Category: Featured

Email Threat Radar
Email Threat Radar – April 2025

Email Threat Radar – April 2025

In this edition of the Email Threat Radar, Barracuda threat analysts highlight several notable email-based threats identified over the past month. These threats were designed to evade detection and increase the chances of success, and they targeted organizations around the...

/ May 1, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Craft CMS exploited

Cybersecurity Threat Advisory: Craft CMS exploited

Threat actors have been actively exploiting two Craft CMS vulnerabilities, CVE-2025-32432 and CVE-2024-58136, to breach web servers and gain unauthorized access. Review the details in this Cybersecurity Threat Advisory to safeguard your devices. What is the threat? Threat actors are...

/ April 30, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: ScreenConnect vulnerability

Cybersecurity Threat Advisory: ScreenConnect vulnerability

Researchers have discovered a vulnerability in the ScreenConnect remote support software that upon a successful exploitation, can allow for remote execution on a targeted server. Continue reading this Cybersecurity Threat Advisory to learn how to keep your environment safe. What...

/ April 28, 2025
Tech Time Warp
Tech Time Warp: Beware of the nefarious floppy disk

Tech Time Warp: Beware of the nefarious floppy disk

Modern computer users are becoming increasingly aware of the potential cybersecurity risks associated with USB drives. (Whatever you do, don’t get curious about a USB drive you find on the ground!) In this edition of Tech Time Warp learn about how similar...

/ April 25, 2025
MSPs focus
Maximizing value: MSPs focus on IT cost optimization

Maximizing value: MSPs focus on IT cost optimization

In the coming weeks, IT organizations will be turning to managed service providers (MSPs) to help them optimize their existing investments during this period of uncertainty. Historically, when faced with economic challenges, IT organizations have focused on two key areas:...

/ April 24, 2025
SOC 2
SOC 2 made easy: A step-by-step guide for MSPs

SOC 2 made easy: A step-by-step guide for MSPs

As more businesses adopt cloud services and prioritize data security, SOC 2 compliance has become a rapidly growing baseline requirement for conducting business, particularly in industries such as technology, finance, and healthcare. Managed service providers (MSPs) are increasingly being asked...

/ April 23, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical SSL.com vulnerability

Cybersecurity Threat Advisory: Critical SSL.com vulnerability

A significant flaw has been identified in SSL.com’s Domain Control Validation (DCV) process, which poses a risk of issuing unauthorized SSL/TLS certificates. This vulnerability could expose trusted domains to impersonation, man-in-the-middle (MITM) attacks, and the interception of encrypted traffic. We recommend...

/ April 23, 2025
2025 trends
Cybersecurity 2025 trends: Key emerging threats

Cybersecurity 2025 trends: Key emerging threats

Welcome to part two of our deep dive into 2025’s cybersecurity landscape. As highlighted in part one of this blog, generative artificial intelligence (GenAI) and supply chain vulnerabilities are at the forefront of cyberthreats. We consulted with other industry experts...

/ April 22, 2025
MSPs AI
MSPs: AI is your answer to the $12 trillion cyberthreat

MSPs: AI is your answer to the $12 trillion cyberthreat

One of the most challenging aspects of cybersecurity readiness is establishing robust threat detection capabilities. Cyberattacks are constantly evolving, and criminals are now leveraging tools such as artificial intelligence (AI), third-party attack development tools, and in-depth research on their targets...

/ April 21, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical CentreStack and Triofox vulnerability

Cybersecurity Threat Advisory: Critical CentreStack and Triofox vulnerability

A critical security vulnerability, tracked as CVE-2025-30406, has been disclosed in Gladinet’s CentreStack and Triofox file-sharing platforms. According to reports, this flaw arises from the presence of hardcoded administrative credentials embedded in default software builds. Attackers can use these credentials...

/ April 19, 2025