The IT Hour
Group Hub Activity
@sergey_p_belous is back! And he is talking mobility on this session of the IT Hour.
Community Update
Jumpies are open until 12.20: https://forms.gle/sdxcrbFk955DsbGKA
Enter the 2025 Jumpies
This week's key developments in cybersecurity
What are you grateful for? (A thanksgiving post 2024)
It’s time for our favorite things!! Coming soon - watch the Lobby
Link to the IT Hour recaps: https://bit.ly/3NL32GU
Link to community: https://bit.ly/jcitcmty
Link to slack lounge: https://bit.ly/3BBKow4
Feature requests: https://bit.ly/cmtyFR
Make Work Happen podcast: https://bit.ly/3TTxVMs
Product Releases and Announcements
GA of Device Monitoring and Alerting is here! (fix rolled out)
Main Topic
JumpCloud Now Supports Apple’s Account-Driven User Enrollment for iOS and iPadOS
JumpCloud Releases New Policies for Apple Intelligence
Getting Ready for Apple Major OS Releases 2024
Tom’s Mac Admins Conference talk: https://www.youtube.com/watch?v=xA0D6oVzcUk
IT News
Google just made it easier to turn off personalized search results (the verge)
Nearly 80,000 Anker speakers recalled due to fire hazard (the verge)
A peek inside the restoration of the iconic Notre Dame cathedral (ars tecnica)
Reminder: Cops Can Point a Camera at Your House 24/7 Without a Warrant (gizmodo)
FBI Warns Americans to Start Using Encrypted Messaging Apps (gizmodo)
New Windows zero-day exposes NTLM credentials, gets unofficial patch (bleeping computer)
CISA
CISA Releases Two Industrial Control Systems Advisories
Cisco Releases Security Updates for NX-OS Software
ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies
CISA Releases New Public Version of CDM Data Model Document
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Releases Eight Industrial Control Systems Advisories
CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Releases Six Industrial Control Systems Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
... View more
@robmcgrath, Isaac Kazin, & @urvashi join the show to give a device list update
Community Update
Jumpies open 11.18 - 12.20 | entry form
JumpCloudLand registration open
Spare / floating laptop - self provisioned? | best practices
You’ve got to check out these latest headlines in Security! | security & networks
Jumpcloud Users export all users information available in Jumpcloud | product discussions
Find suspended users by how many days they've been suspended | script repo
IT Hour recaps: https://bit.ly/3NL32GU
Link to community: https://bit.ly/jcitcmty
Link to slack lounge: https://bit.ly/3BBKow4
Feature requests: https://bit.ly/cmtyFR
Make Work Happen podcast: https://bit.ly/3TTxVMs
Product Releases and Announcements
New Partner Education Troubleshooting Learning Path & Certification Launched!
New partner certification and learning path titled: Foundations of Troubleshooting JumpCloud for Your Clients
IT News
Niantic uses Pokémon Go player data to build AI navigation system (ars technica)
Feds Say Google Must Sell Chrome Browser to End Its Search Monopoly (gizmodo)
Hacker plants false memories in ChatGPT to steal user data in perpetuity (ars technica)
CISA
CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization
CISA Releases Seven Industrial Control Systems Advisories
CISA Adds Three Known Exploited Vulnerabilities to Catalog
Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization
Apple Releases Security Updates for Multiple Products
2024 CWE Top 25 Most Dangerous Software Weaknesses
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory
USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication
CISA Releases One Industrial Control Systems Advisory
CISA Adds Three Known Exploited Vulnerabilities to Catalog
... View more
@TomBridge joins for one last hurrah
Community Update
Our first virtual conference, JumpCloudLand, is open for registration
Coming Monday: the Jumpies are back!!
Best Use Case
Highlights customers that are using JumpCloud in a way that fundamentally transforms their business in a mission-critical manner
Scaling for Success
Highlights customers that have scaled their business using JumpCloud (examples include growth of company through hiring and acquisition(s), product adoption)
Make Work Happen Champion (Individual)
Highlights an individual that has gone above and beyond to Make Work Happen at their organization. Celebrates the work and people behind the scenes that don't always receive recognition, but are critical to the success of IT teams and organizations alike
Posture Management Essentials: Securing the Modern Workplace (Make Work Happen podcast)
IT Hour recaps: https://bit.ly/3NL32GU
Link to community: https://bit.ly/jcitcmty
Link to slack lounge: https://bit.ly/3BBKow4
Feature requests: https://bit.ly/cmtyFR
Make Work Happen podcast: https://bit.ly/3TTxVMs
Product Releases and Announcements
App Catalog for Windows (+ future plans)
User Conference
New Devices List!
Main Topic
History at JC:
Principal PM Times
First IT Hour was Episode 1 in Summer of 2021
Patch Management
iOS Management
macOS Password Change
macOS Password Management
Director of PM
JC Go
JC Go with AVA
USB Blocking
Policy Library
IT News
Palo Alto Networks warns of critical RCE zero-day exploited in attacks (bleeping computer)
Fraud network uses 4,700 fake shopping sites to steal credit cards (bleeping computer) <-- holiday season is upon us – stay vigilant
Are standing desks good for you? The answer is getting clearer. (ars technica)
GOG’s Preservation Program is the DRM-free store refocusing on the classics (ars technica)
Telecom Builds AI ‘Grandmother’ Bot to Talk to Phone Scammers and Waste Their Time (gizmodo)
Detroit Will Let You Pay Your Taxes in Bitcoin. You Probably Shouldn’t Do That (gizmodo)
iOS 18 Security Feature Causes iPhone to Reboot After Three Days of Inactivity (macrumors)
In an outcome beyond parody, The Onion has bought Infowars (engadget)
CISA:
Palo Alto Networks Emphasizes Hardening Guidance
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Releases Nineteen Industrial Control Systems Advisories
Palo Alto Networks Emphasizes Hardening Guidance
Fortinet Releases Security Updates for Multiple Products
Microsoft Releases November 2024 Security Updates
Adobe Releases Security Updates for Multiple Products
Ivanti Releases Security Updates for Multiple Products
JCDC’s Collaborative Efforts Enhance Cybersecurity for the 2024 Olympic and Paralympic Games
Citrix Releases Security Updates for NetScaler and Citrix Session Recording
CISA Releases Five Industrial Control Systems Advisories
Palo Alto Networks Emphasizes Hardening Guidance
Alert | aa24-317a CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities
Cybersecurity Advisory | AA24-317A 2023 Top Routinely Exploited Vulnerabilities
CISA Adds Five Known Exploited Vulnerabilities to Catalog
... View more
@Josh joined us to share 3rd Party Windows App Catalog and Patching
Community News
Link to the IT Hour Transcripts: https://bit.ly/ITHrKB
Link to community: https://bit.ly/jcitcmty
Link to slack lounge: https://bit.ly/3BBKow4
Feature requests: https://bit.ly/cmtyFR
Make Work Happen podcast: https://bit.ly/3TTxVMs
Main Topic
Software Management Roadmap update
Application Catalog
OS Patch Roadmap
IT News
Law enforcement operation takes down 22,000 malicious IP addresses worldwide (ars technica)
Suspect arrested in Snowflake data-theft attacks affecting millions (ars technica)
Apple is finally letting green bubbles send message reactions (the verge)
US consumer protection agency bans employee mobile calls amid Chinese hack fears (cso online)
Cisco bug lets hackers run commands as root on UWRB access points (bleeping computer) CVE-2024-20418
CISA
CISA Releases Three Industrial Control Systems Advisories
CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog
... View more
@Pons and Amy Tebbe joined to discuss Modern Admin Authentication.
Community News
MSP Growth - What’s Next When You’ve Outgrown Word-of-Mouth Acquisition? | msp discussions
New podcast episode: Beyond the Breach – Insights on Incident Response Planning with Cybersecurity Expert Dr. Ken Russell
Link to the IT Hour Transcripts: https://bit.ly/ITHrKB
Link to community: https://bit.ly/jcitcmty
Link to slack lounge: https://bit.ly/3BBKow4
Feature requests: https://bit.ly/cmtyFR
Make Work Happen podcast: https://bit.ly/3TTxVMs
Product Releases and Announcements
JumpCloud Now Supports Apple’s Account-Driven User Enrollment for iOS and iPadOS
JumpCloud Releases New Policies for Apple Intelligence
IT News
Inside a Firewall Vendor's 5-Year War With the Chinese Hackers Hijacking Its Devices (wired)
As of Nov 1, NVD Dashboard:
Hackers target critical zero-day vulnerability in PTZ cameras (bleeping computer)
Meta, Apple say the quiet part out loud: The genAI emperor has no clothes (computer world)
File under oops, or why we shouldn’t RTO Person accidentally poisoned 46 coworkers with toxin-loaded homemade lunch (ars technica)
CISA Alerts this week:
Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments
CISA Releases Four Industrial Control Systems Advisories
Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation
JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage
Apple Releases Security Updates for Multiple Products
CISA Releases Three Industrial Control Systems Advisories
... View more