CVE count set to rise by 25% in 2024

The report from Coalition indicates an anticipated 25% rise in the total count of published common vulnerabilities and exposures (CVEs) for 2024, reaching 34,888 vulnerabilities, equivalent to approximately 2,900 per month. Sharp CVE increase heightens… Continue reading CVE count set to rise by 25% in 2024

Security of RDP directly with administrative account VS RDP with normal account and elevation with administrative account

I’ve had some arguments with people about securing RDP access to servers:

Team 1 (including me) suggests that direct RDP access should only be possible with an (separate) administrative account.
Team A suggests that one should do RDP logi… Continue reading Security of RDP directly with administrative account VS RDP with normal account and elevation with administrative account

Posted in RDP

Which is more secure to access a VMware Windows VM : VMware Remote console or RDP+Remote Desktop Gateway

Without knowing more details, I can’t suggest to our security guy that we should use RDP along with a Remote Desktop Gateway.
One person says to that VMware Remote Console is more secure than using RDP with an X.509 certificate but another… Continue reading Which is more secure to access a VMware Windows VM : VMware Remote console or RDP+Remote Desktop Gateway

This Week in Security: Session Puzzling, Session Keys, and Speculation

Last week we briefly mentioned a vulnerability in the Papercut software, and more details and a proof of concept have been published. The vulnerability is one known as session puzzling. …read more Continue reading This Week in Security: Session Puzzling, Session Keys, and Speculation