Month: October 2025
AI expectations vs reality: What MSPs need to know
While artificial intelligence (AI) is undoubtedly on its way to becoming transformative in the marketplace, many expectations surrounding it are, at best, exaggerated. AI-washing is now big business. Many vendors are simply rebranding their existing portfolios with AI messaging to...
Cybersecurity Threat Advisory: Critical Oracle EBS flaw
Oracle released an emergency update for its E-Business Suite to address the critical vulnerability CVE-2025-61882 ( with a CVSS of 9.8) because it was actively being exploited by threat actors, particularly the Cl0p ransomware group, in a recent wave of...
Government shut-down heightens cybersecurity risks
As the U.S. government enters its first full week with operations ground to a halt, experts fear that there will be cybersecurity ramifications. The numbers paint a grim picture: According to Department of Homeland Security planning documents, approximately 65 percent...
Cybersecurity Awareness Month: Simple steps for cyber safety in 2025
October 1 marked the beginning of Cybersecurity Awareness Month (CAM), an annual initiative dedicated to raising awareness about cybersecurity and promoting safe online practices. Each October, governments, public sector agencies and private sector partners join forces, organizing events and media...
Tech Time Warp: Two decades of Cybersecurity Awareness Month—but there’s still work to do
If you’re reading this blog, you probably observe cybersecurity awareness year-round, not just during the annual observance of Cybersecurity Awareness Month each October. But, as a managed service provider (MSP), you also likely appreciate any opportunity to draw attention to...
Global politics meets IT staffing: The H-1B visa crossroads
H-1B visas that enable IT professionals from overseas to work in the U.S. have always been a controversial issue. However, with the current administration’s decision to impose $100,000 annual fees for each successful applicant, the issue may soon simply fade...
Cybersecurity Threat Advisory: Critical Linux sudo vulnerability
Security researchers have uncovered a serious vulnerability in sudo, the tool that runs commands with elevated privileges on Linux systems. It is tracked as CVE-2025-32463 and carries a CVSS score of 9.3. This flaw poses a serious risk to Linux...
Cybersecurity Threat Advisory: VMware zero-day vulnerability exploited
Threat actors have actively exploited a zero-day vulnerability in Broadcom VMware Tools and VMware Aria Operations (CVE-2025-41244) in the wild. The China-linked group UNC5174 (aka Uteus/Uetus) has exploited the flaw for privilege escalation in VMware-targeted attacks. Continue reading this edition...
Cybersecurity Threat Advisory: Cisco IOS and IOS XE SNMP vulnerability
Several vulnerability advisories were issued that impact devices using Cisco IOS and Cisco IOS XE firmware. Most notably, CVE-2025-20352 has already been observed in active exploitation. Continue reading this Cybersecurity Threat Advisory to mitigate your risks from this vulnerability. What...
