Category: Security
Cybersecurity Threat Advisory: SonicWall critical vulnerability
SonicWall has recently addressed the critical vulnerability, CVE-2022-22280, that has a severity rating of 9.4. This vulnerability impacts SonicWall Global Management System (GMS) and its Analytics On-Prem. Upon exploit, the vulnerability allows malicious actors to perform unauthenticated SQL injection due...
The journey toward offering managed security services
Many forward-thinking MSPs are realizing the importance of offering a cybersecurity service that has its’ people, processes, and technology all working 24×7, making certain that every one of their customers is not only in a constant state of protective security...
Zero-trust IT transition requires MSP prudence
Gartner is predicting that while 60 percent of organizations will embrace zero-trust as a starting point for security by 2025, more than half will fail to realize the benefits. In that same timeframe, however, 80 percent of enterprises will as...
MSPs will be increasingly caught up in remote work debate
While the debate over the merits of enabling a much larger percentage of the workforce to work remotely intensifies as the COVID-19 pandemic becomes an aspect of daily life, it appears most organizations are now resigned to the fact that...
National Science Foundation shows stress is the cause of many breaches
The pandemic has upended the entire field of cybersecurity and a newly released National Science Foundation study is now shedding light on the human error component of cybersecurity breaches. “It’s an important study because anytime we can understand why people...
Cybersecurity Threat Advisory: OpenSSL vulnerability
Two vulnerabilities were discovered in OpenSSL version 3.0.4 that impacts RSA Private Keys and AES OCB Encryption operations. These vulnerabilities cause an incorrect RSA implementation for 2048-bit private keys that can lead to memory corruption while the device is in...
MSPs will need to drive MFA adoption for small businesses
Multifactor authentication (MFA) is a critical element of any approach to achieving zero-trust IT security. Yet, a global survey of 1,403 small business owners conducted by the Cyber Readiness Institute (CRI) finds that more than half still rely only on...
Cybersecurity Threat Advisory: Google zero-day vulnerability
Google has released a new patch for Google Chrome to address critical vulnerabilities in V8, WebRTC, and Chrome OS Shell components. If exploited, the vulnerabilities will allow malicious actors to perform memory corruption and privilege escalation. Barracuda MSP recommends applying...
CISA forges a path toward cybersecurity excellence for all businesses
The gold standard of cybersecurity best practices in the USA comes from The Cybersecurity and Infrastructure Security Agency (CISA). Within CISA is the Cybersecurity Advisory Committee (CSAC) which is comprised of 22 of the nation’s leading experts on cybersecurity, technology,...
Cybersecurity Threat Advisory: New Microsoft Azure vulnerability
Researchers at Point 42 discovered a flaw in Microsoft Azure’s Fabric, dubbed ‘FabricScape’, propagating the ongoing series of vulnerabilities that the platform has been facing. This vulnerability allows bad actors using Linux to escalate their own privileges to the extent...
