Category: Security
Cybersecurity Threat Advisory: Windows CryptoAPI Spoofing Vulnerability
Advisory Overview Multiple versions of Windows are susceptible to a spoofing vulnerability that could allow an attacker to modify TLS-encrypted communications or spoof an Authenticode signature. Microsoft has issued an update to fix the vulnerability which is available in the...
A threat to watch in 2020
Each year brings new threats, evolutions of old ones, and the typical arms-race between the good guys and the bad guys. One of the virtual battlefields expected to be active this year based on end-of-2019 trends: online advertising.
Identity access management emerges as major opportunity for MSPs in 2020
Managed service providers (MSPs) are keeping an eye out for any opportunity to expand the portfolio of services they offer. The challenge is determining what pain point affects a broad enough range of customers to financially sustain a practice. At...
Cybersecurity Threat Advisory: Rise in Malicious Cyber Activity by Iranian Regime Actors
Advisory Overview There has been a rise in recent malicious cyber activity directed at United States industries and government agencies by Iranian regime actors and proxies, according to the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA)...
2020 brings mounting pressure to MSPs’ defense against social engineering
In 2020, attackers using social engineering techniques to deliver payloads of malware will continue to adopt mainstream business practices – becoming as professional in their operations as the organizations they attack. In turn, businesses are seeking to become harder targets...
Cybersecurity Threat Advisory: LifeLabs Cyberattack & Data Breach
Advisory Overview During October 2019 LifeLabs experienced a large-scale ransomware incident where attackers potentially gained access to various pieces of personal information for up to 15 million customers primarily within the British Columbia & Ontario areas of Canada. LifeLabs reportedly...
MSPs need to get business leaders more involved in cybersecurity decisions
Managed service providers (MSPs) have been benefiting from increased spending on security software and services throughout the past year. However, while industry analysts report that spending on security has, on average, increased by 9 percent on a year-over-year basis, a...
Cybersecurity opportunities for MSPs in 2020
Buckle up because 2020 promises to be quite a ride for MSPs that offer cybersecurity services. The MSP Expo, the annual gathering of stakeholders from across the spectrum, has declared that “2020 will be the year of MSP cybersecurity.” We...
Cybersecurity Threat Advisory: Vulnerability in Two Citrix Devices (Updated Jan 30th 2020)
Update Threat actors are now exploiting this vulnerability to deploy ransomware on customers networks. Citrix has provided a patch for this vulnerability and SKOUT has seen successful exploitation of the vulnerability. Patching is not enough, researchers have found that threat...
Report: Defending against business email compromise attacks
Business email compromise (BEC) attacks pack quite a punch, despite making up a comparatively small percentage of overall number of spear phishing attacks. According to a recent report from FBI’s Internet Crime Complaint Center, complaints filed between June 2016 and July...
