Category: Security
Five steps to building a managed security services offering
The turn of the new decade has been eventful. The global pandemic, the shift to a remote workforce, and the ever-growing number of cyberthreats and cyberattacks has made cybersecurity top of mind for businesses of all sizes. Our Evolving Landscape...
Cybersecurity laws: What MSPs need to do
Cybersecurity isn’t just about firewalls and patching. Cybersecurity is also about education and legislation — often, these two go hand in hand. The legislative landscape is continuously evolving as more rules and regulations attempt to add guardrails and protections to...
Cybersecurity Threat Advisory: POS Malware Targeting Restaurants
Advisory Overview Cybersecurity researchers have discovered a modular backdoor known as ModPipe targeting point-of-sale (POS) systems in the hospitality sector. This malware can potentially allow unauthorized retrieval of payment information. SKOUT recommends maintaining updates and patches for all POS systems...
Cybersecurity Threat Advisory: Apple MacOS Big Sur Vulnerabilities
Advisory Overview Apple has deprecated its support for its Network Kernel Extensions (NKE) which are the services that supported local firewalls on previous Mac systems. This change has allowed macOS Big Sur and roughly 50 other applications in Apple’s app...
Tech Time Warp: Conficker, the Botnet that became too hot to handle
Conficker is a piece of malware we just can’t seem to quit. Despite first being identified in November 2008, some estimate that as of September 2020 there were still 150,000 Conficker detections a month, mostly in vastly populated Brazil and...
BEC attacks on the rise
In a year dominated by COVID, elections, and ransomware, there are plenty of cybersecurity experts looking to other emerging threats as we begin to wind down the year. “I think the biggest cybersecurity threat facing businesses today are user account...
Cybersecurity Threat Advisory: Second Patch Released for VMWare Vulnerability
Advisory Overview A previously discovered remote code execution vulnerability for VMware ESXi has received a second patch from VMware, which should now correctly stop exploitation of the OpenSLP service issue. If an attacker were to attempt to exploit an unpatched...
Domains impersonating news sites emerge as cybersecurity threat
SmarterMSP has highlighted the recent danger of malware and ransomware coming into email boxes tied to news of the day. An example might be an email appeal for funds related to post-election legal action or rebuilding after California’s wildfires. Other...
The cloud-breaching headlines keep piling up
The cloud has been victim to several high-profile breaches in recent weeks. The latest involves Pharmaceutical giant Pfizer, which suffered a significant breach of unsecured cloud data. According to Security Boulevard: The exposed data, including email addresses, home addresses, full...
Seven key ways to defend a network from fatal DDoS attacks
Distributed Denial of Service Attacks (DDoS) are much different than what they used to be. In the past, DDoS attacks involved sending as much traffic and data as possible to a network or server, with the idea of overwhelming it...
