliance, and connectivity Cloud computing has been gaining momentum for about a decade. Today many law firms Read more…
19 Jun
In the past, Kraft Kennedy has blogged about using Microsoft LAPS (Local Administrator Password Solution) as a tool to “mitigate the risk of a Pass the Hash (PtH) credential replay attack, in which a malicious entity obtains a random user’s password hash and attempts to log on using the hash instead of entering the plaintext Read more…
12 Jun
December 31, 2019 may seem far away. But if you are still running Windows 7, it is quickly approaching and there is much to do before that date, which marks the official end-of-life for the operating system. What Happens If I Do Nothing? First, you will no longer receive security patches. If your firm is on Read more…