Category: Security
Why DMARC is essential for email security
As advanced security solutions make it more challenging for traditional malware and other attacks to succeed, cybercriminals are increasingly turning to domain spoofing and artificial intelligence (AI) to create more sophisticated and convincing phishing attacks. Recently, the North Korean cybercrime...
How can MSPs ensure their own cybersecurity?
Managed service providers (MSPs) are at the leading edge of providing cybersecurity services. They provide and procure vital perimeter protections to most of their client as part of their service packages. However, MSPs are vulnerable to hacks, and if a...
Cybersecurity Threat Advisory: Severe Cisco ISE vulnerabilities
Two critical vulnerabilities have been identified in Cisco’s Identity Services Engine (ISE). These vulnerabilities can enable attackers to execute arbitrary commands with root privileges and bypass authorization mechanisms, potentially compromising the security and integrity of network access controls. Continue reading...
Cybersecurity Threat Advisory: Critical Azure vulnerabilities
Microsoft revealed two critical vulnerabilities in Microsoft Azure AI Face Service, a cloud-based facial recognition tool. They enable attackers to bypass authentication. Review the details within this Cybersecurity Threat Advisory to discover the key steps to safeguard your environment. What...
The SOC case files: XDR detects Akira ransomware exploiting a ‘ghost’ account
This edition of the SOC case files showcases how Barracuda Managed XDR detects a breach via a ‘ghost’ account and an unprotected server. The SOC is part of Barracuda Managed XDR, an extended visibility, detection, and response (XDR) service that...
Cybersecurity Threat Advisory: Microsoft SharePoint connector vulnerability
A critical security vulnerability was identified in Microsoft Power Platform’s SharePoint connector. The flaw allows attackers to harvest user credentials and perform unauthorized actions within the platform upon a successful exploitation. Continue reading this Cybersecurity Threat Advisory to learn how...
Cybersecurity Threat Advisory: MintsLoader campaign threat
A cyber campaign has been identified using the MintsLoader malware loader to deliver secondary payloads, such as the StealC information stealer and the legitimate open-source network computing platform, BOINC. This campaign has primarily targeted sectors such as electricity, oil and...
Cybersecurity Threat Advisory: Ransomware attacks on ESXi systems
New ransomware attacks were discovered targeting ESXi systems that use stealthy SSH tunnels to direct traffic to command-and-control (C2) infrastructure, enabling attackers to remain undetected. Continue reading this Cybersecurity Threat Advisory to discover the key steps to safeguard your environment....
Cybersecurity Threat Advisory: Apple iOS zero-day vulnerability
Apple has released critical security updates to address an actively exploited zero-day vulnerability, tracked as CVE-2025-24085. Continue reading this Cybersecurity Threat Advisory in full to learn what devices are affected and how you can mitigate your risk regarding this vulnerability....
Q&A: New Barracuda Email Protection advancements
We’re thrilled to announce exciting new advancements to Barracuda Email Protection. These updates — including flexible deployment options, enhanced security capabilities, and more — make it easier than ever for organizations of all sizes and IT environments to defend against increasingly...
