Category: Security
Ask an MSP Expert: How can I make sure my customers are secure online?
Q: One of my customers recently fell victim to a suspicious download from a fraudulent website. How can I prevent this in the future? Attacks through websites are not uncommon. As cybercriminals become more sophisticated with attack vectors such as drive-by downloads and malvertising,...
Tech Time Warp: The 2005 Academy Awards phone hack
When Hollywood’s elite stroll the red carpet at the 92nd Academy Awards on February 9, they’ll need to watch out for flashing cameras, Ryan Seacrest, and… hackers? It’s happened before.
Conversation hijacking emerges as a cybersecurity threat
Recent research by Barracuda Networks highlights the growing dangers of “conversation hijacking.” According to the research, an analysis of approximately 500,000 monthly email attacks shows a 400 percent increase in these types of attacks. There were approximately 500 incidents in...
Cybersecurity Threat Advisory: RCE in OpenSMTPD library (CVE-2020-7247)
Advisory Overview There is a critical remote code execution vulnerability in the OpenSMTPD library, impacting BSD and Linux Distros. Exploitation could allow an attacker to execute commands as root. A link to the patch is included in the recommendation section...
Cybersecurity attacks on MSPs begin to shake customer confidence
The interest in managed security services is on the rise. However, it turns out that it’s not only becoming more difficult to deliver those services, customers of managed security service providers (MSSPs) are also becoming less satisfied. Dark Cubed, a...
Cybersecurity Threat Advisory: Iranian Hacking Campaign Targets European Energy Company
Advisory Overview Researchers have reported increased cyber activity within the European energy sector by a high-profile hacking group. The increased activity is possibly linked to Iranian state sponsored attacks. The hackers conducted cyber espionage and gained remote access using the...
Combat BEC attacks with AI and security awareness training
Over time, cyber criminals have had to get more creative with their tactics. Cyber attacks have evolved from spam and malware to phishing, and now spear phishing, defined as, “fraudulently sending emails from a known or trusted sender to induce...
The risks of state-sponsored cyberattacks are rising
When tensions between Iran and the United States threatened to spill over into an all-out war, concern immediately turned towards state-sponsored cyberattacks. Tom Reagan, U.S. cyber practice leader at Marsh, an insurance brokerage and risk management consulting firm, told CNBC...
Cybersecurity Threat Advisory: Security Vulnerabilities Identified in ConnectWise Control
Advisory Overview Multiple security vulnerabilities in ConnectWise Control were recently disclosed. Anyone using the MSP focused software should immediately update to the newest version and be on the lookout for future updates. ConnectWise has responded to the disclosure and issued...
Cybersecurity Threat Advisory: Sodinokibi Ransomware
Advisory Overview We have previously issued advisories on Sodinokibi Ransomware in Threat Advisory 0034-19 and Threat Advisory 0021-19. The same strand recently hit a Colorado Based MSP Synoptek and the foreign currency exchange Travelex. Sodinokibi has been particularly damaging and...