Month: January 2021
Cybersecurity Threat Advisory: Updates on Global Intrusion Campaign
Threat Update Government and private sector organizations are constantly releasing updates on all manner of topics relating to the SolarWinds Orion compromise. In this article, we have detailed recently released information related to the incident. Technical Detail & Additional Information...
A life event that MSPs need to prepare for
In recent months, much has been written about the cybersecurity implications of remote work, which is at the top of most MSP’s to-do list this year. There is one topic, however, that hasn’t been discussed as much, but requires thoughtful...
Tech Time Warp: Remembering the magic of GeoCities
Like so many relics of the internet, GeoCities is now a common punch line, as the pre-MySpace home of sparkly GIFs and questionable web design. But if you can shuck your too-cool-for-school UX eye, it’s no stretch to appreciate GeoCities...
Demand for managed security services starts to rise
One of the widely expected outcomes of the economic downturn brought on by the COVID-19 pandemic is that more organizations would rely on managed security services. After all, not only would they have fewer resources, the pandemic itself created the...
MSP teambuilding lessons from the Le Mans challenge
The story behind the film, “Ford v Ferrari” and the 24 Hour Le Mans’ challenges offer learnings about MSP teambuilding that I believe MSPs can relate to and apply. You may not be trying to win Le Mans, but we...
Cybersecurity Threat Advisory: WordPress Plugin Critical Vulnerability
Threat Update Security researchers have discovered two vulnerabilities present in a WordPress plugin called Orbit Fox. One vulnerability is rated 9.9 on the CVSS scale and allows for privilege escalation and remote code injection; The second is rated 6.4 on...
Cloud storage security is a great opportunity for MSPs
Companies are storing more and more of their valuable data in the cloud and cyber attackers know this. However, the efficiency and productivity benefits of cloud platforms are such that businesses cannot afford not to use them, yet it is...
Cybersecurity Threat Advisory: SonicWall NetExtender VPN Client and SMA 100 Zero-Day
*Update 1/25: From SonicWall, “While we previously communicated NetExtender 10.X as potentially having a zero-day, that has now been ruled out. It may be used with all SonicWall products. No action is required from customers or partners. Current SMA 100...
Tech Time Warp: SQL Slammer reveals a harsh truth
Network admins the world over had a bad weekend in late January 2003. That’s when the SQL Slammer took the world by storm and, in the process, reminded everyone of a harsh truth: A security patch does no good if...
Cybersecurity Threat Advisory: The Aviation Sector a Target for Ransomware
Threat Update The most recent sector to fall prey to ransomware and other cyber attacks is aviation. At least two prominent organizations (Embraer and Dassault Falcon Jet) were struck by ransomware, resulting in the loss of capital, labor efficiency, and...