Cybersecurity Threat Advisory: Cyber Threats Affecting U.S.A Presidential Election
Advisory Overview With the United States Presidential Election coming up, cyber-criminal and hacktivist activity has grown. Recent phishing and disinformation campaigns may pose a threat to the election’s validity on a large scale, as well as voter personal identifiable information...
Cybersecurity Threat Advisory: Universal Health Services Infected with Ryuk Ransomware
Advisory Overview Earlier this week, Universal Health Services (UHS) suffered a ransomware attack that took down data networks at multiple facilities across the United States, wherein systems were crippled, antivirus software was maliciously disabled, many patients had to be relocated,...
Cybersecurity Threat Advisory: Increased Attack Activity of Trickbot Variant
Advisory Overview The SKOUT Security Operations Center has recently observed an uptick in attack activity involving an emerging Trickbot variant known as Bazar Backdoor. Trickbot is a banking trojan and information stealer that has evolved over the years to fill...
Cybersecurity Threat Advisory: Zerologon Attack Targeting Windows Servers
Advisory Overview A critical vulnerability has been discovered which affects potentially all Windows domain controllers and can allow an unauthenticated attacker on the network to take control of an Active Directory domain controller at will. This can allow the attacker...
Cybersecurity Threat Advisory: Microsoft’s Patch Critical RCE Flaws
Advisory Overview Several Remote Code Execution (RCE) security flaws were announced in Microsoft’s patch Tuesday; 129 security bugs to be exact. As remote work increases, the need for RCE security increases and at an overwhelming rate. A strong mitigation tactic...
Cybersecurity Threat Advisory: Palo Alto Buffer Overflow Vulnerability (CVE-2020-2040)
Advisory Overview Palo Alto has released a patch for a buffer overflow remote code execution (RCE) vulnerability for their PAN-OS 8.1, 9.0, and 9.1 versions. The vulnerability can allow threat actors to bypass Multi-Factor Authentication (MFA) and execute potentially malicious...
Introducing Managed Workplace 12 SP2
Barracuda MSP is excited to introduce the latest release of its security-centric RMM tool, Managed Workplace. The release of Managed Workplace 12 SP2 highlights Barracuda MSP’s continual effort to innovate and to provide an easy-to-use, easy-to-manage cybersecurity ecosystem for our...
Cybersecurity Threat Advisory: (DVMRP) Vulnerability Found in Cisco IOS XR
Advisory Overview A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust process memory of an affected device. A successful exploit by such an attacker could...
Cybersecurity Threat Advisory WordPress File Manager Plugin Vulnerability
Advisory Overview A vulnerability has been discovered in a the popular “File Manager” plugin for the content management system WordPress that can allow an unauthenticated remote attacker to create/move a potentially malicious file on a vulnerable host. This can allow...
Cybersecurity Threat Advisory: Major Vishing Campaign
Advisory Overview The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have recently issued a warning about the growing threat of “vishing” attacks against companies. Vishing (voice phishing) is a social engineering method that uses...
