@Pons and Amy Tebbe joined to discuss Modern Admin Authentication. Community News MSP Growth - What’s Next When You’ve Outgrown Word-of-Mouth Acquisition? | msp discussions New podcast episode: Beyond the Breach – Insights on Incident Response Planning with Cybersecurity Expert Dr. Ken Russell Link to the IT Hour Transcripts: https://bit.ly/ITHrKB   Link to community: https://bit.ly/jcitcmty  Link to slack lounge: https://bit.ly/3BBKow4 Feature requests: https://bit.ly/cmtyFR  Make Work Happen podcast: https://bit.ly/3TTxVMs Product Releases and Announcements JumpCloud Now Supports Apple’s Account-Driven User Enrollment for iOS and iPadOS JumpCloud Releases New Policies for Apple Intelligence IT News Inside a Firewall Vendor's 5-Year War With the Chinese Hackers Hijacking Its Devices (wired) As of Nov 1, NVD Dashboard:   Hackers target critical zero-day vulnerability in PTZ cameras (bleeping computer) Meta, Apple say the quiet part out loud: The genAI emperor has no clothes (computer world) File under oops, or why we shouldn’t RTO Person accidentally poisoned 46 coworkers with toxin-loaded homemade lunch (ars technica) CISA Alerts this week: Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments CISA Releases Four Industrial Control Systems Advisories Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage Apple Releases Security Updates for Multiple Products CISA Releases Three Industrial Control Systems Advisories ... View more

Spooky Edition: tech tales of terror Community News MSP Growth - What’s Next When You’ve Outgrown Word-of-Mouth Acquisition? | msp disc Link to the IT Hour Transcripts: https://bit.ly/ITHrKB   Link to community: https://bit.ly/jcitcmty  Link to slack lounge: https://bit.ly/3BBKow4 Feature requests: https://bit.ly/cmtyFR  Make Work Happen podcast: https://bit.ly/3TTxVMs Main Topic Tell us your tech tales of terror! IT News Apple Intelligence bug bounty invites researchers to test its privacy claims (the verge) Google, Microsoft, and Perplexity promote scientific racism in AI search results (ars technica) Lawsuit: City cameras make it impossible to drive anywhere without being tracked (ars technica) The FCC will review the broadband industry’s lousy customer support (engadget) UnitedHealth says data of 100 million stolen in Change Healthcare breach (bleeping computer) CISA Alerts for the week: Cisco Releases Security Bundle for Cisco ASA, FMC, and FTD Software CISA Releases Four Industrial Control Systems Advisories CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA, US, and International Partners Release Joint Guidance to Assist Software Manufacturers with Safe Software Deployment Processes CISA Adds One Known Exploited Vulnerability to Catalog CISA Releases One Industrial Control Systems Advisory CISA Adds One Known Exploited Vulnerability to Catalog CISA Adds One Known Exploited Vulnerability to Catalog ... View more

@serhatcan joined the IT Hour to showcase where SaaS Management is headed! Community Update Making the Most of Cybersecurity Awareness Month | MSP disc Run command every time MACs computer go to sleep mode/wake up or login | Scripts (captainit) Install wallpaper or screen sever on Macbook | Software / Hardware (Daljeet) Link to the IT Hour Transcripts: https://bit.ly/ITHrKB   Link to community: https://bit.ly/jcitcmty  Link to slack lounge: https://bit.ly/3BBKow4 Feature requests: https://bit.ly/cmtyFR  Make Work Happen podcast: https://bit.ly/3TTxVMs Main Topic Launching JumpCloud SaaS Management! 🚀 JCU course on SaaS Mgmt: https://university.jumpcloud.com/courses/saas-management  SaaS Management for MSPs | MSP disc IT News Microsoft warns it lost some customer's security logs for a month (bleeping computer) Fake Google Meet conference errors push infostealing malware (bleeping computer) Google: 70% of exploited flaws disclosed in 2023 were zero-days (bleeping computer)   The FTC is finally making it easier to cancel your gym membership (the verge) CISA Releases Seven Industrial Control Systems Advisories CISA Adds One Known Exploited Vulnerability to Catalog Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM) CISA Releases Two Industrial Control Systems Advisories CISA Adds Three Known Exploited Vulnerabilities to Catalog   ... View more

Community News Serial number not being reported to Jumpcloud from a new version of Windows | scripts It's October, and you know what that means... Cybersecurity Awareness Month!! | security & networks Link to the IT Hour Transcripts: https://bit.ly/ITHrKB   Link to community: https://bit.ly/jcitcmty  Link to slack lounge: https://bit.ly/3BBKow4 Feature requests: https://bit.ly/cmtyFR  Make Work Happen podcast: https://bit.ly/3TTxVMs Product Releases and Announcements JumpCloud Go Sessions Now Persist After User Portal Logout Going forward, logging out of the User Portal will no longer terminate active JumpCloud Go sessions. End users will now find a dedicated button in the Security section of the User Portal, allowing them to intentionally log out of JumpCloud Go from their signed-in device when needed. With this update, logging out of the User Portal won’t affect JumpCloud Go sessions. Users will be given the option to log into a different account, without the hassle of re-registering their device. This reduces the risk of unintentional logouts leading to unnecessary re-authentication steps. Next week’s IT Hour: Launching JumpCloud SaaS Management! 🚀 Main Topic HAPPY CYBERSECURITY AWARENESS MONTH! The theme of Cybersecurity Awareness Month is Secure Our World Cybersecurity Awareness Month was launched by the National Cybersecurity Alliance & the U.S. Department of Homeland Security in October 2004. https://staysafeonline.org/programs/cybersecurity-awareness-month/  Theme 1: Use strong passwords and a password manager Theme 2: Turn on multifactor authentication Theme 3: Recognize and report phishing Theme 4: Update software IT News Eleven things to know about in the Windows 11 2024 Update (ars technica) 18 Android settings that'll strengthen your security (computer world) Casio confirms customer data stolen in a ransomware attack (bleeping computer) Hacked Robot Vacuums Across the US Started Yelling Slurs (gizmodo) Data breach of Fidelity leaks 77,000 customers’ personal data (engadget) Using inside info, iPhone thieves arrive at your house right after FedEx (ars technica) Man learns he’s being dumped via “dystopian” AI summary of texts (ars technica) CISA Releases Twenty-One Industrial Control Systems Advisories Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies CISA Adds Three Known Exploited Vulnerabilities to Catalog Adobe Releases Security Updates for Multiple Products Microsoft Releases October 2024 Security Updates Avoid Scams After Disaster Strikes CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA and FBI Release Fact Sheet on Protecting Against Iranian Targeting of Accounts Associated with National Political Organizations ... View more

@NeerajK joined the IT Hour to give an update on JumpCloud Device Health & Monitoring. Community Update HAPPY CYBERSECURITY AWARENESS MONTH! The theme of Cybersecurity Awareness Month is Secure Our World Cybersecurity Awareness Month was launched by the National Cybersecurity Alliance & the U.S. Department of Homeland Security in October 2004. https://staysafeonline.org/programs/cybersecurity-awareness-month/  Theme 1: Use strong passwords and a password manager Link to the IT Hour Transcripts: https://bit.ly/ITHrKB   Link to community: https://bit.ly/jcitcmty  Link to slack lounge: https://bit.ly/3BBKow4 Feature requests: https://bit.ly/cmtyFR  Make Work Happen podcast: https://bit.ly/3TTxVMs  Product Releases and Announcements Stronger Passwords, No Deadlines: A Smoother Path to Security Compliance Administrators can now update and enhance their organization’s global password policy without requiring all users to reset their passwords by a specific date. This allows IT teams to strengthen password requirements while respecting each user’s current password expiration date. Previously, the only option for admins was to set a deadline by which all users had to update their passwords, forcibly expiring accounts and overriding existing granular password expiration dates. JumpCloud Go now automatically refresh sessions during device login and unlock We are excited to announce a significant update with the release of JumpCloud Agent version 1.224.1. This update includes key enhancements aimed to combat user login fatigue and enhance organizational security. With this version or later, JumpCloud Go now leverages device login or unlock events to automatically refresh registered device sessions. Upcoming EA for User Enrolled iOS Devices with Apple Accounts In order to be an EA tester, you need: Managed Apple Accounts (federated or not) from the Apple Business Manager account attached to your org's MDM Volume Purchase Program for app deployment iOS devices Ability to put a JSON file at yourcompanydomain.com/.well-known or setup a 301 redirect on your company website Form: https://forms.gle/fQkyqM8RDqrUzFJ87 Main Topic Device Monitoring & Alerting: Announcement EA Overview Live Demo  Future Roadmap  Feedback & Questions IT News Meta smart glasses can be used to dox anyone in seconds, study finds (ars technica) Helene takes ultrapure quartz mines offline, threatens tech supply chains (ars technica) Many companies won’t say if they’ll comply with California’s AI training transparency law (tech crunch)   ... View more