Category: Featured
Cybersecurity Awareness Month is an opportunity to recommit to training
The core of Cybersecurity Awareness Month is in its name: Awareness. Experts agree that user training is the most effective and cost-efficient way to raise awareness and deter cyberattacks. Key statistics from SANS Institute’s 2024 annual cybersecurity awareness report reinforce this...
Tech Time Warp: A seriously cautionary tale of spear phishing
One of the major messages of the #SecureOurWorld Cybersecurity Awareness Month is for computer users to educate themselves on how to recognize and reporting phishing schemes. One of the most insidious forms is spear phishing, which uses social engineering to...
Cybersecurity Threat Advisory: Windows Kernel vulnerability used in espionage campaign
Researchers have observed the well-known cyber espionage group OilRig exploiting a now-patched privilege escalation vulnerability (CVE-2024-30088) in the Windows Kernel to conduct espionage operations. Read this Cybersecurity Threat Advisory to learn more about the espionage campaign and how to avoid...
Cybersecurity Threat Advisory: Mozilla Firefox zero-day vulnerability
A Mozilla Firefox critical zero-day vulnerability, CVE-2024-9680, has emerged. This vulnerability allows an attacker to have unauthorized access and potential remote code execution on the affected OS. Continue reading this Cybersecurity Threat Advisory for recommendations to remediate this threat. What...
Cybersecurity Threat Advisory: Critical Ivanti CSA flaw actively exploited
Three Ivanti Cloud Service Appliance (CSA) vulnerabilities are being exploited and weaponized in the wild. Read this Cybersecurity Threat Advisory to learn how you can mitigate your risk of being targeted. What is the threat? The Ivanti CSA vulnerabilities, catalogued...
Survey reveals cloud trends opening opportunities for MSPs
A survey of 962 IT decision makers conducted by CDW suggests organizations rely on a mix of internal and external expertise to manage cloud services. 88 percent said they can effectively manage their cloud environments, with 50 percent noting they...
Cybersecurity Threat Advisory: ‘Salt Typhoon’ causing damage in North America
Salt Typhoon, a highly sophisticated Chinese hacking group, has breached significant sectors in North America and Southeast Asia. Continue reading this Cybersecurity Threat Advisory to learn more about this notorious group and how to prevent your organization to become the...
Cybersecurity Threat Advisory: New critical vulnerability in Palo Alto Expedition
A vulnerability identified as CVE-2024-5910, has been disclosed by Palo Alto. With a CVSS score of 9.3, this vulnerability can lead to authentication bypass, enabling attackers to manipulate network configurations and launch further attacks. Read this Cybersecurity Threat Advisory for...
Cybersecurity Threat Advisory: Critical Fortinet RCE vulnerability exploited
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a remote code execution (RCE) vulnerability being actively exploited in Fortinet products. If you are using Fortinet, please read this Cybersecurity Threat Advisory to learn how to...
Tech Time Warp: Cybersecurity’s evolving role in homeland security
Although Cybersecurity Awareness Month has been observed in some fashion for more than 20 years, the federal agency leading the effort to #SecureOurWorld has only existed since late 2018. Let’s dive into this week’s Tech Time Warp. The origin story...
