Ingalls Security Operations Center is now 24/7/365!

Our 100% US-based Security Operations Center (SOC) now offers live analysis and support by our team of analysts every day of the year, 24 hours a day.‘Round the clock, MDR provides extended coverage with continuous analysis, response and escalation

12 Nov 2021
Read More

Apache HTTP Server Vulnerabilities (CVE-2021-41773 & CVE-2021-42013)

These vulnerabilities are currently being exploited in the wild. As of October 21st, there are nearly 48,000 web-exposed servers with these vulnerabilities.

22 Oct 2021
Read More

Antivirus is Dead...Long Live Antivirus

Ingalls has worked Incident Response for over 10 years; in that time we have seen some of the nastiest data breaches and a lot of victims who thought they were safe because they were using popular antivirus software. We’ve seen what works and what

02 Sep 2021
Read More

SolarWinds Serv-U RCE 0-Day Vulnerability (CVE-2021-35211)

Microsoft recently informed SolarWinds about a Remote Memory Escape vulnerability that can result in Remote Code Execution in the SolarWinds Serv-U Managed File Transfer Server and Serv-U Secured FTP products. Microsoft provided SolarWinds with a

13 Jul 2021
Read More

PrintNightmare Update (CVE-2021-34527)

Microsoft has completed the investigation and has released security updates to address this vulnerability. It is recommended that these updates be installed immediately. Note that the security updates released on and after July 6, 2021, contain

07 Jul 2021
Read More

PrintNightmare Vulnerability (CVE-2021-1675)

CVE-2021-1675 (aka PrintNightmare) is a vulnerability in the built-in Windows “Print Spooler” service. Microsoft released a patch for CVE-2021-1675 as a low-severity vulnerability on June 8. However, it has since been determined that the

01 Jul 2021
Read More