Category: Security

Beyond patches and firewalls: Advanced strategies for cyberthreat defense

Beyond patches and firewalls: Advanced strategies for cyberthreat defense

Threat mitigation is to managed service providers (MSPs) what preventative medicine is to doctors. In other words, threat mitigation is the first line – and often least expensive – defense against cybercriminals. Of course, some of the basic steps include...

/ November 4, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: New Microsoft Windows vulnerabilities

Cybersecurity Threat Advisory: New Microsoft Windows vulnerabilities

Two new Microsoft vulnerabilities, CVE-2024-21302 and CVE-2024-38202, are impacting Windows systems. Read this Cybersecurity Threat Advisory to learn more about how these vulnerabilities can be leveraged to exploit Microsoft Windows and how to protect your systems. What is the threat?...

/ November 4, 2024
impersonate OpenAI
Cybercriminals impersonate OpenAI in large-scale phishing attack

Cybercriminals impersonate OpenAI in large-scale phishing attack

Since the launch of ChatGPT, OpenAI has sparked significant interest among both businesses and cybercriminals. While companies are increasingly concerned about whether their existing cybersecurity measures can adequately defend against threats curated with generative AI tools, attackers are finding new...

/ October 31, 2024
XDR
How MSPs can improve threat detection and response with XDR

How MSPs can improve threat detection and response with XDR

According to a Barracuda report, 62 percent of IT professionals surveyed believe cyberattacks are becoming more sophisticated and complex. This concern is mainly because traditional security measures often fail to address multifaceted threats in today’s rapidly evolving cybersecurity landscape. Furthermore,...

/ October 29, 2024 / 4 Comments
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: SonicWall VPN vulnerability

Cybersecurity Threat Advisory: SonicWall VPN vulnerability

Fog and Akira ransomware operators are exploiting a critical SonicWall SSL VPN vulnerability, CVE-2024-40766, to breach corporate networks. Continue reading this Cybersecurity Threat Advisory to learn the tactics these groups are using and how you can reduce the risk of...

/ October 29, 2024
MSP Opportunity 5G
Unpacking the 5G IoT MSP opportunity

Unpacking the 5G IoT MSP opportunity

Internet of Things (IoT) security has been a hot topic among cybersecurity professionals for some time now. However, cybersecurity is a moving target. Once someone figures out and secures a vulnerability, cybercriminals quickly move on or change their approach. One...

/ October 28, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: VMware critical vulnerability

Cybersecurity Threat Advisory: VMware critical vulnerability

VMware has recently released software updates to address a security flaw believed to have already been patched in vCenter Server. The vulnerability, known as CVE-2024-38812 with a CVSS score of 9.8, is a heap-overflow vulnerability. Continue reading this Cybersecurity Threat...

/ October 26, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical security flaw in Styra’s OPA

Cybersecurity Threat Advisory: Critical security flaw in Styra’s OPA

A recent security vulnerability was found in Styra’s Open Policy Agent (OPA) that can lead to New Technology LAN Manager (NTLM) hashes exposure if exploited. Continue reading this Cybersecurity Threat Advisory to learn the implications of this flaw and the...

/ October 25, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: FortiManager API vulnerability exploited

Cybersecurity Threat Advisory: FortiManager API vulnerability exploited

Fortinet has publicly disclosed a vulnerability in the FortiManager API. The vulnerability, tracked as CVE-2024-47575 and dubbed ‘FortiJump,’ has been exploited as a zero-day since at least June 2024. Organizations using vulnerable FortiManager versions should review this Cybersecurity Threat Advisory...

/ October 25, 2024
Tips to help your customers master the art of online safety

Tips to help your customers master the art of online safety

Strong cybersecurity awareness should be a priority every day, but October serves as a great reminder for all of us to stay vigilant. The Cybersecurity and Infrastructure Security Alliance (CISA) recommends the following simple yet powerful tips to boost online...

/ October 24, 2024