Doris Au

All posts by Doris Au

Doris is a product marketing manager at Barracuda. In this position, she is responsible for connecting managed service providers with multi-layered security and data protection products that can protect their customers from today’s advanced cyber threats.

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Two Zero-Day Bugs in Zoom Clients and MMR Servers

Cybersecurity Threat Advisory: Two Zero-Day Bugs in Zoom Clients and MMR Servers

Threat Update Recently, security researchers have reported an in-depth analysis of two zero-day vulnerabilities in the video calling service Zoom’s clients and Multimedia Router (MMR) servers. These vulnerabilities could allow attackers to execute arbitrary code, crash your service and application,...

/ February 7, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: WordPress Themes and Plugins Injected with Backdoor

Cybersecurity Threat Advisory: WordPress Themes and Plugins Injected with Backdoor

Threat Update AccessPress, a popular WordPress theme and plugin provider, was compromised in early September 2021 and several of their themes and plugins were injected with a backdoor. This gave the attackers full access to websites that installed these plugins....

/ February 3, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: VMWare Horizon Server Log4j Vulnerabilities

Cybersecurity Threat Advisory: VMWare Horizon Server Log4j Vulnerabilities

Threat Update VMware is a virtualization and cloud computing vendor used by many companies worldwide. Recently, VMware announced that they released an update that patches a vulnerability related to the Log4j shell flaw within its Horizon Servers. Successful exploitation of...

/ January 28, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: New SysJoker Malware Targets Windows, Linux, and macOS

Cybersecurity Threat Advisory: New SysJoker Malware Targets Windows, Linux, and macOS

Threat Update SysJoker, a new multi-platform backdoor that attacks Windows, Mac, and Linux operating systems was discovered in December 2021 and has been used to target a leading educational institution amongst other undisclosed organizations. The Linux and Mac versions of...

/ January 19, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Microsoft Releases Emergency Updates for Issues with Windows

Cybersecurity Threat Advisory: Microsoft Releases Emergency Updates for Issues with Windows

Threat Update In response to critical bugs in its Patch Tuesday release for January 2022, Microsoft has released several out-of-band (OOB) updates to their Windows Server updates. After initially pulling these updates for further review on January 13, Microsoft made...

/ January 18, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: “Karakurt” Threat Group Exfiltrating Data for Extortion

Cybersecurity Threat Advisory: “Karakurt” Threat Group Exfiltrating Data for Extortion

Threat Update A recently discovered threat group called “Karakurt” has compromised several small and medium-sized organizations by deploying ransomware dedicated to exfiltrating their sensitive data and extorting them for money with threats to publicly release said data. The “Karakurt” ransomware...

/ January 14, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Google Releases First Patches for 37 Chrome Vulnerabilities

Cybersecurity Threat Advisory: Google Releases First Patches for 37 Chrome Vulnerabilities

Threat Update In response to a critical use-after-free vulnerability and 36 more potential exploits, Google has released a series of updates to its Internet browser, Chrome. Barracuda MSP recommends that you update your browsers immediately to prevent cyber criminals from...

/ January 10, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: VMware Patches Bug Affecting ESXi, Workstation and Fusion

Cybersecurity Threat Advisory: VMware Patches Bug Affecting ESXi, Workstation and Fusion

Threat Update VMWare has released patches and workarounds for various products (including ESXi 6.5, 6.7 and 7, Fusion 12.x, Workstation 16.x, and VMware Cloud Foundation) to address a key security vulnerability that could be exploited by threat actors to gain...

/ January 10, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Continued Log4j Scanning Activity

Cybersecurity Threat Advisory: Continued Log4j Scanning Activity

Threat Update In recent weeks, Microsoft has observed continued attempts by nation-state adversaries and commodity attackers to exploit security vulnerabilities uncovered in the Log4j open-source logging framework. Barracuda MSP’s Security Operation Center (SOC) is also observing scanning activity and exploit...

/ January 7, 2022
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Microsoft Patch Tuesday, December 2021

Cybersecurity Threat Advisory: Microsoft Patch Tuesday, December 2021

Threat Update Microsoft’s Patch Tuesday release for December 2021 comes with a Windows update that will apply patches for 67 different vulnerabilities. This update includes fixes for 7 critical vulnerabilities, and included fixes that prevented Denial of Service, Remote Code...

/ December 20, 2021