• Skip to primary navigation
  • Skip to content

NetMotion Software

  • SOLUTIONS
    • Zero trust access
    • Experience monitoring
    • Enterprise VPN
    • SASE
  • PLATFORM
    • NetMotion cloud
    • How it works
    • Devices & deployment
    • Analytics & visibility
    • Policy controls
  • COMPANY
    • About
    • Customers
    • Careers
    • News
    • Management
    • Contact
  • SECTORS
    • Legal
    • Finance
    • Public safety
    • Healthcare
    • Transport
    • Utilities
  • PARTNERS
    • Alliances
    • Resellers
    • Network operators
  • INSIGHTS
    • Blog
    • Reports
    • Analysts
    • Case studies
    • Webinars
    • Videos
  • DEMO
  • SUPPORT
  • EN

Security

Microsoft’s Windows CryptoAPI Vulnerability is a Big Deal. How Security and User Experience Need to Go Hand in Hand.

January 17, 2020

Microsoft security advisory blog image

With so many data breaches, hacks, and cybersecurity threats in the news, it’s often hard to keep up with the scandal of the day. But when a big name like the NSA finds a major vulnerability in Microsoft’s universally used OS, it makes headlines around the world.  

Microsoft exposed

While most people are familiar with Microsoft and the NSA; cryptographic libraries, certification authorities, and man-in-the-middle attacks are beyond the understanding or interest of most casual readers.

In simple terms, the vulnerability can be exploited in the Windows CryptoAPI certification validation process, which then allows hackers to spoof secure webpages and fake file signatures. Admins, however, need more information, especially what an attack could mean to the organization’s day-to-day business operations.

The Greatest Mobile Security Threats in the Enterprise

Security shouldn’t be painful

Installing the Microsoft patch is extremely important, but despite the severity of the threat, some admins are rightfully hesitant.

In the first month of 2020 alone, there have already been nearly 1,000 common vulnerabilities and exposures (CVE) reported to the National Vulnerability Database (NVD). While critical to patch, patching alone may just be the first in a series of tasks. Often, administrators have to manage a cascading series of related remediations, patches, and configuration changes necessitated by the original patch.

When security patches repeatedly disrupt normal business activities it’s natural to become frustrated. What good is it to be secure if you can’t operate your business?

NetMotion’s impact

As a trusted security vendor that prides itself on improving the productivity of all users, patches like these remind us that security doesn’t have to come at the cost of sacrificing user experience.

That’s why we dug into the latest Microsoft Windows CryptoAPI vulnerability to confirm that NetMotion’s functionality is not impacted. But we didn’t stop there. We also tested the Windows patch on our machines to be sure that NetMotion will still work so that users can get back to business as quickly as possible.

Security patches – from Microsoft or anyone else – aren’t going away any time soon. In a perfect world these patches would simply fix the issue at hand and have no other impact on the business. But until then, we will continue to investigate vulnerabilities and let you know what to do to protect your organization and stay productive.

For more information, please review our customer advisory.

Have more questions? Contact us

Continue Reading

  • Ransomware – the scourge of our times
  • Creating a Cyber Security Culture with former Arsenal F.C IT Director, Christelle Heikkila
  • Demand for ZTNA continues its upward trajectory in 2022
  • What does “cyber resilience” mean to Legal IT?
  • Where are you on the machine learning and artificial intelligence roadmap?

Meet the secure virtual private network that's purpose-built for mobile workers. Your free evaluation of NetMotion Mobility® starts here.

Keep Reading

Ransomware – the scourge of our times

Security

Creating a Cyber Security Culture with former Arsenal F.C IT Director, Christelle Heikkila

Security

Demand for ZTNA continues its upward trajectory in 2022

Products/Solutions Remote Working Security

  • Customer Portal
  • Knowledge Base
  • Support and Services
  • Training
  • Support Plans
  • Professional Services
  • Release updates
  • Security Advisories
  • Support Advisories
  • Supported Systems
  • Disclosure policy

Try the software for 30 days, for free


Get Started
  • SASE
  • Company
  • Sectors
  • Partners
  • Resources

Secure remote access, without sacrificing on experience.

LinkedIn Twitter instagram youtube Email
  • SASE
    • ZTNA
    • DEM
    • VPN
    • SD-WAN
    • SWG
    • FWaaS
    • CASB
  • Company
    • Customers
    • Careers
    • News
    • Management
    • Privacy
    • Legal
    • Manage preferences
  • Sectors
    • Law firms
    • Finance
    • Public safety
    • Healthcare
    • Transport
    • Utilities
  • Partners
    • Alliances
    • Resellers
    • Verizon
    • AT&T
    • Telstra
    • Rogers
    • Microsoft
  • Resources
    • Blog
    • Reports
    • Analysts
    • Case studies
    • Webinars
    • Videos
    • Support

© 2022 NetMotion Software