Results for: ransomware
Cybersecurity Threat Advisory: ZyXEL NAS RCE Vulnerability (CVE-2020-9054)
Advisory Overview Several ZyXEL NAS devices are vulnerable to Remote Code Execution (RCE). The vulnerability could potentially allow an attacker to execute remote commands as root. A patch has been released, but many devices are at an end of life...
Cybersecurity Threat Advisory: Remote Code Execution on Microsoft Exchange Server
Advisory Overview All unpatched versions of Microsoft Exchange Server are vulnerable to a remote code execution bug. The attack requires successful authentication to an Exchange Server. Attackers are scanning the internet for unpatched servers and attempting to authenticate with leaked...
Coronavirus helps spread computer viruses
Coronavirus has sent a chill through the world economy and has spread fear beyond its origin in the Wuhan province of China. As the virus threatens to become a global pandemic, hackers and cybercriminals are using public apprehension over the...
Survey identifies data protection as top service being delivered by third-parties
A survey of 110 IT decision-makers based in the U.S. suggests that the reliance on third-party IT services is starting to increase as IT becomes more complex. Conducted by US Signal, a provider of data center services, the survey finds...
The risks of state-sponsored cyberattacks are rising
When tensions between Iran and the United States threatened to spill over into an all-out war, concern immediately turned towards state-sponsored cyberattacks. Tom Reagan, U.S. cyber practice leader at Marsh, an insurance brokerage and risk management consulting firm, told CNBC...
Cybersecurity Threat Advisory: Security Vulnerabilities Identified in ConnectWise Control
Advisory Overview Multiple security vulnerabilities in ConnectWise Control were recently disclosed. Anyone using the MSP focused software should immediately update to the newest version and be on the lookout for future updates. ConnectWise has responded to the disclosure and issued...
Reliance on managed security services will increase in 2020
A survey of 1,536 cybersecurity professionals suggests that 2020 will prove to be a big year in terms of managed security services adoption. The report, published by Cynet, a provider of a platform for managing data breaches, finds that the...
2020 brings mounting pressure to MSPs’ defense against social engineering
In 2020, attackers using social engineering techniques to deliver payloads of malware will continue to adopt mainstream business practices – becoming as professional in their operations as the organizations they attack. In turn, businesses are seeking to become harder targets...
Cybersecurity Threat Advisory: LifeLabs Cyberattack & Data Breach
Advisory Overview During October 2019 LifeLabs experienced a large-scale ransomware incident where attackers potentially gained access to various pieces of personal information for up to 15 million customers primarily within the British Columbia & Ontario areas of Canada. LifeLabs reportedly...
Cybersecurity Threat Advisory: Vulnerability in Two Citrix Devices (Updated Jan 30th 2020)
Update Threat actors are now exploiting this vulnerability to deploy ransomware on customers networks. Citrix has provided a patch for this vulnerability and SKOUT has seen successful exploitation of the vulnerability. Patching is not enough, researchers have found that threat...