SOC 2 Reports, Audit Periods and Bridge Letters
Any participating organization has the opportunity to select the Trust Services Criteria that apply to them.
At Deft, we participate in all five.
Deft Security Notice: Log4j Update
A critical vulnerability has been made public for Apache’s Log4j Java-based logging tool. It allows an attacker to alter code remotely.
How to prepare for a ransomware attack
If you’re diligent about having up-to-date backups, recovering from ransomware is as easy as cutting off infected infrastructure and restoring your backups.
Decade-old vulnerability found in Linux Sudo bug
Get patching, Linux users! A vulnerability in the popular Linux Sudo package could grant privileged root access on affected systems.
SUNBURST SolarWinds Orion IT management platform security advisory
If your organization is using SolarWinds Orion, the CISA ED advises its immediate shutdown and partnering with an organization that conducts incident response to assess impact.
iDRAC vulnerability puts Dell EMC PowerEdge systems at risk
SCTG is taking steps to mitigate a vulnerability (CVE-2020-5366) in the iDRAC9 controller onboard Dell EMC PowerEdge 14th-Generation servers.
