Category: Security
Cybersecurity Threat Advisory: Wazuh servers targeted to launch Mirai attacks
Threat actors are actively targeting Wazuh servers running software version 4.4.0 by exploiting a vulnerability that enables them to install Mirai botnets. These botnets facilitate distributed denial of service (DDoS) attacks against victims and execute malicious payloads on the compromised...
Cybersecurity Threat Advisory: Critical Fortinet vulnerability exploited by Qilin ransomware
The Qilin ransomware group is exploiting two critical Fortinet vulnerabilities that allow attackers to bypass authentication and execute remote code on vulnerable systems. Read this Cybersecurity Threat Advisory to discover the tactics used and the best practices you can implement...
Email scams: A year-round challenge for businesses of all sizes
In today’s rapidly changing digital landscape, businesses and consumers face a constant stream of cyberthreats – not just during peak periods like tax season, back-to-school, and holiday shopping, but all year. In fact, according to Barracuda’s 2025 Email Threats Report,...
Cybersecurity Threat Advisory: Critical Cisco ISE vulnerability
The Cisco Identity Services Engine (ISE) has a critical vulnerability, CVE-2025-20286, with a CVSS score of 9.9 out of 10. If successfully exploited, threat actors can gain privileged access without authentication and perform unauthorized operations on vulnerable systems. Read this...
Cybersecurity Threat Advisory: Google Chrome zero-day vulnerability
Google has issued a security update for Chrome desktop to address CVE-2025-5419, which has a CVSS score of 8.8. It is a critical zero-day flaw in the V8 JavaScript engine that is actively exploited by attackers. Continue to read this...
Cybersecurity Threat Advisory: Fortinet authentication bypass vulnerability
A critical vulnerability was identified in Fortinet’s FortiProxy, FortiSwitchManager, and FortiOS products. This vulnerability, CVE-2025-22252, enables an attacker who possess knowledge of an existing administrative account to bypass authentication and gain unauthorized access to the device as a valid administrator....
New global business research shows how security sprawl increases risk
International research for Barracuda shows that 65% of organizations believe they have too many security tools, and over half (53%) say their tools can’t be integrated. This lack of integration significantly weakens defenses, with 77% saying it hinders detection and...
AI and MSPs: Navigating the new cybersecurity frontier
Managed service providers (MSPs) have seen their portfolios expand significantly over the past decade, from primarily handling the nuts and bolts of systems to becoming frontline defenders in an increasingly complex digital threat landscape. However, there is a growing component...
Introducing the new BarracudaONE AI-powered cybersecurity platform
We are thrilled to introduce BarracudaONE, an artificial intelligence (AI)-powered cybersecurity platform that delivers integrated products accessible from a centralized dashboard. BarracudaONE maximizes protection and cyber resilience, and is easy to buy, deploy and use. BarracudaONE empowers IT teams, business leaders...
Cybersecurity Threat Advisory: ViciousTrap exploiting Cisco vulnerability
Researchers have identified a new threat actor, “ViciousTrap”, actively exploiting a well-known vulnerability (CVE-2023-20118) to compromise over 5,300 Cisco Edge devices. The attackers are exploiting this flaw to establish a global honeypot network, posing a significant risk to the affected...