Category: Security
Cybersecurity Threat Advisory: Apache Tomcat vulnerability
A severe remote code execution (RCE) vulnerability in Apache Tomcat, identified as CVE-2025-24813, is actively exploited in the wild, allowing attackers to gain server control using a simple PUT request. Review the details in this Cybersecurity Threat Advisory to learn...
New MSP opportunity: Tapping into growing field of transportation cybersecurity
The transportation vertical is rapidly growing, yet it is often overlooked by managed service providers (MSPs). However, hackers have taken notice. From 2017 to 2022, transportation vertical experienced a 400 percent increase in cyberattacks, and the pace shows no sign...
Cybersecurity Threat Advisory: Critical authentication bypass in ruby-saml
CVE-2025-25292 and CVE-2025-25291 are related to an authentication bypass vulnerability found in ruby-saml due to parser differential handling. The flaws carry a high CVSS score of 8.8. The vulnerability exists in the way ReXML and Nokogiri parse XML differently. The...
Email Threat Radar – March 2025
Over the last month, Barracuda threat analysts identified several notable email-based threats targeting organizations around the world, including: Extortion attempts impersonating Clop ransomware New attacks by the evasive and highly adaptive LogoKit phishing platform A phishing campaign leveraging SVG image file attachments Attackers...
Cybersecurity Threat Advisory: EOL Juniper Networks MX routers targeted in attacks
Threat actor UNC3886 has been observed targeting end-of-life (EOL) MX routers from Juniper Networks as part of a sophisticated campaign designed to deploy custom backdoors. This group has demonstrated a particular focus on internal networking infrastructure, which allows them to...
Cybersecurity Threat Advisory: Moxa fixes severe authentication flaws
Moxa has issued a security advisory highlighting critical authorization vulnerabilities in several switch models, tracked as CVE-2024-12297, with a CVSS score of 9.2. Review the details of this Cybersecurity Threat Advisory to understand how to mitigate the impact of authentication...
Cybersecurity Threat Advisory: Vulnerability within TP-Link routers
A vulnerability that could lead to critical status, tracked as CVE-2023-1389, was identified in TP-Link Archer AX-21 routers. The Ballista botnet is currently exploiting this vulnerability, which can spread automatically across the web. Continue reading this Cybersecurity Threat Advisory to...
Proactive strategies for MSPs to tackle cross-border cyber risks
Cyber risks that begin in one place tend to spread worldwide. This means managed service providers (MSPs) must look beyond their clients’ cubicles to see what is going on in other parts of the world so they are not caught...
Medusa ransomware and its cybercrime ecosystem
Greek mythology says the Medusa was once a beautiful woman until Athena’s curse transformed her into a winged creature with a head full of snakes. Because of her power to petrify anyone who looked directly upon her face, she is...
The rise of AI PCs: A new endpoint MSPs will soon encounter
Managed service providers (MSPs) in the age of artificial intelligence (AI) will soon see a different type of endpoint, known as AI PCs, on the networks they manage. AI PCs simplify the process of building AI models and running inference...
