Cybersecurity Threat Advisory: Cisco Update to Global Intrusion Campaign
Advisory Overview Cisco has reported that internal machines were compromised within one of their lab environments as a result of the vulnerability found in SolarWinds Orion. There were approximately two dozen computers compromised internally, which have reportedly already been identified...
Cybersecurity Threat Advisory: Multiple Vulnerabilities in SolarWinds N-Central
Advisory Overview The Center for Internet Security has announced that multiple vulnerabilities have been discovered in SolarWinds N-Central. The SolarWinds N-Central vulnerabilities are not associated with the SolarWinds Orion security incident. SolarWinds has released patches for the vulnerabilities and all...
Cybersecurity Threat Advisory: Microsoft Update to Global Intrusion Campaign
Advisory Overview Microsoft has released additional information from their investigation into the SolarWinds Orion incident. Part of their investigation revealed that the threat actors execute multiple levels of privilege escalation and authentication theft after initial compromise through the Orion application....
Cybersecurity Threat Advisory: SolarWinds Orion Backdoor
Advisory Overview SolarWinds Orion, a prominent IT monitoring and management solution, has been compromised with a backdoor by a sophisticated state-sponsored threat actor. The application has been discovered communicating with unknown third-party servers through traffic deliberately designed to mimic normal...
Best RMM Vendor named by Channel Partner Insights
The year 2020 has brought many changes to how businesses operate. MSPs had to adapt quickly, modifying their service delivery methods to continue effectively serving and securing their customers. An MSP’s RMM tool can play a critical role in how...
Cybersecurity Threat Advisory: FireEye Breach
Advisory Overview FireEye, a major cybersecurity organization, has reported a compromise that resulted in the theft of their suite of Red Team tools. While these tools do not contain any zero-day vulnerabilities, only widely known and documented methods, the theft...
Cybersecurity Threat Advisory: Egregor Ransomware
Advisory Overview The Ransomware as a Service variant “Egregor” is spiking across the Cybersecurity and IT landscape after the shutdown of the notorious Maze ransomware campaign. Some major organizations have fallen victim to the malware including Kmart, Cencosud (a retail...
Five steps to building a managed security services offering
The turn of the new decade has been eventful. The global pandemic, the shift to a remote workforce, and the ever-growing number of cyberthreats and cyberattacks has made cybersecurity top of mind for businesses of all sizes. Our Evolving Landscape...
Cybersecurity Threat Advisory: POS Malware Targeting Restaurants
Advisory Overview Cybersecurity researchers have discovered a modular backdoor known as ModPipe targeting point-of-sale (POS) systems in the hospitality sector. This malware can potentially allow unauthorized retrieval of payment information. SKOUT recommends maintaining updates and patches for all POS systems...
Cybersecurity Threat Advisory: Apple MacOS Big Sur Vulnerabilities
Advisory Overview Apple has deprecated its support for its Network Kernel Extensions (NKE) which are the services that supported local firewalls on previous Mac systems. This change has allowed macOS Big Sur and roughly 50 other applications in Apple’s app...
