Category: Security
Insider threats expected to persist in 2025
SmarterMSP.com recently covered the topic of insider threats, but many experts continue to point to these types of threats as one of the biggest cybersecurity challenges impacting organizations in 2025. The Hacker News, for instance, says: Insider threats are expected...
Cybersecurity Threat Advisory: Active exploitation of Ivanti’s Connect Secure VPN
A critical Ivanti Connect Secure VPN vulnerability, identified as CVE-2025-0282, was disclosed. Threat actors are actively exploiting it in the wild, primarily targeting organizations relying on Ivanti’s Zero Trust Access (ZTA) solutions. Review this Cybersecurity Threat Advisory to see how...
Cybersecurity Threat Advisory: Critical vulnerabilities in SonicWall
SonicWall disclosed three critical vulnerabilities affecting the SonicOS firmware. These flaws include an authentication bypass affecting the SSL VPN and SSH management interfaces, which can enable attackers unauthorized access upon successful exploitation. Continue reading this Cybersecurity Threat Advisory for more...
AI-powered email security: How AI enhances integrated cloud email security
Barracuda recently launched new email protection plans that enable customers to fully defend their email environments with security tailored to their specific needs. Our first post in this series defined and explained the components necessary to defend against modern threats. In this post,...
Experts look ahead part 2: Cybersecurity in 2025
Last week, we consulted several cybersecurity experts to gain insights into potential threats that may emerge in 2025. Given the variety of opinions and expertise available, we decided to reach out again this week and compiled an equally diverse and...
Cybersecurity Threat Advisory: Microsoft Windows zero-click RCE vulnerability
A critical Microsoft Windows Lightweight Directory Access Protocol (LDAP) vulnerability has been discovered, identified as CVE-2024-49112. The flaw has a CVSS severity score of 9.8, representing a major threat to enterprise networks. Continue reading this Cybersecurity Threat Advisory to learn...
Experts look ahead part 1: Cybersecurity in 2025
With the new year here, we thought we’d check with various experts to see if they could peer into their crystal balls and predict what 2025 might bring to the world of cybersecurity. Their insights and predictions paint a picture...
Cybersecurity Threat Advisory: PAN-OS critical vulnerability
A critical vulnerability, tracked as CVE-2024-3393 with a CVSS score of 8.7, has been identified in Palo Alto Networks’ PAN-OS software. This flaw allows unauthenticated attackers to send specially crafted packets that can reboot affected firewalls, leading to potential service...
Cybersecurity Threat Advisory: Critical Apache Struts 2 vulnerability
The Apache Software Foundation (ASF) has issued a security update to address a critical vulnerability in both end-of-life and current versions of Apache Struts 2. Under specific conditions, this vulnerability could lead to remote code execution (RCE). Review this Cybersecurity...
The top viewed Cybersecurity Threat Advisories in 2024
2024 was a standout year in cybersecurity. With over 130 Cybersecurity Threat Advisory issued, SmarterMSP.com reflects on the most viewed emerging threats by our audience. From targeted industry attacks to zero-click vulnerabilities and high CVSS flaws, here are the top...
