Tag: MFA
Cybersecurity Threat Advisory: FortiOS CLI command bypass vulnerability
Fortinet has disclosed a high-severity vulnerability in FortiOS, identified as CVE-2025-58325, which has a CVSS score of 7.8. This flaw could allow local authenticated attackers to execute arbitrary system commands. The vulnerability stems from improper input validation in the FortiOS...
Tech Time Warp: The multifaceted road to multifactor authentication
In the recent edition of “Oh Behave!,” the annual cybersecurity survey conducted by the National Cybersecurity Alliance, an alarming 44 percent of respondents said they had experienced cybercrime leading to the loss of data or money. This next statistic may...
MSPs: Stop account takeovers (ATO) cold
Account takeover (ATO) cyberattacks are a particularly pernicious and challenging threat to combat. They have only grown more complex as credential management becomes increasingly intricate across organizations. According to a recent Barracuda 2025 Email Threats Report, 20% of companies experience...
An MSP’s guide to keeping up with phishing
Phishing has long been a primary tool in the hacker’s arsenal, but like military weapons, their tactics evolve. A phishing attempt in 2025 looks different from those in 2015, 2020, or even last year. Therefore, managed service providers (MSPs) must...
The MSP’s guide to creating a zero trust atmosphere
Zero trust in the workplace is typically a bad thing, fostering a culture of distrust and snitching. However, for managed service providers (MSPs), it is a good thing, at least when it comes to cybersecurity. Experts in the field say...
Cybersecurity Threat Advisory: Critical RCE flaw in Apache Roller blog server
Researchers have discovered a critical session management vulnerability within Apache Roller. It is being tracked as CVE-2025-24859 and has been assigned the maximum CVSS score of 10.0. Review the details in this Cybersecurity Threat Advisory to mitigate your risks. What...
Key strategies for MSPs to improve IoT security
As the number of connected devices continues to rise— with the International Data Corporation (IDC) forecasting over 55 billion by 2025—managed service providers (MSPs) are facing increasing challenges to deliver security at scale. In October, SmarterMSP.com posted an article about...
’Tis the season to avoid holiday email scams
Beware of common holiday email scams. As the holidays approach, businesses are busier than ever, and cybercriminals know it. Along with cheer, joy, and giving, the holidays also bring an unfortunate surge in cyber scams. As businesses tackle everything from...
Enhance security services with biometrics
Biometrics is exploding in popularity as a security tool with research indicating that 81 percent of consumers consider biometrics a more secure method of identity verification than traditional methods. Illustrating the embrace of this technology is the global biometric authentication...
The rise of AI-based BEC attacks
Cybercriminals are quickly latching on to new technology and strategies to improve the success rates of their social engineering-based email attacks. In the latest Barracuda Email Threats and Trends report, the company found that although traditional email scams like phishing are...
