Vulnerability Scanning vs. Penetration Testing: What’s the difference and what do you need?
MSPs approach us frequently requesting a penetration test for themselves or a new client. Most often though, we determine that they don’t want a penetration test at all. They really need a vulnerability scan. What’s the difference and how do we help our clients see the light? Passive vs. Offensive – Vulnerability Scan vs. Penetration […]
Five Cybersecurity Resolutions for your MSP
As we now turn the corner into the new year, it’s time to assess goals surrounding your cybersecurity posture. Dare we say it – you need to set your cyber resolutions for 2022. Unlike traditional pie in the sky resolutions that fall flat before February hits (cough* cough* gym memberships), if you work your way […]
2019 was ScreenConnect. 2020 was Solar Winds. 2021 is Kaseya.
Don’t Let Your Client Be Next. Why the Kaseya Ransomware Attack Is a Story About Onions The Kaseya Attack Reminds Us That Cybersecurity is About Layers When it Comes to MSPs, Prevention Eats Recovery for Breakfast The Kaseya Ransomware Attack Could Have Happened to Anyone They say the best offense is a good defense. But […]
What does the SOC Do? And How is Different Than the NOC?
Data breaches and cybersecurity incidents present significant challenges for today’s businesses and MSPs. Not only are the recovery costs extensive – nearly $4 Million according to IBM’s most recent analysis – but consumers and regulators are increasingly punishing companies that can’t protect their data or infrastructure. As a result, many business leaders view cybersecurity as […]
Update Adobe Now For Several Critical Security Updates
Adobe continues to work at a feverish pace to address critical security vulnerabilities in its product line. Their most recent patch addresses a total of ten security flaws across the following four products: Photoshop Adobe Digital Editions Adobe Bridge RoboHelp Of the ten flaws addressed by the latest patch, seven are rated as being Critical […]
Security Is Top Priority In Latest Chrome Build
Back in February, Google began experimenting with a new feature that defaulted all URLs to use “https:” rather than the less secure “http:.” While defaulting to the secure socket layer isn’t ironclad protection for ‘netizins, it’s certainly a step in the right direction, which is why Google recently promoted the change out of the canary […]
Hackers Are Using Legitimate Google Services To Wreak Havoc
The Microsoft 365 Defender Threat Intelligence Team recently issued a dire warning that every IT professional should take seriously. They’ve discovered an emerging threat in the form of hackers utilizing legitimate “Contact Us” forms associated with Google websites to distribute malware to unsuspecting site visitors. Since the website is legitimate, it almost always bypasses email […]
Watch Out For Vaccine Survey Phishing Emails
Scammers have found a new way to take advantage of people, so be on your guard. The U.S. Department of Justice has recently issued an alert warning people of fake emails sent out asking recipients to take advantage of a post vaccination survey. Naturally, as part of taking the survey, each participant will be asked […]
Cryptomining Worm Botnet Seeking And Attacking Vulnerable Devices
There’s a new cryptomining worm threat to be aware of, and it’s making the lives of IT Administrators who manage Windows and Linux environments nightmarish. This news comes from a recently published report offered by a research firm called Juniper, which began monitoring the activities of the new Sysrv Botnet back in December of 2020. […]
The New Realities of a Cybersecurity Response Plan for MSPs
A March 2021 report found that 31 billion data records were compromised in 2020, a number that dwarfs the total of the past 15 years combined. As tactics from phishing scams to ransomware attacks become more sophisticated and effective, we are on the verge of a “data breach crisis,” according to the study. As a […]
Gamers Targeted By Hackers Through Code And Cheat Downloads
Gamers tend to be surprisingly tech savvy, and as such, they’re a bit harder to trick with social engineering than many other groups. Gamers do have a weakness, and it’s one that hackers around the world have recently begun to exploit in a systematic way. Increasingly, security researchers are finding instances of poisoned cheat codes. […]
New Malware Appears To Be Android App For Free Netflix
If you have an Android device and you’re something of an app fanatic, you may have been tempted by an app called FlixOnline, which was available on the Google Play Store for a time. The app’s description promises a free trial subscription to Netflix, which naturally prompted many people to download it and give it […]