Google, Yahoo, and Apple are now requiring that email sent to their domains have SPF, DKIM, and DMARC implemented. You may be asking yourself what those acronyms stand for, and we’re here to break it down for you. Sender Policy Framework (SPF) hardens your DNS servers and restricts who can send email from your domain. Continue Reading
CMA Blog
Thoughts and updates on everything CMA
OpenSSL Vulnerability Announced
On Tuesday, November 1, OpenSSL disclosed details of a high severity vulnerability affecting versions 3.0.0 through 3.0.6. This vulnerability could allow remote attackers to cause a denial of service on affected systems, resulting in system outages and downtimes. It is possible that under very specific circumstances the vulnerability could also be used to execute remote Continue Reading
Microsoft Zero Day Vulnerability
On Friday, May 27, security researchers identified malicious documents taking advantage of a new zero-day exploit in Microsoft Windows (CVE-2022-30190). The actively exploited vulnerability exists when Microsoft Windows Support Diagnostic Tool (MSDT) is called using the URL protocol from a calling application, such as Microsoft Word. By sending a specially crafted Word document that calls Continue Reading
Secure Configuration of your Email Domain
The secure configuration of email domains has recently become an important topic for customers because email continues to be a primary attack vector for malicious actors and pressure and scrutiny is going up from industry regulations, auditors, and cyber insurance carriers. There are multiple aspects for how to secure your email domain and it can Continue Reading
Okta Security Breach Confirmed
Okta, a provider of Single Sign On (SSO) and authentication services, has confirmed that their systems were breached between January 16-21, 2022. A data extortion group called Lapsus$ is claiming credit for the security breach and claims to have had “superuser” access to the Okta systems and their customer’s tenants. More details of the incident Continue Reading