Tag: Cybersecurity Threat Advisory

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Foxit PDF Reader vulnerability

Cybersecurity Threat Advisory: Foxit PDF Reader vulnerability

A critical Foxit PDF Reader vulnerability are generating unusual pattern of behaviors. This exploit triggers security warnings designed to deceive users to execute harmful commands. Read this Cybersecurity Threat Advisory to learn recommendations to minimize your risks. What is the...

/ May 23, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Fluent Bit critical vulnerability

Cybersecurity Threat Advisory: Fluent Bit critical vulnerability

This Cybersecurity Threat Advisory highlights a critical vulnerability discovered within a popular logging and metric solution called Fluent Bit. CVE-2024-4323, a new memory corruption vulnerability, has the potential to cause denial of service (DOS), information leakage, and code execution (RCE)....

/ May 22, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Black Basta ransomware surge

Cybersecurity Threat Advisory: Black Basta ransomware surge

The Cybersecurity and Infrastructure Security Agency (CISA) has issued advisories in response to the widespread of Black Basta ransomware attacks. Review the recommendations detailed in this Cybersecurity Threat Advisory to defend against ransomware attacks and extortion. What is the threat?...

/ May 16, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical flaws discovered in Cacti framework

Cybersecurity Threat Advisory: Critical flaws discovered in Cacti framework

This Cybersecurity Threat Advisory breaks down multiple critical vulnerabilities in the Cacti framework, an open-source network monitoring and fault management tool. Successful exploitation of these vulnerabilities could allow attackers to execute arbitrary code and compromise network infrastructure. Continue reading this...

/ May 15, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: F5 BIG-IP Next Central Manager vulnerabilities

Cybersecurity Threat Advisory: F5 BIG-IP Next Central Manager vulnerabilities

Two high-severity vulnerabilities were discovered in the F5 BIG-IP Next Central Manager API allowing attackers to gain full administrative control and create hidden, persistent backdoors on managed devices. Barracuda MSP recommends reading this Cybersecurity Threat Advisory to learn which steps...

/ May 10, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical GitLab bug

Cybersecurity Threat Advisory: Critical GitLab bug

A critical vulnerability in GitLab, labelled CVE-2023-7028, is under active attack by threat actors to achieve account takeover, as reported by the Cybersecurity and Infrastructure Security Agency (CISA). Barracuda MSP recommends GitLab users review this Cybersecurity Threat Advisory now to...

/ May 10, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: RCE vulnerabilities in HPE Aruba Networking devices

Cybersecurity Threat Advisory: RCE vulnerabilities in HPE Aruba Networking devices

HPE Aruba Networking has disclosed that critical remote code execution (RCE) vulnerabilities are impacting multiple versions of ArubaOS. Out of the ten vulnerabilities found, four pose critical risks of unauthenticated buffer overflows in various services. Read this Cybersecurity Threat Advisory...

/ May 8, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: R programming vulnerability

Cybersecurity Threat Advisory: R programming vulnerability

A critical security flaw known as CVE-2024-27322 with a CVSS score of 8.8, has been discovered within the R programming language. Attackers can craft malicious RDS files or R packages that embed arbitrary R code. Barracuda MSP recommends reading this...

/ May 2, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Credential stuffing attacks targeting Okta

Cybersecurity Threat Advisory: Credential stuffing attacks targeting Okta

Okta has observed an unprecedented spike in credential stuffing attacks targeting its identity and access management solutions. Attackers are leveraging the TOR anonymization network and residential proxies to compromise user accounts. To mitigate this risk, Barracuda MSP recommends reading this...

/ May 1, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical vulnerabilities in Forminator plugin

Cybersecurity Threat Advisory: Critical vulnerabilities in Forminator plugin

Three critical vulnerabilities have been discovered in the Forminator plugin for WordPress, affecting over 300,000 websites. Barracuda MSP advises users to review this Cybersecurity Threat Advisory in detail to learn proper measures for safeguarding your websites. What is the threat?...

/ April 26, 2024