Industry News

Let's talk shop!

305 Topics

S
Selvamuthukumaran ASRookie
asked in Industry Discussion

Customize SQL Patching

I would like to deploy SQL patches (not the latest version) but a N-1 version leveraging ‘Patch Only’ policy or We need to leverage our script to install a specific package.

1
jack.smith
5 hours ago
L
lsandersRookie
asked in Vulnerabilities

Scan without patching for a baseline report

Is it possible to create a policy to scan a group of devices for missing critical patches then create a report the breaks out which critical patches are missing.  We do not want to patch those devices with this policy, only scan.  

3
jack.smith
1 day ago
R
richel.valdezRookie
asked in Industry Discussion

Cumulative Update for Windows not showing as available

Hello, We have quiet a few devices that does not have monthly “Cumulative Update for Windows...” available.I don’t see a special pattern. All of them are OS supported and have agent version up-to-date.  I could do an OOB patch to push install the missed CU that is not showing in the available software. But would like to know what others have been practising. What do you do guys do? 

2
jack.smith
12 days ago
S
SophiaAXCommunity Manager
posted in Patch Tuesday

150 Vulnerabilities and a Zero-Day Demand Immediate Patching | April 2024 Patch Tuesday

This month's release comes with a notable increase in the number of Common Vulnerabilities and Exposures (CVEs) addressed, marking it as one of the most significant Patch Tuesdays in the past year and a half. Be sure to give the Patch [Fix] Tuesday podcast a listen! Also available on your favorite podcast platform! If you have any thoughts or experiences to share, drop them here for our hosts to see! 

0
S
15 days ago
0
0101001011011010110zNovice
asked in Industry Discussion

Renamed windows PC showing old hostname in console

Actually, we completely reset the PC and wiped it clean, and built the PC from scratch. However, the automox console is showing the pc with the old hostname. How can I clear this up?

2
0
20 days ago
S
SophiaAXCommunity Manager
published in Vulnerabilities

Protect Your Systems: Critical Vulnerability in Upstream xz/liblzma Package

It wouldn’t be a highly anticipated long weekend without a vulnerability popping up to kick it off! 🙃A significant potential exploit, CVE-2024-3094 with a CVSS score of 10.0, has been uncovered in the upstream xz/liblzma package, raising serious concerns about the security of SSH servers. Read on for remediation tips and the latest information.We’ve dropped info on who is affected, what remediation steps you can take now, and where to find more information in this blog post. Have questions or updates that we haven’t caught yet? Let us know.Stay vigilant and secure - and don’t let this ruin your weekend! 

260
S
26 days ago
S
SophiaAXCommunity Manager
asked in Vulnerabilities

FINAL ROUND: Log4Shell vs Chrome Zero Day | March Vulnerabilities Mayhem

We have reached the final round of March Mayhem where your votes decide which vulnerability is the most infamous! 🎉 Check out the full bracket… Cast your final vote!!

0
S
30 days ago
A
AOkanovicRookie
asked in Patch Tuesday

Has anyone else run into the -2145124318 error message during Windows Cumulative Updates?

I’ve noticed some hosts, especially most of our Windows 11 Enterprise endpoints, will run into an error when trying to apply the monthly Microsoft Cumulative update. The error is a bit unusual, and I haven’t been able to find much on it while researching. The error doesn’t seem to be tied to any Windows Update service/connectivity issues. What is also weirder, is that these Windows 11 hosts report successfully installing this update the first night they try to update, but then the days after get this error. I’ve seen this error on some Windows 10 hosts, but mainly on Windows 11. It seems to point to the update not being compatible with something on the operating system in some weird way. Anyone else seen this before? InstallMSUpdates : Download failed with ResultCode 4 and HResult -2145124318At C:\Program Files (x86)\Automox\execDir135760191\execcmd584584594.ps1:1826 char:21At C:\Program Files (x86)\Automox\execDir135760191\execcmd584584594.ps1:1826 char:21+                     Install

0
A
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Vulnerabilities Mayhem: Chrome Zero Day vs Spectre

Cast your vote for this March Mayhem matchup! 👇You already know Automox has your back when it comes to staying safe from these critical vulnerabilities and keep your apps up to date! 

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Vulnerabilities Mayhem: Confluence Code Injection vs Log4Shell

Cast your vote for this March Mayhem matchup! 👇You already know Automox has your back when it comes to staying safe from these critical vulnerabilities! 

0
S
1 month ago
R
rscottRookie
asked in Patch Tuesday

Ubuntu ARM support ?

Are there any plans to support ARM ubuntu builds? We’d like to start using them on AWS, but lack of Automox support is the only thing stopping us.

3
T
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 3: My Guess is Log4Shell Takes it All

We have made it to the last two rounds of March Mayhem where we pit the most infamous vulnerabilities against each other! Make sure to cast your votes before this Thursday! My prediction is that Log4Shell takes the cake! Confluence Code Injection vs Log4ShellChrome Zero Day vs SpectrePlus, if you start a free 15-day trial and add an endpoint in March, not only will you learn how to reclaim hours in your workday (in just 15 minutes), but you’ll also qualify to win grand prizes! More details here!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 2: Spectre vs BlueKeep

Cast your vote for this matchup of March Mayhem! 👇P.S. Automox provides a script to disable remote desktop protocol and mitigate the BlueKeep vulnerability

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 2: Chrome Zero Day vs Zerologon

Cast your vote for this matchup of March Mayhem! 👇Automox has your back when it comes to mitigation and remediation by keeping all of your software patched and up to date! 

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 2: Eternal Blue vs Log4Shell

Cast your vote for this matchup of March Mayhem! 👇Did you know that Automox helps you deep scan and fix the critical Log4Shell vulnerability with easy to use automation scripts?!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 2: Leaky Vessels vs Confluence Code Injection

Cast your vote for this matchup of March Mayhem! 👇Heads up, Automox can help you stay safe from BOTH of these vulnerabilities by keeping your apps up to date!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Vulnerabilities Mayhem Round 2!

Last week, we completed round 1 of the March Vulnerabilities Mayhem bracket! Here is how we’re looking one step closer to finding the most infamous vulnerability…Keep an eye out today for the next round of matchups so you can VOTE here and.or on LinkedIn! Plus, if you start a free 15-day trial and add an endpoint in March, not only will you learn how to reclaim hours in your workday (in just 15 minutes), but you’ll also qualify to win grand prizes! More details here!VOTE HERE:Spectre vs BlueKeep Chrome Zero Day vs Zerologon Eternal Blue vs Log4Shell Leaky Vessels vs Confluence Code Injection

0
S
1 month ago
J
joseRookie
asked in Industry Discussion

Automox export list for Qradar IBM

greetings with everyone,Is there automox compatibility with Qradar SIEM?I am investigating, if anyone has a similar case, could you give me some guidelines to follow the best path?

0
J
1 month ago
S
Stuart LairdRookie
asked in Vulnerabilities

Patching already running software

Does the autogenerated worklet for Patch Only use the MSIRESTARTMANAGERCONTROL=”Disable” flag for attempting to patch running software or can we have an option to enable that? Given modern compliance requires patching Critical in 2 days rolling the dice on a first checkin Patch policy to try to beat autostart software is not viable.  Using Worklets is also not viable as they would require manual updating when a new patch became available. What are people doing, or what is considered best practise for things like Teams Machine-Wide, WebEx and Zoom.  We use WebEx for our phones and Zoom and Teams and whatever other client meeting software is required.

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 1: BlueKeep vs Shellshock

Welcome to Round 1 of March Mayhem, where the most infamous vulnerabilities face off! Next up we have… BlueKeep - CVE-2019-0708 Shellshock - CVE-2014-6271  🚀 P.S. Use this Automox Worklet to disable remote desktop protocol and mitigate the BlueKeep vulnerability! Cast your vote now!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 1: Meltdown vs Spectre

Welcome to Round 1 of March Mayhem, where the most infamous vulnerabilities face off! Next up we have… Meltdown - CVE-2017-5754 Spectre - CVE-2017-5753 (Spectre-V1), CVE-2017-5715 (Spectre-V20) Cast your vote now!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 1: Zerologon vs Heartbleed

Welcome to Round 1 of March Mayhem, where the most infamous vulnerabilities face off! Next up we have…Zerologon - CVE-2020-1472 Heartbleed - CVE-2014-0160💥 P.S. Automox can help you apply critical security updates to stay safe from the Zerologon vulnerability!Cast your vote now!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 1: Chrome Zero Day vs Apache Struts

Welcome to Round 1 of March Mayhem, where the most infamous vulnerabilities face off! Next up we have…Chrome Zero Day - CVE-2022-0609 Apache Struts  - CVE-2023-50164💥 P.S. Automox helps keep your Google Chrome software patched and up to date! Cast your vote now!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 1: Log4Shell vs Spring4Shell

Welcome to Round 1 of March Mayhem, where the most infamous vulnerabilities face off! Next up we have…Log4Shell - CVE-2021-44228 Spring4Shell - CVE-2022-22965💥 P.S. Automox helps you deep scan and fix the critical Log4Shell vulnerability with Worklets! Cast your vote now!

0
S
1 month ago
S
SophiaAXCommunity Manager
posted in Vulnerabilities

March Mayhem Round 1: Follina vs Eternal Blue

Welcome to Round 1 of March Mayhem, where the most infamous vulnerabilities face off! Next up we have…Follina - CVE-2022-30190 Eternal Blue - MS17-010P.S. Automox provides a Follina Zero Day workaround!Cast your vote now!

0
S
1 month ago
Terms & ConditionsCookie settings