Tag: CISA

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Ivanti alerts of new high-severity flaws

Cybersecurity Threat Advisory: Ivanti alerts of new high-severity flaws

During Ivanti’s announcement of their fixes for the recent critical zero-day vulnerabilities, the software vendor alerts of two new high-severity flaws in its Connect Secure and Policy Secure products. One of which is said to be under targeted exploitation in...

/ February 1, 2024
Drones: Flying security opportunities for MSPs

Drones: Flying security opportunities for MSPs

As they continue to grow in popularity, drones are increasingly being included in managed service providers’ (MSPs) hardware and software management packages. For most MSPs, this is a natural extension, as drones are becoming more widely used in commercial applications,...

/ January 25, 2024 / 1 Comment
Scattered Spider spins a troublesome web

Scattered Spider spins a troublesome web

The Itsy-Bitsy Spider may have crawled up the waterspout, but the Scattered Spider could be crawling into your email box. CISA is sounding the alarm about Scattered Spider and the havoc it can wreak. The CISA bulletin says: “Scattered Spider...

/ November 30, 2023
Shields Up
Shields up: How MSPs can advance cybersecurity with cutting-edge technologies

Shields up: How MSPs can advance cybersecurity with cutting-edge technologies

“Bottoms up” is a good-natured toast or nudge to get one to finish their drink. The Cybersecurity and Infrastructure Security Agency (CISA) is introducing a good-natured nudge to get organizations to finish their resiliency called “Shields Up!” You probably won’t...

/ November 16, 2023
Top 10 cybersecurity misconfigurations identified by CISA and NSA

Top 10 cybersecurity misconfigurations identified by CISA and NSA

The CISA and NSA jointly released a list of the top 10 cybersecurity misconfigurations recently. These misconfigurations often lead to breaches and incidents that should be remedied. The report’s executive summary concludes: “These most common misconfigurations illustrate a trend of...

/ October 12, 2023
Cybersecurity Awareness Month to-do list

Cybersecurity Awareness Month to-do list

This month marks the 20th annual Cybersecurity Awareness Month, a collaboration between government and industry to highlight the importance of cybersecurity. The past two decades have brought about rapid change. “It’s hard to believe that Cybersecurity Awareness Month has been...

/ October 5, 2023
CISA looks to rally RMM community to improve MSP security

CISA looks to rally RMM community to improve MSP security

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is now focusing on fixing systematic risks in the remote monitoring and management (RMM) tools that most managed service providers (MSPs) employ. The agency, as part of a Joint Cyber Defense Collaborative...

/ September 6, 2023
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Microsoft .NET vulnerability

Cybersecurity Threat Advisory: Microsoft .NET vulnerability

This Cybersecurity Threat Advisory highlights a patched security flaw in Microsoft .NET and Visual Studio products that has been cited for active exploitation. To mitigate this vulnerability, users are advised to apply security updates as soon as possible. What is...

/ August 16, 2023
Ransomware continues to impact schools

Ransomware continues to impact schools

The city of Des Moines, Iowa, is accustomed to seeing its schools close in January, but the closings usually involve snow or ice, not a cyberattack. On January 10 and 11 of this year, however, Des Moines Public Schools were...

/ February 23, 2023
Tech Time Warp: The malware RAT known as Regin

Tech Time Warp: The malware RAT known as Regin

On Nov. 25, 2014, the Cybersecurity and Infrastructure Agency (CISA) issued an alert about Regin, a “sophisticated backdoor Trojan used to conduct intelligence-gathering campaigns.” Journalists reported the entities affected by Regin included airlines, telecom companies, energy companies and private individuals....

/ November 25, 2022