Category: Security
What MSPs should know in the age of AI
Employees aren’t waiting for IT’s permission to use AI. They’re connecting ChatGPT plugins, Grammarly, Notion AI, and dozens of other tools directly to work accounts. In many cases, they are uploading sensitive company data to third-party servers that nobody in...
Cybersecurity Threat Advisory: PAN-OS GlobalProtect exploit
Palo Alto Networks has confirmed that attackers are actively exploiting a security flaw in PAN-OS GlobalProtect, tracked as CVE-2026-0257 with a CVSS score of 7.8. The vulnerability affects both on-premises firewalls and Prisma Access. Review the Cybersecurity Threat Advisory for...
Cybersecurity Threat Advisory: NinjaOne RMM phishing campaign
A recent phishing campaign is using a legitimate remote access tool to take over victims’ computers, all without deploying malware. This active operation currently targets Brazilian organizations. Attackers trick employees into installing a legitimate software agent that hands over remote...
AI-driven zero-day threats are reshaping MSP patch management
As artificial intelligence (AI) models become more adept at discovering zero-day vulnerabilities—and generating malware to exploit them—organizations will increasingly turn to managed service providers (MSPs) to accelerate patching as part of a broader effort to strengthen application security. AI models...
Cybersecurity Threat Advisory: Fortinet credential exposure
Security researchers have reported a large-scale “FortiBleed” compromise involving exposed Fortinet/FortiGate firewall and VPN credentials. The incident could affect tens of thousands of devices worldwide. Review the Cybersecurity Threat Advisory now to protect your clients’ systems. What is the threat?...
MSPs: It’s time to rethink email security in the age of AI
The age of AI is fundamentally reshaping how MSPs deliver email security. AI-driven attacks are more sophisticated, accessible, and scalable than ever before, forcing a shift from traditional, point-in-time filtering to continuous monitoring and rapid response. Email security is no...
Cybersecurity Threat Advisory: Microsoft Teams TURN relay exploit
Threat actors are using a custom backdoor to route their command-and-control (C2) traffic through Microsoft Teams’ TURN relay infrastructure. This technique blends malicious traffic with legitimate Teams communications. As a result, attackers can bypass traditional network defenses, maintain covert access...
The hidden data risks of MSP acquisitions
MSP consolidation is accelerating, yet most clients treat an acquisition as a routine business update—a new logo on invoices or a new account manager. In reality, far more is changing behind the scenes than branded T-shirts and welcome kits. In...
Cybersecurity Threat Advisory: Check Point VPN authentication bypass vulnerability exploited
CISA has issued an emergency directive requiring U.S. federal agencies to secure Check Point Remote Access VPN, Mobile Access, and Spark firewall deployments following active exploitation of a critical zero-day vulnerability (CVE-2026-50751). Continue reading this Cybersecurity Threat Advisory to learn...
Password managers: Your greatest defense or biggest weakness?
Passwords remain a cybersecurity mainstay, surviving despite years of predictions about their demise. Even with constant warnings from security professionals, users still rely on weak choices—like a dog’s name or home address. So, what is an MSP to do? For...
