Category: Security
Cybersecurity Threat Advisory: Apache Struts2 RCE vulnerability
A new vulnerability known as CVE-2023-50164 is being used by attackers to exploit the file upload functionality in Apache Struts2, an open-source framework for developing Java web applications. Barracuda MSP advises users to review this Cybersecurity Threat Advisory and upgrade...
EDR vs. MDR vs. XDR: What’s best for your MSP practice?
Selecting a security platform that provides the right level of protection based on your customers’ needs and your IT team’s skillset is vital. A determined attacker can find a way in, whether it’s via stolen or brute-forced credentials, exploiting unpatched...
The cloud migration opportunity still exists for MSPs
A survey of 510 senior executives from Global 2000 organizations suggests that cloud migration initiatives have stalled at the intermediate stages of the project due to concerns around cost, lock-in, meeting budgets, and timeline constraints. Conducted by HFS Research on...
Email security and XDR are critical to strengthen your cyber defense
Email is an integral part of our daily communication. With countless emails being sent and received daily, it has become an essential fabric of the day-to-day business activities that most of us take for granted. The widespread use of email...
Cybersecurity Threat Advisory: Google OAuth MultiLogin exploit
In October of 2023, an exploit was revealed by the threat actor PRISMA. This exploit generated persistent Google cookies through token manipulation. Now, attackers are exploiting a Google OAuth endpoint known as “MultiLogin” to restore expired authentication cookies. This allows...
Beyond the horizon: Growth of cyberattacks in the 2010s
As part of our 5-part series on the evolution of cybersecurity, check out our fourth article below that covers IoT devices and vulnerabilities to Bitcoin-driven ransomware in the 2010s. During the 2000s, we saw the growing arms race between security...
Cybersecurity Threat Advisory: A look back at 2023
2023 was an eventful year for our Cybersecurity Threat Advisory series. We highlighted several vulnerabilities exploited in the wild, multiple ransomware groups striking against notable establishments (including targeting MSPs), and an increase in cyber hacktivism due to world events. Below...
Year in review: 2023’s top cybersecurity headlines
This year kept cybersecurity specialists busy and often staying up late. There were plenty of headlines and news stories that cybersecurity experts consider the most consequential of 2023. From significant ransomware attacks, AI-infused malware, state-sponsored mischief, evolving threats, and a...
2024 MSP opportunity: Helping establish AI building-blocks
Just about every organization will be experimenting with artificial intelligence (AI) in the coming year. Many of them will quickly discover that operationalizing AI will require them to get their data management house in order. After all, no matter how...
Five powerful security tips for keeping data secure this Christmas
Keeping your data safe over Christmas is as important as ever. We’ll assume you’ve already done this for your business, but what about your household? That’s why we’ve pulled together a selection of seasonal security tips for you to keep...
