Category: Featured
Top 10 cybersecurity misconfigurations identified by CISA and NSA
The CISA and NSA jointly released a list of the top 10 cybersecurity misconfigurations recently. These misconfigurations often lead to breaches and incidents that should be remedied. The report’s executive summary concludes: “These most common misconfigurations illustrate a trend of...
Demand for managed cloud services continues to grow
The managed cloud services market is forecasted to reach $60.7 billion in revenue by 2027 after growing at a 12 percent compound annual rate. The bulk of those managed services are naturally going to be provided by the cloud service...
Quishing: What you need to know about QR code email attacks
In today’s digital age, the use of technology continuously evolves to make our personal and professional lives more convenient. Quick Response (QR) code has been one such advancement. This two-dimensional barcode allows users to share website URLs and contact information...
Tech Time Warp: Cracking the code on password safety, at least for now
October 2023 marks the 20th anniversary of Cybersecurity Awareness Month. This National Cybersecurity Alliance-coordinated event is an excellent time to remind colleagues, friends, and family about the important of protecting yourself online. In this week’s Tech Time Warp will look...
Cybersecurity Threat Advisory: Atlassian zero-day vulnerability patch
Atlassian has recently announced a patch for a new zero-day vulnerability which allows for privilege escalation on affected versions of Confluence Data Center and Confluence Server. This Cybersecurity Threat Advisory explains the exploitation of this vulnerability, which could allow attackers...
Cybersecurity Threat Advisory: Update on libwebp vulnerability by Google
Google has identified a critical security vulnerability within the libwebp image library, which plays a crucial role in rendering WebP format images. This vulnerability, known as CVE-2023–5129, has been assigned the highest severity rating of 10.0 on the CVSS rating...
Cybersecurity Threat Advisory: Microsoft Sharepoint Server exploit
A proof-of-concept exploit code has surfaced on GitHub for a crucial authentication bypass vulnerability in Microsoft SharePoint Server. The exploit allows attackers to escalate privileges in Microsoft SharePoint Servers. Barracuda MSP recommends reviewing this Cybersecurity Threat Advisory in detail to...
The rising role of vCISO
Cybersecurity threats continue to rise, but the available IT talent pool is shrinking. In fact, studies show there is still a need for more than 3.4 million security professionals, which is an increase of more than 26 percent from 2021....
MSPs must place training bets carefully
There has always been a fine line between when an emerging IT platform creates enough demand for managed services and when it essentially becomes a commodity that most internal IT teams can manage on their own. Timing that transition is...
Cybersecurity Threat Advisory: New Cisco vulnerabilities discovered
Cisco is warning of five new Catalyst SD-WAN Manager product vulnerabilities. The most critical vulnerability allows unauthorized remote access to the server. Multiple vulnerabilities were discovered in SD-WAN Manager that allows an attacker to access the compromised instance or cause...
