Month: September 2025
MSPs caught in the tug-of-war over legacy systems
Each Labor Day, the cost of IT labor invariably becomes a topic of discussion. After all, even in the age of artificial intelligence (AI), the single biggest segment of any IT budget remains staffing. The cost incurred depends greatly on...
Cybersecurity Threat Advisory: Passwordstate emergency patch released
Click Studios has released an emergency update for Passwordstate 9.9 to address a high-severity security vulnerability. According to the changelog, the flaw could be exploited to bypass authentication. Review the details in this Cybersecurity Threat Advisory to reduce your risk...
Cybersecurity Threat Advisory: Critical FreePBX zero-day vulnerability
Researchers have discovered a zero-day vulnerability in Sangoma FreePBX, identified as CVE-2025-57819. This flaw allows unauthenticated remote attackers to take control of affected PBX systems, potentially resulting in remote code execution (RCE), arbitrary database manipulation, and full system compromise. Review...
Back to school, back to scams part 2: Mitigation in motion
As students and faculty return to campuses across the nation this fall, they’re not the only ones getting back into the swing of things. Cybercriminals are also sharpening their pencils – or rather, their phishing emails and ransomware attacks –...
Evil-GPT: The “Enemy of ChatGPT”
In the ever-evolving landscape of cybercrime, one tool has emerged as a particularly insidious player: Evil-GPT. Marketed on hacker forums on the dark web as the “ultimate enemy of ChatGPT” and the “best alternative to WormGPT,” this malicious artificial intelligence...
