Category: Security
Cybersecurity Threat Advisory: Microsoft Windows zero-click RCE vulnerability
A critical Microsoft Windows Lightweight Directory Access Protocol (LDAP) vulnerability has been discovered, identified as CVE-2024-49112. The flaw has a CVSS severity score of 9.8, representing a major threat to enterprise networks. Continue reading this Cybersecurity Threat Advisory to learn...
Experts look ahead part 1: Cybersecurity in 2025
With the new year here, we thought we’d check with various experts to see if they could peer into their crystal balls and predict what 2025 might bring to the world of cybersecurity. Their insights and predictions paint a picture...
Cybersecurity Threat Advisory: PAN-OS critical vulnerability
A critical vulnerability, tracked as CVE-2024-3393 with a CVSS score of 8.7, has been identified in Palo Alto Networks’ PAN-OS software. This flaw allows unauthenticated attackers to send specially crafted packets that can reboot affected firewalls, leading to potential service...
Cybersecurity Threat Advisory: Critical Apache Struts 2 vulnerability
The Apache Software Foundation (ASF) has issued a security update to address a critical vulnerability in both end-of-life and current versions of Apache Struts 2. Under specific conditions, this vulnerability could lead to remote code execution (RCE). Review this Cybersecurity...
The top viewed Cybersecurity Threat Advisories in 2024
2024 was a standout year in cybersecurity. With over 130 Cybersecurity Threat Advisory issued, SmarterMSP.com reflects on the most viewed emerging threats by our audience. From targeted industry attacks to zero-click vulnerabilities and high CVSS flaws, here are the top...
Managed data infrastructure services gaining momentum
Data creation and storage are growing exponentially, and more organizations are turning to managed service providers (MSPs) to handle the infrastructure needed to process it. A survey of nearly 200 IT leaders conducted by DataStrike, a provider of managed IT...
Experts look back at 2024’s cybersecurity news
The year 2024 was full of cybersecurity news. It was a year of data breaches, ransomware, the rise of quantum computing, and much more. The only constant was change. As ransomware continued to wreak havoc, according to Security Intelligence, ransomware...
Cybersecurity Threat Advisory: Three critical Sophos firewall vulnerabilities
Sophos has disclosed three critical vulnerabilities in its firewall product that could allow remote unauthenticated attackers to perform structured query language (SQL) injection, execute arbitrary code, and gain privileged secure shell (SSH) access to affected devices. Review the details of...
Cybersecurity Threat Advisory: Adobe ColdFusion vulnerability
A vulnerability within Adobe ColdFusion could result in arbitrary system file reads and writes. Continue reading this Cybersecurity Threat Advisory to learn how to mitigate your risk. What is the threat? The vulnerability, tracked as CVE-2024-20767, was found within the...