Month: September 2023

Cybersecurity Threat Advisory: Sophisticated phishing campaign identified
This Cybersecurity Threat Advisory focuses on a sophisticated phishing campaign that uses a Microsoft Word document lure to distribute a trio of threats. The threats are Agent Tesla, OriginBotnet, and RedLine Clipper, and are designed to gather a wide range...

Hybrid cloud automation creates MSP opportunity
IT teams are starting to conclude that cloud automation has become too much of a good thing. A global survey of 535 IT leaders conducted by Broadcom finds that more than 81 percent have multiple cloud automation solutions in place,...

Cybersecurity Threat Advisory: New Android zero-day exploit found
This Cybersecurity Threat Advisory involves a critical zero-day vulnerability affecting Android devices, tracked as CVE-2023-35674, posing a significant threat to Android users. This vulnerability allows malicious actors to execute arbitrary code remotely, potentially compromising sensitive user data and device functionality....

Cybersecurity Threat Advisory: Zero-day vulnerabilities found in Apple’s PassKit
Today’s Cybersecurity Threat Advisory involves Apple, who recently released critical updates for iPhone and Mac products after two zero-day vulnerabilities were discovered in their PassKit framework via iMessage. Both vulnerabilities allow malicious actors to perform arbitrary code execution on devices...

Cybersecurity Threat Advisory: New VMware Aria vulnerability identified
Today’s Cybersecurity Threat Advisory highlights an SSH authentication bypass flaw, identified as CVE-2023-34039, which has been discovered in VMware Aria. It has a severity rating of “critical” and a CVSS v3 scope of 9.8. This vulnerability allows remote attackers to...

Back-to-school highlights the importance of cybersecurity resiliency for educators
The rumbling yellow school buses and children at recess clambering on jungle gyms are becoming familiar sights. Schools are back in session across most of the country and while students have been having fun over the summer, hackers have been...

Cybersecurity Threat Advisory: Social engineering attacks targeting Okta
Today’s Cybersecurity Threat Advisory highlights Okta, who in recent weeks has experienced social engineering attacks by threat actors looking to attain highly privileged roles within Okta’s accounts. The company has warned about social engineering attacks targeting IT service desk agents...