Tag: CISA
Tech Time Warp: Time for pumpkins, ghosts, and cybersecurity awareness
If you’re reading this, you know it’s important to be cyber-aware 365 days a year, but for more than 20 years, October has been as synonymous in the tech world with cybersecurity as it is with pumpkins and ghosts. In...
October is Cybersecurity Awareness Month
October 1 marks the start of the annual Cybersecurity Awareness Month (CAM), which is a collaborative effort to raise awareness of cybersecurity and safe online practices. Each October, governments, public sector agencies, and private sector partners organize events and media campaigns...
Summer Roundup: Cyber risks for MSPs to monitor
As summer begins its swan song and thoughts begin to turn toward autumn, the Cybersecurity and Infrastructure Security Agency (CISA) has a fresh batch of advisories. Released in August, these advisories highlight the various cyber risks lurking out there, many...
How MSPs can help clients build a human firewall
As cybercriminals step up their attacks, aided by AI and other technologies, it’s critical for managed service providers (MSPs) and their clients to reinforce cybersecurity awareness efforts among their employees to create a human firewall. According to the World Economic...
Should America’s cyber defense agency’s priorities also be yours?
In February, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced its 2024 priorities for the Joint Cyber Defense Collaborative (JCDC). This group, composed of government and industry entities, was formed in 2021 and is tasked with gathering, analyzing, and sharing actionable...
Staying cyber safe with CISA this summer
As sure as fireflies and fireworks mean summer, so do Cybersecurity and Infrastructure Security Agency (CISA) warnings and alerts. With parents shuttling kids to day camps, pool parties, and Disney World, summer is a prime time for cybercriminals to make...
Cybersecurity Threat Advisory: Oracle WebLogic Server vulnerability
There has been active exploitation of a critical operating system (OS) command injection vulnerability, known as CVE-2017-3506, found in the Oracle WebLogic Server. The impact can be severe, ranging from financial loss to reputational damage. Review this Cybersecurity Threat Advisory...
Cybersecurity Threat Advisory: Critical GitLab bug
A critical vulnerability in GitLab, labelled CVE-2023-7028, is under active attack by threat actors to achieve account takeover, as reported by the Cybersecurity and Infrastructure Security Agency (CISA). Barracuda MSP recommends GitLab users review this Cybersecurity Threat Advisory now to...
New CISA vulnerability warning pilot program is a success
The Cybersecurity and Infrastructure Security Agency (CISA) recently announced its vulnerability warning program has issued over 2,000 alerts since its inception. The agency’s director, Jen Easterly, delivered remarks recently at the Institute for Security and Technology, sharing that these alerts...
Analyzing the latest Ivanti-linked CISA breach
Another day passes, another cyberattack strikes. This time, a recent incident impacted a major U.S. government entity known as the Cybersecurity and Infrastructure Security Agency (CISA). Back in February, CISA officials discovered that two of its internal computer systems were compromised by...
