On Thursday this week (16 June 2022 at 15:00 UK time), we’re holding a free webinar through which we’ll provide you with a reside clarification and demonstration of the “Follina” vulnerability.
Though this bug is pretty simple to take care of (a easy registry change rolled out by way of Group Coverage will largely immunise your community from assault), it however tells an enchanting story.
Follina, or CVE-2022-30190 should you favor to maintain issues official, is an intriguing instance of how cybercriminals found out find out how to mix a “characteristic” that nobody actually needed with a “characteristic” that nobody actually wanted…
…to create a sneaky assault trick that nobody anticipated.
In easy phrases, FEATURE + FEATURE = BUG!?
What you’ll be taught
In case you’re hoping for PowerPoint slides and bullet factors, adopted by a product pitch, then this discuss isn’t for you.
However should you like to look at technically-oriented demos that don’t require you to be a technical knowledgeable your self, we predict you’ll take pleasure in your self.
We’ll present you:
- How and why the bug works.
- How one can examine safety holes like this one safely.
- The way it might catch your customers out.
- How one can defend your self and your community.
We’ll additionally check out different “options” in Home windows that would result in related issues, and what to do about these, too.
We’ll maintain the jargon to a minimal, so that you don’t have to be a sysadmin or a SecOps coder to attend…
…however if you’re, you’ll nonetheless be taught tons of ideas and methods for monitoring down technological hassle.
As one in all our readers stated, after wanting within the Home windows registry to see what number of Follina-like issues may nonetheless be lurking within the shadows:
Yuck, I simply went into the registry to see what different ‘undocumented options’ are in HKEY_CLASSES_ROOT. What did I discover? Job safety.
The demo will take roughly half-hour, adopted by 10 minutes of official Q&A time, after which we’ll be staying on-line informally for anybody who has additional questions on this or any associated subjects.
Enroll now! (E mail deal with required for registration.)
Date: Thursday 2022-06-16
Time: 3pm UK time (10:00 EDT, 14:00 UTC, 15:00 BST, 16:00 CEST)
Size: 30 minutes + 10 minutes Q&A + casual session after that