RedLegg

Bulletin: IngressNightmare - CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974 affect the Ingress NGINX Controller for Kubernetes. Exploitation can lead to unauthorized access to sensitive data and potential cluster takeover. Notably, CVE-2025-1974 enables unauthenticated remote code execution via the admission controller component, posing a critical risk to affected environments. #ThreatIntel #RedLeggCTI #IngressNightmare https://hubs.li/Q03dNrMl0

?? The Power of BIAs and Risk Assessments Combining Business Impact Analyses (BIAs) with risk assessments provides a complete strategy for identifying vulnerabilities and protecting critical operations. Together, they help prioritize resources, minimize downtime, and prepare your organization to respond effectively to disruptions. This proactive approach strengthens operational resilience and keeps your business moving forward, even during challenges. ?? See how RedLegg’s BIA services can help your organization thrive: https://hubs.li/Q03bhy8P0 #BusinessResilience #RiskManagement #BIA #CyberSecurity #RedLegg

VMware Tools for Windows Authentication Bypass Vulnerability: CVE-2025-22230 is an authentication bypass vulnerability in VMware Tools for Windows, resulting from improper access control mechanisms. The vulnerability affects VMware Tools versions 11.x.x and 12.x.x on Windows platforms. #ThreatIntel #RedLeggCTI #VMware https://hubs.li/Q03dyqVj0

There are so many great takeaways from our 2025 RedLegg Gathering. Thank you to Illumio for helping to sponsor the event. Special thanks to Katherine Cook, Mike Jurczak, Jeffrey Lingle, Sumi Gorla, & Tim Connolly for spending time with us and letting us ask some questions.

We are excited to welcome Nicole Ramos Kanyat as our new Content and Social Media Specialist! ?? With a strong background in creating content for the IT industry, Nicole has a proven track record of crafting engaging stories that resonate with tech audiences. Her creativity and passion for digital storytelling make her a perfect fit for our team. Nicole will play a key role in shaping our content strategy and enhancing our social media presence.

We are excited to welcome Riley Mathews as our new Commercial Account Manager! ?? With two years of experience in sales, starting in logistics and recruiting, Riley has honed her ability to build meaningful relationships and understand the unique needs of each client. Her passion for helping businesses thrive makes her a perfect fit for our team. Riley will play a key role in driving client success and shaping our future growth. ??

?? The Future of Security: Unified Platforms Made Accessible The excitement of moving to unified security platforms is growing, but the investment and resources required to onboard them can be overwhelming. RedLegg’s MDR Complete bridges this gap by offering the benefits of a unified approach with your existing platforms. By integrating MDR with SIEM and EDR, MDR Complete delivers a seamless solution that enhances visibility, improves threat response, and streamlines security operations. It’s a cost-effective way to protect your organization while staying ahead of threats. ?? See how RedLegg’s MDR Complete can elevate your security strategy: https://hubs.li/Q03bhB3w0 #CyberSecurity #MDRComplete #UnifiedSecurity #RedLegg

Bulletin: CVE-2025-23120 is a critical remote code execution (RCE) vulnerability in Veeam Backup & Replication versions 12.3.0.310 and earlier. Veeam has addressed this vulnerability in version 12.3.1 (build 12.3.1.1139). Administrators are strongly advised to upgrade to this version immediately. #ThreatIntel #RedLeggCTI #Veeam https://hubs.li/Q03dbn8Z0

Thank you to Alex Garcia & Lisette C. for spending time with us at our RedLegg Gathering, and thank you Palo Alto Networks for helping sponsor our event. Its a great opportunity for our team to get together and share ideas in person.

?? Safeguarding Client Confidentiality: Cybersecurity in Law Firms Law firms are prime targets for cybercriminals due to the sensitive client information they handle. Protecting this data is critical for maintaining trust and meeting regulatory requirements. Key Strategies to Strengthen Security: Employee Training: Educate staff on best practices to reduce risks from phishing and other human errors. Data Encryption: Protect client information in transit and at rest with strong encryption protocols. Access Controls: Limit access to sensitive data based on roles and responsibilities. Regular Audits: Perform routine security assessments to identify and mitigate vulnerabilities. By implementing these measures, law firms can build stronger defenses and safeguard client data effectively. ?? Learn how RedLegg can support your cybersecurity needs: https://hubs.li/Q03bhNmB0 #LawFirmSecurity #CyberSecurity #ClientConfidentiality #DataProtection #RedLegg