Category: Security
Threat Spotlight: Phishing techniques to look out for in 2025
Over the last few months, Barracuda’s threat analysts have reported on several advanced phishing techniques implemented by attackers to evade security controls and make malicious emails look more convincing, legitimate, and personal. In this blog post, we look at how these and...
Essential components for cloud email security
Attacks are getting more sophisticated, and organizations need a fresh approach. The email threat landscape is evolving fast. From sophisticated phishing attacks to business email compromise (BEC) attacks, bad actors continually find new ways to outsmart existing defenses. For businesses...
Securing clients’ fleets: Unlocking new opportunities for MSPs
The market for cybersecurity services as it pertains to autonomous and non-autonomous vehicles is growing. According to Allied Market Research, the estimated industry size of cybersecurity for the autonomous vehicles market was valued at $356.0 million in 2023 and is...
Cybersecurity Threat Advisory: 7-Zip vulnerability
A security vulnerability in 7-Zip allows remote attackers to bypass defenses and execute malicious code via specially crafted archives. Read this Cybersecurity Threat Advisory to learn how to mitigate your risk from this new threat. What is the threat? The...
Cybersecurity Threat Advisory: RomCom exploits vulnerabilities
Recent reports have uncovered that a threat actor known as RomCom has been exploiting two zero-day vulnerabilities, one in Mozilla Firefox and another in Microsoft Windows, to deploy their proprietary backdoor malware. These vulnerabilities, CVE-2024-9680 and CVE-2024-49039, have been actively...
Cybersecurity Threat Advisory: WordPress plugin critical vulnerabilities
Two critical security flaws have been identified in a WordPress plugin—Anti-Spam by CleanTalk. This plugin is installed on more than 200,000 websites. Review this Cybersecurity Threat Advisory to learn how to mitigate your risks from these vulnerabilities. What is...
Behind the scenes with Barracuda at IT Nation Connect!
A few weeks ago, I had the opportunity to attend IT Nation Connect in Orlando Florida with the Barracuda team. Along with seeing all of the exciting things that the team had in store for the event, the team and...
Cyberthreat predictions for 2025 from Barracuda’s security frontline
Predicting the future isn’t easy, but you can anticipate what is likely to happen by looking at how things have evolved over the past year. This year again, Barracuda asked colleagues who work on the security frontlines about the things...
Cybersecurity Threat Advisory: Kemp LoadMaster and VMware vCenter vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added critical vulnerabilities in Progress Kemp LoadMaster (CVE-2024-1212) and VMware vCenter Server (CVE-2024-38812, CVE-2024-38813) to its Known Exploited Vulnerabilities (KEV) catalog. These vulnerabilities allow attackers to execute arbitrary commands, gain remote...
The SOC case files: Play ransomware targets manufacturing firm
Incident summary A U.S.-based manufacturing company was recently targeted by the Play ransomware group in the early hours of the morning. The attackers broke into an under-protected domain controller at 1:00 am. At 3:20 a.m. the gang attempted to execute...
