Month: February 2026
Cybersecurity Threat Advisory: Warlock (Storm-2603) exploits SmarterMail vulnerability
SmarterTools has confirmed that the Warlock ransomware group (Storm‑2603) breached its environment by exploiting an unpatched SmarterMail instance. Current intelligence indicates the same SmarterMail vulnerability is being actively used in the wild to gain initial access and deploy Warlock ransomware....
Cybersecurity Threat Advisory: Critical FortiClientEMS SQL injection vulnerability
An improper neutralization of special elements used in SQL commands in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized code or commands through specially crafted HTTP requests. This vulnerability, tracked as CVE‑2026‑21643 with a CVSS score of...
Wave of AI agents creates major new opportunity for MSPs
The rapid rise of artificial intelligence (AI) agents is unlike any past technology shift. It creates a significant opportunity for managed service providers (MSPs) to expand and enhance their offerings. AI agent adoption accelerates at unprecedented speed A survey of...
Why local business fairs are one of the best lead sources for early-stage MSPs
One of the most common questions I get from early-stage MSPs sounds like this: “Nate, digital marketing feels expensive, slow, and confusing. What else can I do right now?” And honestly, it’s a fair question. SEO takes time. Ads take...
Cybersecurity Threat Advisory: Critical RCE Flaw in BeyondTrust
A critical pre-authentication remote code execution (RCE) vulnerability has been identified in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA). If left unpatched, it may result in full system compromise, data loss, or service disruption. Review this Cybersecurity Threat...
Welcome to ‘Ranswomare 2.0’
Ransomware attacks have evolved from simple encryption schemes into sophisticated extortion operations that render traditional defenses obsolete. In recent years, data exfiltration has occurred in 87 percent of ransomware incidents, according to the 2024 Verizon Data Breach Investigations Report, while...
Cybersecurity Threat Advisory: Supply chain attack impacting Notepad++
Last updated on February 9, 2026 with how Barracuda is helping partners and customers. A supply‑chain compromise affecting Notepad++’s official update infrastructure allowed threat actors to redirect some users to attacker‑controlled downloads, potentially leading to malware delivery and code execution...
Email Threat Radar — January 2026
From QR code deception to callback phishing and more: An overview of emerging email threats and attack trends Over the last month, Barracuda threat analysts have investigated the following email threats targeting organizations and their employees: Tycoon phishing kit using QR codes...
Tech Time Warp: The unifying nature of Unix time
As this Tech Time Warp is being written, the current Unix epoch time is 1770344462. That means one billion, seven hundred seventy million, three hundred forty-four thousand, four hundred sixty-two seconds have passed since midnight GMT Jan. 1, 1970 (not...
Cybersecurity Threat Advisory: Compromised OpenVSX delivering GlassWorm malware
A new GlassWorm malware campaign is targeting macOS developer systems through compromised OpenVSX extensions. Continue reading this Cybersecurity Threat Advisory to learn more about this threat and how to protect your environment. What is the threat? A threat actor gained...
