Tag: Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Foxit PDF Reader vulnerability
A critical Foxit PDF Reader vulnerability are generating unusual pattern of behaviors. This exploit triggers security warnings designed to deceive users to execute harmful commands. Read this Cybersecurity Threat Advisory to learn recommendations to minimize your risks. What is the...
Cybersecurity Threat Advisory: Fluent Bit critical vulnerability
This Cybersecurity Threat Advisory highlights a critical vulnerability discovered within a popular logging and metric solution called Fluent Bit. CVE-2024-4323, a new memory corruption vulnerability, has the potential to cause denial of service (DOS), information leakage, and code execution (RCE)....
Cybersecurity Threat Advisory: Black Basta ransomware surge
The Cybersecurity and Infrastructure Security Agency (CISA) has issued advisories in response to the widespread of Black Basta ransomware attacks. Review the recommendations detailed in this Cybersecurity Threat Advisory to defend against ransomware attacks and extortion. What is the threat?...
Cybersecurity Threat Advisory: Critical flaws discovered in Cacti framework
This Cybersecurity Threat Advisory breaks down multiple critical vulnerabilities in the Cacti framework, an open-source network monitoring and fault management tool. Successful exploitation of these vulnerabilities could allow attackers to execute arbitrary code and compromise network infrastructure. Continue reading this...
Cybersecurity Threat Advisory: F5 BIG-IP Next Central Manager vulnerabilities
Two high-severity vulnerabilities were discovered in the F5 BIG-IP Next Central Manager API allowing attackers to gain full administrative control and create hidden, persistent backdoors on managed devices. Barracuda MSP recommends reading this Cybersecurity Threat Advisory to learn which steps...
Cybersecurity Threat Advisory: Critical GitLab bug
A critical vulnerability in GitLab, labelled CVE-2023-7028, is under active attack by threat actors to achieve account takeover, as reported by the Cybersecurity and Infrastructure Security Agency (CISA). Barracuda MSP recommends GitLab users review this Cybersecurity Threat Advisory now to...
Cybersecurity Threat Advisory: RCE vulnerabilities in HPE Aruba Networking devices
HPE Aruba Networking has disclosed that critical remote code execution (RCE) vulnerabilities are impacting multiple versions of ArubaOS. Out of the ten vulnerabilities found, four pose critical risks of unauthenticated buffer overflows in various services. Read this Cybersecurity Threat Advisory...
Cybersecurity Threat Advisory: R programming vulnerability
A critical security flaw known as CVE-2024-27322 with a CVSS score of 8.8, has been discovered within the R programming language. Attackers can craft malicious RDS files or R packages that embed arbitrary R code. Barracuda MSP recommends reading this...
Cybersecurity Threat Advisory: Credential stuffing attacks targeting Okta
Okta has observed an unprecedented spike in credential stuffing attacks targeting its identity and access management solutions. Attackers are leveraging the TOR anonymization network and residential proxies to compromise user accounts. To mitigate this risk, Barracuda MSP recommends reading this...
Cybersecurity Threat Advisory: Critical vulnerabilities in Forminator plugin
Three critical vulnerabilities have been discovered in the Forminator plugin for WordPress, affecting over 300,000 websites. Barracuda MSP advises users to review this Cybersecurity Threat Advisory in detail to learn proper measures for safeguarding your websites. What is the threat?...
