Month: April 2024
Cybersecurity Threat Advisory: LayerSlider SQL injection vulnerability
An unauthenticated Structured Query Language (SQL) injection vulnerability, known as CVE-2024-2879, has been found in the WordPress plugin LayerSlider. Review this Cybersecurity Threat Advisory to learn how to safeguard your accounts from unauthenticated attackers. What is the threat? The vulnerability...
Analyzing the latest Ivanti-linked CISA breach
Another day passes, another cyberattack strikes. This time, a recent incident impacted a major U.S. government entity known as the Cybersecurity and Infrastructure Security Agency (CISA). Back in February, CISA officials discovered that two of its internal computer systems were compromised by...
Four automation priorities MSPs should focus on
Many organizations conduct surveys every year about the evolving threats and cybersecurity concerns that enterprises are faced with. Info-Tech Research Group’s report is a must-read for all security stakeholders, chief information security officers (CISOs), and managed service providers (MSPs). Some...
Cybersecurity Threat Advisory: Critical vulnerability in Palo Alto PAN-OS
Palo Alto Networks has disclosed a critical vulnerability, CVE-2024-3400, impacting its PAN-OS software’s GlobalProtect feature. This flaw enables unauthenticated attackers to execute arbitrary code with root privileges on affected firewalls. Review this Cybersecurity Threat Advisory to keep your organization secure...
QR code phishing: What MSPs need to know to protect their customers
In today’s digital age, the use of technology continuously evolves to make our personal and professional lives more convenient. Quick Response (QR) code has been one such advancement. This two-dimensional barcode allows users to share website URLs and contact information...
Pioneers in Tech: Happy birthday to Chief Yahoo David Filo
You’ve heard of Ben and Jerry, but are you as familiar with Jerry and David? Unless you’re a keen watcher of Silicon Valley, perhaps not. But the website founded in 1994 as “Jerry and David’s Guide to the World Wide...
Generative AI is a game-changer for how MSPs demonstrate value
Customers like to have a clear understanding of what’s going on. MSPs hold more than enough data to let customers know what is going on with their services. However, they struggle to transform this data into a useful form that...
Cybersecurity Threat Advisory: Critical flaws in Ivanti
Recent flaws found in Ivanti Connect Secure and Policy Secure Gateways can lead to remote code execution (RCE) attacks. Review this Cybersecurity Threat Advisory to learn additional details and recommendations to keep your organization secure. What is the threat? Ivanti...
Navigate the compliance maze to unlock MSP business growth
The cybersecurity compliance landscape continues to transform significantly as regulations get tighter and enforcement gets stricter. While businesses (and to be fair, MSPs) try to keep up, the MSP opportunity to win new business with compliance expertise and strategy is...
Cybersecurity Threat Advisory: Two vulnerabilities found in D-Link NAS devices
Two vulnerabilities were found in legacy D-Link products that have reached end-of-life (EoL) status. The vulnerabilities can cause command injection and backdoor account to these devices. This Cybersecurity Threat Advisory discusses the impact of the threat, as well as recommendations...
