Skip to content

How to find Apache ActiveMQ instances

How to find Apache ActiveMQ® instances

On October 25th the Apache team announced a vulnerability (CVE-2023-46604) in ActiveMQ that
could lead to unauthenticated remote code execution. Shortly after the issue was disclosed exploits started to appear and the Rapid7 MDR team posted a blog speculating that this vulnerability is being used to
deliver ransomware. The Apache ActiveMQ project scored this as CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H(10.0). 

What is Apache ActiveMQ®?

ApacheMQ® is an open source message broker written in Java that supports AMQP, MQTT, STOMP, and JMS clients. Apache ActiveMQ describes itself as “the most popular open source, multi-protocol, Java-based message broker. It supports industry standard protocols so users get the benefits of client choices across a broad range of languages and platforms.”. ActiveMQ is used for custom application development and is often embedded into commercial product stacks.

Are updates available?

The Apache ActiveMQ team has addressed this issue in versions 5.18.3, 5.17.6, 5.16.7, and 5.15.16, with the appropriate update dependent on which minor version is used.

How do I find potentially vulnerable versions of ActiveMQ with runZero?

Apache ActiveMQ services can be found by navigating to the Asset Inventory and using the following query:

port:61616 OR product:activemq OR protocol:activemq

Results from the above query should be triaged to determine if they require patching or vendor intervention.

As always, any prebuilt queries are available from your runZero console. Check out the documentation for other useful inventory queries.Learn more about runZero

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About runZero
runZero, a network discovery and asset inventory solution, was founded in 2018 by HD Moore, the creator of Metasploit. HD envisioned a modern active discovery solution that could find and identify everything on a network–without credentials. As a security researcher and penetration tester, he often employed benign ways to get information leaks and piece them together to build device profiles. Eventually, this work led him to leverage applied research and the discovery techniques developed for security and penetration testing to create runZero.

SASE Trends to Keep an Eye On in 2024

SASE (Secure Access Service Edge) solutions are poised to continue growing in adoption over the next year. According to projections by Gartner, by 2024 over 40% of enterprises will have explicit strategies in place for SASE adoption compared to just 1% in 2018. As remote work becomes more permanent and cloud-based applications proliferate, SASE will become increasingly critical for securing modern network architectures.

What exactly is SASE and what is driving this rapid growth? Here is an overview of key SASE trends to watch in 2024:

1. Increased Cloud Adoption Accelerates SASE

More organizations are adopting multi-cloud environments across SaaS, IaaS and PaaS solutions. IDC predicts over 90% of enterprises will be relying on a mix of on-prem and cloud infrastructure. As the network edge extends into the cloud, security must follow. SASE delivers integrated network security services via the cloud. Gartner notes that traditional network security approaches like VPNs, firewalls, and data centers often struggle to provide consistent security across cloud environments. SASE is purpose-built for cloud-centric networks. As cloud adoption grows, enterprises will shift towards SASE architecture.

2. Edge Computing Drives Remote SASE Deployments

Edge computing is pushing applications and processing power closer to users and devices outside the traditional data center perimeter. This supports lower latency use cases like IoT, VR, and smart vehicles. As edge deployments grow, securing them becomes crucial. SASE delivers cloud-native security services that can be deployed out at the edge, close to users and devices. Its identity and context-based policies follow users no matter where they access cloud apps. Enterprises will increasingly utilize SASE to secure distributed edge networks and users.

3. Zero Trust and SASE Convergence Accelerates

Zero trust network access (ZTNA) and SASE converge around a shared cloud-first architecture founded on identity-based access control. As zero trust networking gains traction, integrating with SASE becomes a logical next step for enterprises. According to Gartner, at least 70% of new remote access decisions will be delivered via ZTNA or SASE, up from 40% today. Organizations will shift towards converged SASE and ZTNA frameworks for consistent security across all access scenarios, whether on-prem or cloud.

4. Advanced Threat Protection Becomes Integral

Early SASE solutions focused mainly on networking and VPN capabilities. But as architectures mature, native threat prevention is becoming table stakes. Leading solutions now integrate cloud access security brokers (CASBs), intrusion prevention systems (IPS), malware sandboxes, and other threat detection tools as core components. In 2024, advanced threat prevention like antivirus, anti-malware, URL filtering, and file sandboxing will be standard in SASE platforms. Some will also utilize AI and machine learning to uncover zero-day threats based on behavior analytics. Real-time threat intelligence sharing will help stop attacks across ecosystems.

5. Vendors Expand SASE Solution Breadth

Most vendors began offering SASE through partnerships that integrated SD-WAN, firewalls, and cloud security. But as competition heats up, standalone and end-to-end solutions are emerging. This provides enterprises simpler, unified SASE management. Market leaders offer SASE suites encompassing SD-WAN, SWG, CASB, ZTNA, and other components. Converged stacks simplify procurement and deployment. They also enable tighter integration between networking and security. Expect single-vendor SASE platforms to gain favor in 2024.

6. New Pricing and Delivery Models Emerge

Early SASE services involved complex a la carte pricing models. But subscriptions based on seats or network bandwidth usage will become more common as services standardize. Consumption-based billing aligned to business needs will drive faster SASE adoption. Managed service providers (MSPs) will also offer new SASE platforms and bundles tailored to SMBs. Unified SASE delivery via a single dashboard will appeal to organizations lacking security specialists. MSPs will effectively become MSSPs as more operationalize managed SASE offerings.

SASE adoption will ultimately accelerate in 2024 driven by remote work, cloud migrations, and edge computing. As zero trust principles and threat prevention capabilities converge into SASE, it will emerge as the de facto security framework for the future enterprise network edge. Simplified delivery and pricing models will also enable broader access to integrated SASE services.

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About Portnox
Portnox provides simple-to-deploy, operate and maintain network access control, security and visibility solutions. Portnox software can be deployed on-premises, as a cloud-delivered service, or in hybrid mode. It is agentless and vendor-agnostic, allowing organizations to maximize their existing network and cybersecurity investments. Hundreds of enterprises around the world rely on Portnox for network visibility, cybersecurity policy enforcement and regulatory compliance. The company has been recognized for its innovations by Info Security Products Guide, Cyber Security Excellence Awards, IoT Innovator Awards, Computing Security Awards, Best of Interop ITX and Cyber Defense Magazine. Portnox has offices in the U.S., Europe and Asia. For information visit http://www.portnox.com, and follow us on Twitter and LinkedIn.。

23.8.2 ‘Adrastea’ released

Bug Fixes

  • Fixed an issue with the Comet Server stats endpoint returning Internal Error in some specific scenarios.
  • Fixed an issue with the Comet Server stats processing returning incorrect stats for previous days
  • Fixed an issue with browsing and restoring one or more files from Hyper-V backup
  • Fixed an issue with CVE-2023-44487 HTTP/2 Rapid Reset Attack
  • Fixed an issue with Files and Folders Protected Items being configurable through the Comet Server web interface while restricted by policy
  • Fixed a cosmetic issue with pixelated text in the Comet Backup desktop app on multi-screen setups
  • Fixed a cosmetic issue with the ‘Configure’ text being in the wrong location in the Comet Backup desktop app
  • Fixed an issue with Storage Vault configuration if the Object Lock duration was set to zero days
  • Fixed an issue with Virtual Storage Vault policy options being available incorrectly when configuring a schedule for a Protected Item
  • Fixed an issue with the list of allowed Storage Vault types not being immediately visible when editing admin permissions in the Comet Server web interface for an admin user with the “Restrict available Storage Vault types” setting enabled
  • Fixed an issue with a non-existent empty Protected Item being shown in the Comet Backup desktop app after restoring a snapshot from other device
  • Fixed an issue with the Restore dialog in the Comet Backup desktop app showing snapshots from another devices as if they were from the current device
  • Fixed an issue with the Policy Protected Items getting multiple unknown entries when the dialog for the OS picker is cancelled.
  • Fixed an issue where Microsoft 365 email backups would error instead of warn for server-side retrieval failures
  • Fixed an issue with the desktop application not launching after installation when “Launch Comet Backup” is checked on Windows Server
  • Fixed an issue with handling unexpected files inside an S3-compatible storage location

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About Comet
We are a team of dedicated professionals committed to developing reliable and secure backup solutions for MSP’s, Businesses and IT professionals. With over 10 years of experience in the industry, we understand the importance of having a reliable backup solution in place to protect your valuable data. That’s why we’ve developed a comprehensive suite of backup solutions that are easy to use, scalable and highly secure.

What’s the business risk of not backing up Azure AD?

Keepit’s Paul Robichaux, Microsoft MVP and Keepit Sr. Director of Product, explains the math of not protecting Azure AD (Entra ID).


“It’s all about the probability of ‘x’ expected damage. The probability: 2/3 of Azure AD admins don’t use MFA. With 50 million password attacks daily targeting Azure AD, you can be pretty sure you’ll be on the receiving end of a successful attack one day. Or a system outage. Or human error.”


The damage: Protecting your identities and policies is critical to keeping your business up and running. Losing access to Azure AD means your business is dead in the water.


The solution: Back up Azure AD in a completely separate infrastructure.

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About Keepit
At Keepit, we believe in a digital future where all software is delivered as a service. Keepit’s mission is to protect data in the cloud Keepit is a software company specializing in Cloud-to-Cloud data backup and recovery. Deriving from +20 year experience in building best-in-class data protection and hosting services, Keepit is pioneering the way to secure and protect cloud data at scale.

How a UK retail giant saved a LOT of time and money with CloudM

A UK based high street retail giant with over 500 stores across the UK, Europe, Asia and the Middle East and a global online presence, employing nearly 50,000 staff worldwide. With over a century and a half of retail experience, they cater for 5 million+ active customers globally in 70 countries, specializing in Clothing, Footwear, Accessories and Home products.
Even after 150 years, this retailer actively researches and invests in the latest technologies, including eCommerce, digital transformation and security, to keep their processes moving forward and continue to offer greater value to their customers.
 

The Issue

The retailer wanted to cut down license cost as their VFE licenses were due to be renewed as costly Google AU licenses, whilst also retaining the data in accordance to data regulation laws.

Offboarding was also taking them too long with an average of 1000 offboarding processes a month eating up the valuable time of their IT team. They also wanted to be able to standardize the process across all departments to speed up offboardings and avoid costly human error.

 

The Process

The retailer had spoken to us several years previously about our user management software before ultimately, and unsuccessfully, choosing a competitor. Upon reengaging with CloudM, they were pleasantly surprised by not only the growth and maturity of the product modules and features, but the attentive, professional and knowledgeable service they received throughout.

Being a company of their size, they wanted to make sure that CloudM would be a good fit for them long term. Our Sales Architects quickly allayed any fears that they had with a series of product demos with senior members from their IT team, explaining how CloudM Automate and CloudM Archive modules would combine to deliver a seamless process for their administrators, as well as scoping out potential issues.

As soon as the customer started to use CloudM, our Customer Success Team was on hand to guide them through the initial stages, helping them to set up their roles, groups and offboarding policies and archive storage buckets.

Offboarding workflow 2

Claire Robinson, Customer Success Manager at CloudM, explained “The enablement process is crucial with every customer. Helping them start on the right track means that they can get the very best out of CloudM as quickly as possible. We want our customers to succeed so we are always on hand to help, listen and resolve, whether it’s day one or year 10 of their journey with us”.

It’s this cycle of communication and collaboration that encouraged the retail giant to suggest several software improvements that would make their experience easier. This feedback has helped us to develop and add several new features to the suite, benefiting all of our CloudM Automate and Archive customers. We also looked for new and innovative ways to use our current features to solve some of these issues.

 

The Result

As far as returns on investment go, few are as quick and evident as the saving the retailer made by simply using CloudM Archive and Google Cloud Storage as an alternative to transitioning to Google Archive User (AU) licenses.

“CloudM pay for themselves – We saved so much in license costs and the amount of time and resource needed to do really quite simple tasks.”

With almost 3000 free VFE accounts due to transition to paid AU licenses at their next renewal, the business was looking at an eye watering bill of nearly $350,000 over the next two years alone. CloudM helped to eliminate that need with CloudM Archive, allowing them to keep all their user data, securely and totally compliant, at a fraction of the cost. CloudM Archive has been proven to save customers as much as 75% compared to renewing to AU licenses.

But ROI shouldn’t be counted in purely financial terms alone. Time can be equally as valuable as money. Our offboarding features allowed the retailer’s IT team to easily build bespoke workflows, customizable for each Organizational Unit and Smart Team, so the entire offboarding process is automated and triggered with one button. As they routinely offboarded around 1000 users a month, we worked out that CloudM would save them an incredible 21 full days on manual offboarding tasks…every single month. Even better, with CloudM Automate, they no longer have to rely on GAM scripts or continually accessing the Google Admin Console.

Now, their IT teams can get on with the important tasks, assured that we are taking good care of the monotonous offboarding work in the background.

 

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About CloudM
CloudM is an award-winning SaaS company whose humble beginnings in Manchester have grown into a global business in just a few short years.

Our team of tech-driven innovators have designed a SaaS data management platform for you to get the most from your digital workspace. Whether it’s Microsoft 365, Google Workspace or other SaaS applications, CloudM drives your business through a simple, easy-to-use interface, helping you to work smarter, not harder.

By automating time-consuming tasks like IT admin, onboarding & offboarding, archiving and migrations, the CloudM platform takes care of the day-to-day, allowing you to focus on the big picture.

With over 35,000 customers including the likes of Spotify, Netflix and Uber, our all-in-one platform is putting office life on auto-pilot, saving you time, stress and money.

×

Hello!

Click one of our contacts below to chat on WhatsApp

Social Chat is free, download and try it now here!

×