Month: May 2025
Weathering the storm: Partners stay positive
In the face of growing uncertainty, a survey of 705 technology partners in North America and Western Europe finds more than three-quarters (87 percent) expect to grow revenues in 2025, with a subset of that group (18 percent) expecting more...
Cybersecurity Threat Advisory: Critical Commvault Command Center vulnerability
Commvault Command Center has been impacted by a critical security vulnerability, CVE-2025-34028, with a CVSS score of 10. This vulnerability enables remote code execution (RCE). Review the details of this Cybersecurity Threat Advisory to minimize the risk from this threat....
MSPs: Time to capitalize on the IoT security business opportunity
Managed service providers (MSPs) looking for a rich vein of underutilized market opportunities should examine the business case for delivering IoT security and risk management. So many potential MSP clients already have the traditional bases covered when it comes to...
Cybersecurity Threat Advisory: BYOI endpoint detection and response bypass
A sophisticated attack technique known as “Bring Your Own Installer” (BYOI) has been employed by threat actors to bypass SentinelOne’s tamper protection, facilitating the deployment of Babuk ransomware. This method leverages legitimate installers to execute malicious payloads, effectively evading endpoint...
What over 850 #1 rankings taught us about real MSP SEO
Search Engine Optimization (SEO) is full of noise, and a lot of it is wrong. Managed service providers (MSPs) come to us frustrated and exhausted: spending months chasing 400+ keywords, endlessly tweaking technical settings, and still falling short of competitors...
Cybersecurity incident response plan: An essential MSP practice
Managed service providers (MSPs) are often tasked with providing cybersecurity for their clients. But what happens when a cyberattack happens? Usually, decisions need to be made rapidly and actions taken within minutes. That’s why having incident response plans is critical....
Cybersecurity Threat Advisory: Commvault Web Server vulnerability
A high-severity Commvault Web Server vulnerability, CVE-2025-3928, with a CVSS score of 8.7, has been disclosed. To mitigate your risk, continue reviewing this Cybersecurity Threat Advisory. What is the threat? CVE-2025-3928 affect Commvault Web Server versions prior to 11.36.46, 11.32.89,...
Email security under siege: How MSPs can win the war against phishing
Phishing attacks are no longer the clumsy attempts of the past. They’re evolving at an alarming rate, forcing managed service providers (MSPs) to radically adapt their email security strategies to protect their customers effectively. Automated phishing tools, the weaponization of...
Cybersecurity Threat Advisory: Apple AirPlay zero-day vulnerability
Researchers have discovered a critical vulnerability in Apple’s AirPlay protocol. It affects both Apple devices that support AirPlay as well as third-party devices that interface with it. The flaw can enable an attacker to fully takeover a device without the...
Cybersecurity Threat Advisory: Microsoft Windows process activation vulnerability
A local privilege escalation vulnerability, CVE-2025-21204, in the Windows Update Stack has been discovered. It allows an authorized attacker to elevate privileges by exploiting improper link resolution before file access. Review this Cybersecurity Threat Advisory to mitigate your risk. What...
