Category: Featured
Cybersecurity Threat Advisory: Critical SSL.com vulnerability
A significant flaw has been identified in SSL.com’s Domain Control Validation (DCV) process, which poses a risk of issuing unauthorized SSL/TLS certificates. This vulnerability could expose trusted domains to impersonation, man-in-the-middle (MITM) attacks, and the interception of encrypted traffic. We recommend...
Cybersecurity 2025 trends: Key emerging threats
Welcome to part two of our deep dive into 2025’s cybersecurity landscape. As highlighted in part one of this blog, generative artificial intelligence (GenAI) and supply chain vulnerabilities are at the forefront of cyberthreats. We consulted with other industry experts...
MSPs: AI is your answer to the $12 trillion cyberthreat
One of the most challenging aspects of cybersecurity readiness is establishing robust threat detection capabilities. Cyberattacks are constantly evolving, and criminals are now leveraging tools such as artificial intelligence (AI), third-party attack development tools, and in-depth research on their targets...
Cybersecurity Threat Advisory: Critical CentreStack and Triofox vulnerability
A critical security vulnerability, tracked as CVE-2025-30406, has been disclosed in Gladinet’s CentreStack and Triofox file-sharing platforms. According to reports, this flaw arises from the presence of hardcoded administrative credentials embedded in default software builds. Attackers can use these credentials...
Cybersecurity Threat Advisory: Windows zero-day vulnerability actively exploited
A newly discovered Windows zero-day vulnerability, CVE-2025-29824, is actively exploited by a targeted ransomware campaign involving the PipeMagic trojan. Continue reading this Cybersecurity Threat Advisory to limit the impact of this vulnerability. What is the threat? CVE-2025-29824 is critical flaw...
Tech Time Warp: The women who powered Bletchley Park
Historians and the public widely recognize the contributions of the men at Bletchley Park, especially Alan Turing, who cracked the Germans’ Enigma Code. (So, too, is the tragic end to Turing’s life.) But a sizable female workforce made Bletchley Park’s...
MSPs: Building resilience in the midst of uncertainty
Regardless of how business and IT leaders view tariffs as economic policy, one certainty is that nearly every organization, including managed service providers (MSPs), will be affected. Many MSPs and the organizations employing them are already scrambling to purchase everything...
Cybersecurity Threat Advisory: Critical RCE flaw in Apache Roller blog server
Researchers have discovered a critical session management vulnerability within Apache Roller. It is being tracked as CVE-2025-24859 and has been assigned the maximum CVSS score of 10.0. Review the details in this Cybersecurity Threat Advisory to mitigate your risks. What...
Cybersecurity Threat Advisory: Critical Fortinet admin password change flaw
Fortinet has recently addressed a critical vulnerability in its FortiSwitch products, identified as CVE-2024-48887, with a CVSS score of 9.3. This “unverified password change” flaw allows remote, unauthenticated attackers to modify administrator passwords through specially crafted requests to the FortiSwitch...
Navigating AI: The do’s and don’ts for MSPs
There is a big problem when discussing artificial intelligence (AI) with a prospect or customer. With AI, and positioning AI, being a relatively new market with a broad coverage, navigating AI positioning without knowing a person’s level of knowledge can...
