Category: Security
Threat Spotlight: How bad bot traffic is changing
Once used primarily by search engines, bots now have a variety of uses — both good and bad. The good bots are primarily search engine crawlers and other similar bots used for aggregating or monitoring content. These bots obey the...
Cybersecurity Threat Advisory: Significant increase of cyber incidents
This Cybersecurity Threat Advisory sheds light on the recent global events between Israel and Hamas that have caused a surge in cyber incidents from hacker activists, also known as “hacktivists”. These attacks have been experienced on both sides of the...
Top 10 cybersecurity misconfigurations identified by CISA and NSA
The CISA and NSA jointly released a list of the top 10 cybersecurity misconfigurations recently. These misconfigurations often lead to breaches and incidents that should be remedied. The report’s executive summary concludes: “These most common misconfigurations illustrate a trend of...
Demand for managed cloud services continues to grow
The managed cloud services market is forecasted to reach $60.7 billion in revenue by 2027 after growing at a 12 percent compound annual rate. The bulk of those managed services are naturally going to be provided by the cloud service...
30 tips for Cybersecurity Awareness Month
In collaboration with the National Cybersecurity Alliance, the National Cybersecurity Division of the Department of Homeland Security has been recognizing National Cybersecurity Awareness Month every October since 2004. The goal is to educate individuals and businesses on cyber risks and...
Quishing: What you need to know about QR code email attacks
In today’s digital age, the use of technology continuously evolves to make our personal and professional lives more convenient. Quick Response (QR) code has been one such advancement. This two-dimensional barcode allows users to share website URLs and contact information...
Cybersecurity Threat Advisory: Atlassian zero-day vulnerability patch
Atlassian has recently announced a patch for a new zero-day vulnerability which allows for privilege escalation on affected versions of Confluence Data Center and Confluence Server. This Cybersecurity Threat Advisory explains the exploitation of this vulnerability, which could allow attackers...
Cybersecurity Awareness Month to-do list
This month marks the 20th annual Cybersecurity Awareness Month, a collaboration between government and industry to highlight the importance of cybersecurity. The past two decades have brought about rapid change. “It’s hard to believe that Cybersecurity Awareness Month has been...
Cybersecurity Threat Advisory: Update on libwebp vulnerability by Google
Google has identified a critical security vulnerability within the libwebp image library, which plays a crucial role in rendering WebP format images. This vulnerability, known as CVE-2023–5129, has been assigned the highest severity rating of 10.0 on the CVSS rating...
Cybersecurity Threat Advisory: Microsoft Sharepoint Server exploit
A proof-of-concept exploit code has surfaced on GitHub for a crucial authentication bypass vulnerability in Microsoft SharePoint Server. The exploit allows attackers to escalate privileges in Microsoft SharePoint Servers. Barracuda MSP recommends reviewing this Cybersecurity Threat Advisory in detail to...
