Tag: cybersecurity

Ride-sharing app Uber hacked via social engineering scheme

Ride-sharing app Uber hacked via social engineering scheme

Last month, the popular ride-sharing app Uber announced a cybersecurity incident that affected a variety of company accounts. The breach reportedly originated within Uber’s internal Slack communication channel after a hacker tricked an employee into sharing their login credentials. Those...

/ October 3, 2022
Cybersecurity Threat Advisory: New Microsoft Exchange Server zero-day vulnerability

Cybersecurity Threat Advisory: New Microsoft Exchange Server zero-day vulnerability

Researchers from GTSC found a new zero-day vulnerability for Microsoft Exchange Server in the wild. Upon successful exploitation, threat actors can perform RCE (Remote Code Execution) via a backdoor onto the compromised system. GTSC has released a report outlining the...

/ September 30, 2022
Tech Time Warp: Cybersecurity Awareness Month turns 18

Tech Time Warp: Cybersecurity Awareness Month turns 18

Cybersecurity is finally of age—as an awareness month, anyway. Oct. 1 marks the start of the 18th annual Cybersecurity Awareness Month organized by the Cybersecurity and Infrastructure Security Agency (CISA) and the National Cybersecurity Alliance (NCA).

/ September 30, 2022 / 6 Comments
Cybersecurity Threat Advisory: Sophos Firewall critical vulnerability

Cybersecurity Threat Advisory: Sophos Firewall critical vulnerability

Sophos has identified a remote code execution vulnerability tracked as CVE-2022-3236. This vulnerability affects the User Portal and Webadmin components of Sophos Firewalls. Upon a successful exploitation, a threat actor can gain root privileges and deploy a ransomware attack. Barracuda...

/ September 28, 2022
Cloud security incidents on the rise

Cloud security incidents on the rise

As more workloads are deployed in the cloud, it’s become increasingly apparent that most organizations are struggling with security. A recent survey of 400 cloud engineering and security practitioners and leaders by the market research firm, Propeller Insights on behalf...

/ September 22, 2022
Cybersecurity summits and tools to improve training

Cybersecurity summits and tools to improve training

Anytime an MSP can expose its engineers and technicians to free training and education, it’s an opportunity that shouldn’t be passed up. One such opportunity is the upcoming “5th Annual Cybersecurity Summit” hosted by CISA and Morehouse College in Atlanta....

/ September 21, 2022 / 6 Comments
Expanded XDR capabilities strengthen Barracuda’s security offering

Expanded XDR capabilities strengthen Barracuda’s security offering

The rise in cyberattacks such as ransomware, spear phishing, and the overall intensified cyberthreat landscape, continues to raise concern for businesses across the globe. With these evolving concerns and threats in mind, Barracuda has announced new enhancements to the Barracuda...

/ September 13, 2022 / 7 Comments
Multi-cloud computing surfaces MSP opportunity and peril

Multi-cloud computing surfaces MSP opportunity and peril

A survey of 1,000 technology practitioners conducted by HashiCorp, a provider of tools for managing cloud infrastructure, suggests that as more organizations embrace multi-cloud computing the number of challenges being encountered is starting to multiply as well. Conducted by Forrester...

/ September 7, 2022
Canadian cybersecurity complacency is a slippery slope

Canadian cybersecurity complacency is a slippery slope

Statistics and polls show that residents of the United States are concerned about cybersecurity and a recent survey conducted late in 2021 illustrates this: The poll by The Pearson Institute and The Associated Press-NORC Center for Public Affairs Research shows...

/ August 30, 2022
Changing cyber insurance requirements create managed security challenges

Changing cyber insurance requirements create managed security challenges

As cyber insurance requirements become more stringent, managed service providers (MSPs) are finding a need to make sure clients that don’t implement appropriate levels of security, either sign a waiver or find another provider. When the first wave of ransomware...

/ August 25, 2022 / 5 Comments