Category: Security
Cybersecurity Threat Advisory: Commvault Web Server vulnerability
A high-severity Commvault Web Server vulnerability, CVE-2025-3928, with a CVSS score of 8.7, has been disclosed. To mitigate your risk, continue reviewing this Cybersecurity Threat Advisory. What is the threat? CVE-2025-3928 affect Commvault Web Server versions prior to 11.36.46, 11.32.89,...
Email security under siege: How MSPs can win the war against phishing
Phishing attacks are no longer the clumsy attempts of the past. They’re evolving at an alarming rate, forcing managed service providers (MSPs) to radically adapt their email security strategies to protect their customers effectively. Automated phishing tools, the weaponization of...
Cybersecurity Threat Advisory: Apple AirPlay zero-day vulnerability
Researchers have discovered a critical vulnerability in Apple’s AirPlay protocol. It affects both Apple devices that support AirPlay as well as third-party devices that interface with it. The flaw can enable an attacker to fully takeover a device without the...
Cybersecurity Threat Advisory: Microsoft Windows process activation vulnerability
A local privilege escalation vulnerability, CVE-2025-21204, in the Windows Update Stack has been discovered. It allows an authorized attacker to elevate privileges by exploiting improper link resolution before file access. Review this Cybersecurity Threat Advisory to mitigate your risk. What...
Cybersecurity Threat Advisory: Critical zero-day SAP vulnerability
SAP published a critical vulnerability, CVE-2025-31324 with a CVSSv3 score of 10.0. The flaw is actively exploited in the wild. Successful exploitation can lead to arbitrary file uploads, leading to remote code execution (RCE) and full system compromise. Review this...
Email Threat Radar – April 2025
In this edition of the Email Threat Radar, Barracuda threat analysts highlight several notable email-based threats identified over the past month. These threats were designed to evade detection and increase the chances of success, and they targeted organizations around the...
Cybersecurity Threat Advisory: Craft CMS exploited
Threat actors have been actively exploiting two Craft CMS vulnerabilities, CVE-2025-32432 and CVE-2024-58136, to breach web servers and gain unauthorized access. Review the details in this Cybersecurity Threat Advisory to safeguard your devices. What is the threat? Threat actors are...
Security audits play a vital role in defense
Security audits are a crucial component of an organization’s cybersecurity strategy. However, despite their importance, they are not as commonly conducted as you might think. Shift from a reactive to a proactive mindset According to a study, only 52 percent...
Barracuda’s 2025 Email Threats Report: Insights to the rising threat of email attachments
In an era of increasingly sophisticated cyberthreats, understanding the evolving landscape of email-based attacks is crucial for organizations of all sizes. The new Barracuda 2025 Email Threats Report shines light on attackers’ tactics with valuable insights to help you stay ahead...
Cybersecurity Threat Advisory: ScreenConnect vulnerability
Researchers have discovered a vulnerability in the ScreenConnect remote support software that upon a successful exploitation, can allow for remote execution on a targeted server. Continue reading this Cybersecurity Threat Advisory to learn how to keep your environment safe. What...
