Skip to main content

Tag: managedserviceproviders

8 articles

firewall configuration backup files: Stunning Risk Exposed

firewall configuration backup files: Stunning Risk Exposed

SonicWall says cloud-stored firewall backups were accessed — and even encrypted configuration files can give attackers a dangerous roadmap to your network. Act now: audit affected devices, rotate credentials, enable MFA, and tighten management access to close the window for targeted attacks.

Analyst 207
Cybersecurity Information Sharing Act: Critical or Risky?

Cybersecurity Information Sharing Act: Critical or Risky?

What if the law that lets companies and the government swap cyber threat signals overnight simply vanished? With the 2015 CISA at risk amid a possible shutdown, automated feeds, legal protections, and the trusted channels that stop attacks fast could all be thrown into doubt.

Analyst 207
ConnectWise ScreenConnect Risky Exploit: Stunning AsyncRAT

ConnectWise ScreenConnect Risky Exploit: Stunning AsyncRAT

Imagine your trusted remote-admin tool becoming the very doorway attackers use to steal credentials and siphon crypto—researchers found ConnectWise ScreenConnect sessions abused to run a fleshless, in-memory VBScript loader that dropped AsyncRAT to harvest keys, keystrokes, and wallets. Harden RMM access, monitor session scripts, and assume compromise—because when legitimate tooling is weaponized, detection needs to get smarter fast.

Analyst 207
Akira ransomware: Stunning High-Risk SonicWall Exploit

Akira ransomware: Stunning High-Risk SonicWall Exploit

Heads up: Akira ransomware is actively exploiting three SonicWall vulnerabilities. If you run SonicWall gear, patch now and double-check your defenses to avoid compromise.

Analyst 207
ConnectWise ScreenConnect: Stunning Security Risk

ConnectWise ScreenConnect: Stunning Security Risk

Attackers are now tricking victims into installing legitimate remote-support tools like ConnectWise ScreenConnect, then using those same trusted apps to seize control of devices — a stealthy shift that makes phishing far harder to spot. Stay skeptical of unsolicited support requests and verify them out of band, because convenience is the new vulnerability.

Analyst 207
NFC fraud: Must-Have Defenses Against Costly Attacks

NFC fraud: Must-Have Defenses Against Costly Attacks

Security rarely breaks in a single blast — it seeps away. This week’s roundup shows how NFC fraud, N‑able exploits, and malicious Docker images quietly erode trust and widen blast radii when small oversights go unpatched.

Analyst 207
N‑able N‑central Critical Risk: Urgent Must-Fix Flaws

N‑able N‑central Critical Risk: Urgent Must-Fix Flaws

Heads-up: CISA has added two N‑able N‑central flaws to its KEV catalog after evidence of active exploitation, so MSPs and customers should urgently locate, patch or isolate affected RMM instances and tighten admin controls. Because a compromised RMM can give attackers broad access, demand proof of remediation and enforce strong segmentation, MFA, and monitoring now.

Analyst 207
Kaseya ransomware: Stunning Risky State-Linked Claims

Kaseya ransomware: Stunning Risky State-Linked Claims

Was the July 2021 Kaseya REvil attack just criminal profit-seeking or something far more dangerous—potentially state-enabled? New evidence presented at DEF CON 33 suggests probable Russian government involvement, a claim that would radically change how governments, businesses, and MSPs respond to future supply-chain cyberattacks.

Analyst 207