Tag: cybersecurity

Nation-state tactics are now in criminal hands

Nation-state tactics are now in criminal hands

Government-backed hackers once reserved these techniques for targeted campaigns. Today, those techniques appear in everyday malware. For MSPs, the distinction between “targeted” and “opportunistic” attacks is disappearing. “The line between nation-state attacks and criminal attacks is disappearing faster than many...

/ June 30, 2026
Tech Time Warp: Nine years since the NotPetya nightmare

Tech Time Warp: Nine years since the NotPetya nightmare

With damages estimated at $10 billion worldwide, the NotPetya malware attack of late June 2017 was a nightmare scenario by any standard. But several aspects of the malware — the work of Russian military intelligence officers — were particularly fiendish:...

/ June 26, 2026
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: FortiBleed credential exposure campaign

Cybersecurity Threat Advisory: FortiBleed credential exposure campaign

Recent reporting has detailed an active credential exposure campaign dubbed “FortiBleed” that targets internet-facing FortiGate firewall devices. The activity involves a custom tool, often referred to as FortiGateSniffer, that enables attackers to harvest sensitive information. This includes VPN credentials and...

/ June 26, 2026
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: PAN-OS GlobalProtect exploit

Cybersecurity Threat Advisory: PAN-OS GlobalProtect exploit

Palo Alto Networks has confirmed that attackers are actively exploiting a security flaw in PAN-OS GlobalProtect, tracked as CVE-2026-0257 with a CVSS score of 7.8. The vulnerability affects both on-premises firewalls and Prisma Access. Review the Cybersecurity Threat Advisory for...

/ June 22, 2026
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: NinjaOne RMM phishing campaign

Cybersecurity Threat Advisory: NinjaOne RMM phishing campaign

A recent phishing campaign is using a legitimate remote access tool to take over victims’ computers, all without deploying malware. This active operation currently targets Brazilian organizations. Attackers trick employees into installing a legitimate software agent that hands over remote...

/ June 22, 2026
AI-driven zero-day threats are reshaping MSP patch management

AI-driven zero-day threats are reshaping MSP patch management

As artificial intelligence (AI) models become more adept at discovering zero-day vulnerabilities—and generating malware to exploit them—organizations will increasingly turn to managed service providers (MSPs) to accelerate patching as part of a broader effort to strengthen application security. AI models...

/ June 18, 2026
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Fortinet credential exposure

Cybersecurity Threat Advisory: Fortinet credential exposure

Security researchers have reported a large-scale “FortiBleed” compromise involving exposed Fortinet/FortiGate firewall and VPN credentials. The incident could affect tens of thousands of devices worldwide. Review the Cybersecurity Threat Advisory now to protect your clients’ systems. What is the threat?...

/ June 18, 2026
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Microsoft Teams TURN relay exploit

Cybersecurity Threat Advisory: Microsoft Teams TURN relay exploit

Threat actors are using a custom backdoor to route their command-and-control (C2) traffic through Microsoft Teams’ TURN relay infrastructure. This technique blends malicious traffic with legitimate Teams communications. As a result, attackers can bypass traditional network defenses, maintain covert access...

/ June 17, 2026
Password managers: Your greatest defense or biggest weakness?

Password managers: Your greatest defense or biggest weakness?

Passwords remain a cybersecurity mainstay, surviving despite years of predictions about their demise. Even with constant warnings from security professionals, users still rely on weak choices—like a dog’s name or home address. So, what is an MSP to do? For...

/ June 9, 2026
The AI-cybersecurity connection MSPs can’t afford to ignore

The AI-cybersecurity connection MSPs can’t afford to ignore

One thing is becoming clear for managed service providers (MSPs): future growth will be driven by artificial intelligence (AI) and cybersecurity. More importantly, AI is accelerating demand for cybersecurity services. A recent survey conducted by the Global Technology Industry Association...

/ June 4, 2026