Category: Security
Barracuda Networks and Apache Log4j vulnerability
The Log4j vulnerability has recently made headlines around the world. Concerns around this vulnerability center on the fact that an attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message...
Tech Time Warp: Linux.Darlloz attacks the Internet of Things
What’s on your holiday shopping list this year? Fitness trackers? Smart home hubs? Maybe even a smart coffee mug? No matter how enchanting or convenient a smart device might seem, it never pays to be uninformed about the security risk...
Cybersecurity Threat Advisory: Surge in Attacks Against WordPress Sites
Threat Update WordFence, a WordPress security platform, stated that they have blocked 13.7 million attacks against WordPress sites in the span of 36 hours. The number of attacks reflects a dramatic increase in activity from threat actors, originating from 16,000...
Cybersecurity Threat Advisory: Critical Java Zero-Day Vulnerability
A critical remote code vulnerability has emerged in Log4j, a Java Logging package that is used in a number of software products and platforms from organizations like Apache, Apple, Twitter, Tesla and Steam. This vulnerability impacts almost every Java application...
Cybersecurity Threat Advisory: SonicWall Patches Critical Vulnerabilities in VPN Appliances
Threat Update SonicWall, a widely-used network security company, has released patches to address several critical vulnerabilities within their SMA 100 Series VPN appliances. These vulnerabilities could allow attackers to execute arbitrary code, modify/delete files, bypass firewall rules, and even gain...
‘Tis the Season: Four Cybersecurity Predictions for MSPs
Cybersecurity is like ice cream or fashion, flavors and fads come and go, but the basics remain the same. 2021 brought a wave of ransomware and a realization that remote work is likely here to stay. Smarter MSP recently chatted...
Cybersecurity Threat Advisory: Cyber Threats Targeting Consumers During Holiday Season
The holiday season is once again upon us, and with it comes the busiest time of the year for shopping and traveling. Specifically, from late November to early January of the new year is a time where attackers will be...
Tech Time Warp: The Marconi Wireless Hack of 1903
Technology history is filled with the stories of ethical hackers, as well as the intellectually curious seeking to prove a point. (See the stories of punch card expert René Carmille and the British journalists who hacked into Prince Philip’s inbox.)...
Cybersecurity Threat Advisory: Threat Actors Exploiting Microsoft Exchange Vulnerabilities
Threat Update In March 2021, Microsoft disclosed vulnerabilities existing within Microsoft Exchange versions 2010, 2013, 2016 and 2019. They are tracked as five different CVEs, which are listed below. Although these vulnerabilities were disclosed back in March, our Security Operations...
Will 2022 be the year of AI in cybersecurity?
A lot of the hype around AI has diminished over the past year as companies struggled to manage their increasingly remote workforces during the pandemic. AI didn’t go away in 2021; it just didn’t grab headlines like the splashy and...
