Month: March 2020
Fileless malware is here to stay
With the focus on coronavirus, cybersecurity professionals can’t lose sight of virtual viruses. Just as biologically based threats evolve, so do virtual ones. For years, MSPs and cybersecurity experts devised defenses to intercept suspicious attachments harboring dangerous payloads. The attacks weren’t...
Coronavirus will drive organizations toward MSPs for remote computing expertise
The global spread of the COVID-19 coronavirus is driving more employees to work from home. Meanwhile, many organizations are starting to discover just how unprepared they are to enable every employee to work outside the office. It’s one thing to...
Ask an MSP Expert: What are some common HIPAA missteps and how can my MSP avoid them?
Q: My MSP partners with clients that frequently work with sensitive medical data that falls under HIPAA protections. How can my MSP ensure that this data remains protected and that our clients are not subjected to penalties from HIPAA? Despite...
Protecting remote employees in the time of Coronavirus
With the growing concern over the spread of coronavirus, also known as COVID-19, there are a growing number of school closures and companies are encouraging employees to work from home when possible. Bloomberg cited that approximately 29 percent of the...
Cybersecurity Threat Advisory: ManageEngine RCE (CVE-2020-10189)
Advisory Overview Zoho ManageEngine Desktop Central is vulnerable to Remote Code Execution (RCE). The vulnerability could potentially allow an attacker to execute arbitrary code as SYSTEM or root, without the need for authentication. SKOUT recommends updating ManageEngine Desktop Central to...
New chip flaws could create more headaches for MSPs
We saw two chip flaws emerge last week affecting both Intel and AMD. The problem with these particular flaws is that they are built into the chip architecture, which makes them challenging to patch. This isn’t the first time we’ve...
Tech Time Warp: MyLife virus tempts users with screensavers
Sometimes a computer user gets tired of flying toasters. That was the gamble taken by the creators of MyLife, a worm with multiple variants infecting PCs in March and April 2002.
Cybersecurity Threat Advisory: ZyXEL NAS RCE Vulnerability (CVE-2020-9054)
Advisory Overview Several ZyXEL NAS devices are vulnerable to Remote Code Execution (RCE). The vulnerability could potentially allow an attacker to execute remote commands as root. A patch has been released, but many devices are at an end of life...
The new way to look at managed services
Have any of these thoughts about your MSP business recently crossed your mind? “I’m not able to charge a rate that serves my business well.” “I’m absorbing all the security risks for my client without increasing the cost.” “I’m unable...
Staying ahead of social engineering attacks
According to Verizon’s 2018 Data Breach Investigations Report, social engineering represents 93 percent of email breaches. While social engineering and spear phishing attacks have malicious intent to get something from the user, they are built differently from other attacks. They...