Month: March 2022
Cybersecurity Threat Advisory: Spring Framework Zero-Day Vulnerability Can Cause RCE Attacks
Threat Update Security professionals have identified a new zero-day vulnerability in the Spring Framework, an application development framework for Java. This vulnerability (tracked as CVE-2022-22965) can allow attackers to execute unauthenticated remote code. Spring has released Spring Framework versions 5.3.18...
IT spending patterns are starting to shift back to normal
It appears that more organizations are looking for some relief as a spate of IT spending growth from the start of the COVID-19 pandemic begins to kick in. A survey of 1,000 IT decision-makers in the U.S. and UK conducted...
Cybersecurity Threat Advisory: SonicWall Releases Hotfix for RCE/DoS Vulnerability
Threat Update SonicWall has released a hotfix for a critical RCE / DoS vulnerability that affects a subset of their firewall devices. This vulnerability (tracked as CVE-2022-22274) in Sonic OS allows an unauthenticated remote attacker to perform denial of service...
Cybersecurity Threat Advisory: Threat Actors Could Target Sophos Firewall
Threat Update Sophos has disclosed a critical-level authentication bypass vulnerability (CVE-2022-1040) that impacts Sophos Firewall v18.5 and below. If this vulnerability is exploited, an attacker could get unfettered access to the firewall and execute remote code at will. Barracuda MSP’s...
Lost and hopefully not found (by a hacker)
The combination of people gradually returning to offices and corporate campuses and the proliferation of BYOD (bring your own device) during the pandemic is not only causing headaches for CISOs and MSPs, but it’s also resulting in cybersecurity problems. “We...
Tip Tuesday: 5 MSP marketing tips for World Backup Day
Most MSPs have run into customers or prospects that refuse to add a backup solution or upgrade from their current one to another that better meets their needs. They believe that their current set-up is satisfactory because the decision makers...
Tech Time Warp: Jean Sammet changes her opinion of computers
In this week’s Tech Time Warp, we’re going back to programming in the 50’s. Introduced in 1959, the programming language COBOL—common, business-oriented language—is still heavily in use today, with an estimated 200 billion lines of code relied upon by government...
Cloud skills crisis creates major opportunity for MSPs
A survey of 610 IT business leaders in North America and Europe conducted by IDC on behalf of Cloudreach, an arm of Atos that focuses on cloud services and Amazon Web Services (AWS), finds 70 percent of respondents view their...
Preparing for a state-sponsored attack
As the conflict in Ukraine drags on, some experts fear that the chance of cybersecurity-related incidents will only increase in the USA. Managed Service Providers (MSPs) are well-positioned as the guardians at the gate for many companies and should play...
Survey finds organizations struggle with public cloud management challenges
A survey of 357 IT professionals conducted by Enterprise Strategy Group (ESG) on behalf of Yotascale, a provider of cost optimization tools for cloud computing environments, suggests that organizations are struggling with managing public cloud computing environments that are becoming...