Category: Security
Cybersecurity Threat Advisory: Dell RecoverPoint for Virtual Machines zero-day
Security researchers from Google Mandiant and the Google Threat Intelligence Group (GTIG) have identified active exploitation of a maximum‑severity zero‑day vulnerability in Dell RecoverPoint for Virtual Machines (RP4VM) by a suspected China‑nexus threat cluster tracked as UNC6201. Read this Cybersecurity...
Cybersecurity Threat Advisory: Chrome zero‑day exploit
Google has released emergency security updates for Chrome to fix CVE‑2026‑2441, a high‑severity zero‑day vulnerability in the browser’s CSS engine that attackers are already exploiting. The flaw is a use‑after‑free memory issue that allows a malicious or compromised website to...
Small business, big risk: The message MSPs must share
Many small businesses still assume their size protects them. A seven‑person accounting firm might reason that they’re nothing like a giant such as PricewaterhouseCoopers—and therefore not worth a hacker’s time. But experts say this mindset is dangerously outdated. The myth...
The new face of phishing: Why traditional defenses are failing your customers in 2026
As we navigate the start of 2026, the cybersecurity landscape has reached a critical inflection point. For managed services providers (MSPs), the challenge is no longer just identifying “the bad guys;” it’s identifying the “perfectly simulated guys.” In 2025, phishing...
Cybersecurity Threat Advisory: ZeroDayRAT enables takeover on Android & iOS
A new commercial mobile spyware platform, ZeroDayRAT, is being promoted to cybercriminals on Telegram as a tool that provides full remote control of compromised Android and iOS devices. Researchers at mobile threat hunting company iVerify describe it as a “complete...
Cybersecurity Threat Advisory: Warlock (Storm-2603) exploits SmarterMail vulnerability
SmarterTools has confirmed that the Warlock ransomware group (Storm‑2603) breached its environment by exploiting an unpatched SmarterMail instance. Current intelligence indicates the same SmarterMail vulnerability is being actively used in the wild to gain initial access and deploy Warlock ransomware....
Cybersecurity Threat Advisory: Critical FortiClientEMS SQL injection vulnerability
An improper neutralization of special elements used in SQL commands in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized code or commands through specially crafted HTTP requests. This vulnerability, tracked as CVE‑2026‑21643 with a CVSS score of...
Cybersecurity Threat Advisory: Critical RCE Flaw in BeyondTrust
A critical pre-authentication remote code execution (RCE) vulnerability has been identified in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA). If left unpatched, it may result in full system compromise, data loss, or service disruption. Review this Cybersecurity Threat...
Welcome to ‘Ranswomare 2.0’
Ransomware attacks have evolved from simple encryption schemes into sophisticated extortion operations that render traditional defenses obsolete. In recent years, data exfiltration has occurred in 87 percent of ransomware incidents, according to the 2024 Verizon Data Breach Investigations Report, while...
Cybersecurity Threat Advisory: Supply chain attack impacting Notepad++
Last updated on February 9, 2026 with how Barracuda is helping partners and customers. A supply‑chain compromise affecting Notepad++’s official update infrastructure allowed threat actors to redirect some users to attacker‑controlled downloads, potentially leading to malware delivery and code execution...
