Category: Security
Cybersecurity Threat Advisory: OpenSSL vulnerability
Two vulnerabilities were discovered in OpenSSL version 3.0.4 that impacts RSA Private Keys and AES OCB Encryption operations. These vulnerabilities cause an incorrect RSA implementation for 2048-bit private keys that can lead to memory corruption while the device is in...
MSPs will need to drive MFA adoption for small businesses
Multifactor authentication (MFA) is a critical element of any approach to achieving zero-trust IT security. Yet, a global survey of 1,403 small business owners conducted by the Cyber Readiness Institute (CRI) finds that more than half still rely only on...
Cybersecurity Threat Advisory: Google zero-day vulnerability
Google has released a new patch for Google Chrome to address critical vulnerabilities in V8, WebRTC, and Chrome OS Shell components. If exploited, the vulnerabilities will allow malicious actors to perform memory corruption and privilege escalation. Barracuda MSP recommends applying...
CISA forges a path toward cybersecurity excellence for all businesses
The gold standard of cybersecurity best practices in the USA comes from The Cybersecurity and Infrastructure Security Agency (CISA). Within CISA is the Cybersecurity Advisory Committee (CSAC) which is comprised of 22 of the nation’s leading experts on cybersecurity, technology,...
Cybersecurity Threat Advisory: New Microsoft Azure vulnerability
Researchers at Point 42 discovered a flaw in Microsoft Azure’s Fabric, dubbed ‘FabricScape’, propagating the ongoing series of vulnerabilities that the platform has been facing. This vulnerability allows bad actors using Linux to escalate their own privileges to the extent...
Barracuda MSP is coming to a city near you!
Since March 2020, every business has taken a pause with in-person interaction. As we turn a new page in the pandemic, Barracuda MSP is excited to be back on the road and meet with MSPs live once again!
Alternate cloud service providers are on the rise
A much larger percentage of IT organizations appear to be less committed to the top three cloud service providers as it becomes more apparent that the compute and storage platforms being delivered have become commodities. A survey of 458 development...
Cybersecurity Threat Advisory: Mitel VoIP vulnerability
A known remote code execution vulnerability, CVE-2022-29499, was discovered with the Linux-based Mitel VoIP (Voice over Internet Protocol) application. Once exploited, this vulnerability allows a threat actor to gain root privileges to the system and plant ransomware. Barracuda MSP recommends...
Cybersecurity Threat Advisory: LockBit Ransomware Threat
The LockBit ransomware group has become the top ransomware group based on its volume of attacks in recent months. They are utilizing a new phishing email tactic by disguising the malware as copyright claim and creating a bug bounty program. Once...
SEC cyber rules: An MSP’s pivotal role and opportunity
Cyberattacks against financial services companies are on the rise. In 2021, the Financial Services Information Sharing and Analysis Center (FS-ISAC) raised the cyber threat level for U.S. financial institutions from “guarded” to “elevated” three times (it typically happens just once)....
