You may have heard about the CVE-2014-6271 and CVE-2014-7168 bash shell vulnerability, aka Shellshock. As part of our commitment to security, we wanted to provide an update on what this means for our customers. After investigating this issue, we can confirm that LogMeIn services are NOT affected by Shellshock, and for many customers, no additional action is required to protect against this vulnerability.
Important note for Mac OS X users:
Mac OS X itself is potentially impacted by the Shellshock vulnerability. Like many Mac applications, LogMeIn ‘client’ applications on Mac OS – including LogMeIn Pro Host, LogMeIn Pro Client, Rescue Technician Console Desktop App and Rescue Applet – do use bash to run scripts. Please note that this vulnerability is not in our products. It will have to be addressed through patches for OS X itself. We do not plan to release any of our own product updates related to this issue.
We do recommend that customers running LogMeIn ‘client’ applications on Macs upgrade their Bash versions on Mac OS X, as soon as Apple makes these available. [updates now available. please see UPDATE section at end of post]
If you’re worried, though, there is a way to manually update your GNU bash version to a more secure one: http://mac-how-to.wonderhowto.com/how-to/every-mac-is-vulnerable-shellshock-bash-exploit-heres-patch-os-x-0157606/
We will continue to monitor and will provide an update to this post as soon as a Mac OS X patch is available.
As pointed out by Stuart Bryant in the comments below, Apple has just released an update to address the Shellshock vulnerability.
For users running OS X Mavericks (OS X 10.9) , you can download the update here: http://support.apple.com/kb/DL1769
If you’re running an older version of OS X 10.8 or before, you can get the Mountain Lion version here: http://support.apple.com/kb/DL1768 or the Lion version here: http://support.apple.com/kb/DL1767
LogMeIn recently attended the ASCII Success Summit in Phoenix, where we were given the opportunity to speak to the event’s solution provider attendees about our newest solution, AppGuru. LogMeIn’s AppGuru gives channel partners the ability to discover and manage 3rd party cloud applications (e.g. Office 365, Salesforce & Dropbox) for their end-user customers though a single pane of glass.
During the presentation, we shared a success story from Chris Johnson, CEO of Untangled Solutions. The case study illustrated how Chris used AppGuru to solve an Active Directory/Google Apps discrepancy, discover many unauthorized file sync and share solutions running on network, and identify network bandwidth issues for his customer. Chris’s efforts resulted in him saving the customer thousands of dollars and strengthening their relationship. Click here to read the full case study.
At the conclusion of the event, the ASCII attendees voted for the best vendors in 10 different categories, including Best Cloud Solution, Best Software Solution and Best Partner Commitment. LogMeIn was honored to receive the award for the ‘Best Cloud Solution’ product for the IT industry. We’d like to thank ASCII and all the attendees for recognizing our efforts to making intuitive cloud solutions and we look forward to closing out the ASCII 2014 season in Atlantic City on October 22-23.
If you’re a solution provider in or around the NJ area and interested in attending the ASCII Atlantic City event, please email Shannon.firstname.lastname@example.org to secure your free VIP pass. Passes are limited and will be distributed on a first come, first serve bases. For more information on ASCII Success Summit events, please visit: www.asciievents.com.
Legacy collaboration solutions don’t fit the modern, mobile, consumerized, and connected workforce’s needs and expectations. Professionals desire agile, easy-to-use tools that facilitate the rapid proliferation of ad hoc and virtual meetings. And if IT-provisioned tools don’t do the trick, employees are not shy about solving the problem with their own apps and devices.
Click here to read more at CIO.com
If you understand that enhancing and improving customer support means earning customer loyalty and driving lifetime value, then you will want to learn about advanced technical solutions that will help you stay one step ahead.
Join Jason Baron, Vice President, Client Services at Coretelligent, Brian Cantor, Managing Editor at IQPC and Peter Zeinoun, Director of Products for LogMeIn Rescue in this round-table style webcast where they’ll discuss the challenges of the evolving support landscape, and the tremendous opportunities that technology presents in meeting those challenges.
- Title: Roundtable: Raising the Bar on Customer Support
- Date: Tuesday, September 30, 2014
- Time: 2:00 PM – 3:00 PM ET
At this roundtable, you’ll learn:
- What specific strategies and technologies support organizations employ to achieve growth in this hyper competitive industry.
- How Coretelligent has improved operational effectiveness, SLA response and resolution time, and enhanced customer loyalty to realize a client retention rate hovering around 97%.
- How you can effectively and efficiently scale the delivery of superior customer support, customized and configured on a per client basis
Audience questions will be taken and addressed live throughout this interactive discussion. Register here.
We look forward to having you join us!
We’ve seen reports of a fake (presumably phishing) email making the rounds, and as part of our ongoing commitment to security, we wanted to make sure our users and the public, at large, were both aware of the reports and educated on how to identify suspicious emails. According to the reports, the email subject line contains the phrase “LogMeIn Security Update” and it has been designed to make it look like it is coming from a LogMeIn email address. Please note that this email did NOT come from LogMeIn — we will never ask you to update your SSL certificate. And like any suspicious email, you should not download or open any attachments, and you should avoid clicking on any links.
We’ve included an image of the suspicious email below. Our security team has also created a quick primer on how to avoid phishing attacks.
Those who have taken a look at their calendar lately know that meetings are on the rise. We have meetings to make plans, to collaborate, and to communicate — all of which becomes even more important as companies add satellite offices and allow employees to work from home.
Still, many employees gripe about wasting valuable time and energy in meetings. And the amount of time wasted is adding up. According to a study by Ovum and join.me by LogMeIn, senior executives lose an average of five full days and 19 hours every year waiting for late meetings to start. As companies try to be more engaging and productive, the way they conduct meetings needs to follow suit. They need to adapt to a younger, more collaborative workforce accustomed to ad hoc and virtual meetings.
Click here to for five ways to make meetings more productive on BusinessInsider.com.
The modern day workforce has evolved to be highly mobile and consumerized. According to Collaboration 2.0: Death of the Web Conference (As We Know It), 32% of all meetings are now being conducted virtually as a result. And that number will continue to grow alongside the population of millennial professionals.
In fact, respondents ages 26 to 35 are conducting an even greater rate—38% to be exact—of their meetings virtually. Is this just a sign of the times? Sophisticated web conferencing and collaboration technology has certainly facilitated the growth of virtual meetings, but not to the extent that today’s professional demands.
Click here to read the full article at CIO.com.
Today’s most tuned in-IT pros realize that the technology landscape is changing. Employees have more flexibility than ever, the “Bring-your-own” trend is on the rise and 7X more apps are coming into the workplace than IT even realizes. Reigning in an empowered workforce can seem like an impossible task. Regardless of the size of your organization, if it’s unclear what’s happening on your network – there’s no way to improve it.
This on-demand webcast explores 5 steps to make your business BYOA ready. You have the opportunity to gain back the visibility, security and peace of mind needed to push your business forward, while still maintaining end-user satisfaction.
Interested in learning more? Download your copy today!
Please join us on Thursday, September 18th at 2:00PM EST for the first in our new Rescue Chronicles webcast series, featuring special guest, Joe Eaton, Technical Support Specialist for Make-A-Wish Foundation.
Joe will share his experiences in the support department at Make-A-Wish, including how the team has successfully:
- Cut the time to troubleshoot and solve issues by more than 50%
- Reduced extra reporting work for the technicians
- Eliminated unnecessary travel, and frustrating phone-only support
In addition, LogMeIn’s Rescue team will:
- Share insights into successful support strategies we are seeing in the market
- Review Rescue’s technician interface for supporting mobile devices
- Demonstrate the Rescue support experience for both Android and iOS devices
We will close out this interactive session with a live Q&A session where we’ll answer your live questions. Don’t miss out – register today!
Have you ever heard anyone say, “I’m really psyched! I have a ton of meetings today”? Probably not, because in general, meetings are a painful albeit necessary part of everyone’s work life.