Category: Security
Beware as COVID-19 is bringing out spammers and scammers
I was going through one of my email accounts the other day and I noticed a bunch of 1990s-style spam emails. There was the promise of sharing some uncollected inheritance with me from some deceased African royalty if I only...
Cybersecurity Threat Advisory: Microsoft Teams Account Takeover Vulnerability
Advisory Overview Unpatched versions of Microsoft Teams are potentially vulnerable to an account takeover attack using GIF files or links. SKOUT advises updating Microsoft teams to the latest version. In addition, organizations should review access control, phishing training, and social...
Cyber-campus during COVID-19
We all know that most office workers have spent the past two months working from home trying to carve out a secure work environment with pets, kids, and spouses coming and going. Zoom meetings are conducted from closets and kitchen...
Cybersecurity Threat Advisory: Office 365 Security Recommendations from CISA
Advisory Overview The United States Cybersecurity and Infrastructure Security Agency (CISA) released an alert detailing possible security risks in Office 365 and ways to mitigate them. CISA mentions that security risks may be amplified due to the rapid movement to...
Ask an MSP Expert: How do we protect our healthcare clients’ data?
Q: We have a growing number of healthcare clients. Maintaining their security used to be not that much different from our other customers, but with the explosion of IoT, there are so many more threats that they are susceptible to....
Cybersecurity Threat Advisory: Sophos Firewall Zero-Day (CVE-2020-12271)
Advisory Overview Unpatched versions of Sophos XG Firewalls are potentially vulnerable to SQL Injection attacks. Sophos pushed out an automatic update, but some devices may need to be manually patched or rebooted for the changes to take effect. Specific guidance...
COVID-19 continues to impact the MSP community
Up until mid-March, 2020 was shaping up to be a banner year for MSPs: a robust economy, new opportunity, and the typical menu of cyberthreats. What a difference a month or two makes! Now, much of an MSP’s fortune depends...
Cybersecurity Threat Advisory: Hackers Still Exploiting COVID-19
Advisory Overview Hacking groups are still exploiting the COVID-19 pandemic as an opportunity to perform cyber-attacks. The United States’ CISA and the United Kingdom’s NCSC teamed up to issue a joint alert to the top threats. Recommendations are focused on...
Cybersecurity Threat Advisory: RagnarLocker Ransomware Hits EDP Energy Giant
Advisory Overview Energy giant EDP was recently hit with RagnarLocker ransomware. The hacking group claiming responsibility is threatening to leak 10 TB of stolen data online, including personal information such as a password manager database if a ransom of almost...
Cybersecurity: MSPs, healthcare clients, and COVID-19
The American Medical Association (AMA) reports that during the current COVID-19 pandemic, many physicians are working from home, using their personal computers and mobile devices to help care for patients. Medical work from home (MWFH) can lead to all sorts...
