We have reported extensively on the cybersecurity talent shortage plaguing the industry. The shortage is more than just a personnel issue though, it represents a serious cybersecurity problem. For instance, a Gartner report says that by 2025, half of all cybersecurity incidents will occur because of “a lack of talent or human failure.” This week, we are taking another look at this topic in an interview with Steve Satterwhite, CEO of Entelligence, a company that monitors and analyzes the cybersecurity landscape. 2024 Trends: A dichotomy Satterwhite says he has noticed several key trends in hir ..read more

The security end goal for all organizations is cyber resilience. Effective prevention and detection measures are, and will remain, a critical cornerstone of security strategies, but companies shouldn’t stop there. What matters is how the organization prepares for, withstands, responds to, and recovers from an incident. And this depends on people and processes as much as it does on technology. The U.S. National Institute of Standards and Technologies (NIST) updated its benchmark Cybersecurity Framework earlier this year. It added security governance as a strategic priority which refers to how ..read more

Predicting the future is difficult, but you can anticipate what is likely to happen by looking at how things have evolved over time. Barracuda asked colleagues who work on the security frontline, from XDR and offensive security to international product experts, our own security operations team, and more, about what they witnessed in 2023 and what they expect to see in the remainder of 2024. What most surprised you in 2023? Adam Khan, VP Global Security Operations: In 2023, the number of potential attack surfaces in organizations will continue to increase. More of them will adopt cloud-based a ..read more

Managed service providers (MSPs), chief information security officers (CISOs), and IT professionals have long relied on the National Institute of Standards and Technology (NIST) for roadmaps and best practices in cybersecurity. Since the original NIST framework was first released in 2013, a refresh was much needed. “NIST was getting a little long in the tooth,” expressed Simon George, an independent cybersecurity specialist in Los Angeles. “NIST has largely been the roadmap for critical infrastructure. The upgrade expands NIST’s purview to include all verticals, not just critical ones. With t ..read more

A market forecast report, published by Meticulous Research, shows the global managed cloud services market is projected to grow 14.2 percent on a compound annual basis to reach $247.5 billion in revenue by 2030. According to the report, much of that increase will be driven by lowering the bar to cloud adoption and increased demands for cloud services from the banking, financial services, and insurance sectors, as well as healthcare organizations that still run most of their applications in on-premises IT environments. Additionally, there will be significant opportunities to integrate cloud c ..read more

Have you heard about the latest Barracuda Email Protection Plans available to MSP partners? These tested and proven plans are designed to help MSPs scale their business while meeting customers’ email security needs. With today’s evolving cyberthreats, it is imperative that our protection evolves as well. Barracuda has designed a three-tier email protection package that allows you to easily protect customers’ mailboxes, users, and data against email and web threats. Below are some of the key benefits of these plans. Comprehensive threat prevention  Consolidate and simplify your security ..read more

In this edition of Tech Time Warp we go back to April 14, 1995, when the Chinese government began widespread efforts to stop its government agencies from using pirated software. The move came after a Feb. 27, 1995, accord agreement between the U.S. and China in which government officials announced enhanced copyright enforcement measures, including evidence-collecting task forces, increased ability for Chinese customs officers to search for and destroy pirated materials, and removal of quotas on American film imports. According to The New York Times, U.S. officials considered it the “most com ..read more

The cybersecurity talent shortage in the workforce presents a direct cybersecurity threat. Statistics from the National Institute of Standards and Technology (NIST) paint a grim picture: By 2025, a lack of talent or human failure will be responsible for over half of significant cybersecurity incidents. There is currently a global shortage of 3.4 million cybersecurity professionals. According to NIST, some of the most acute shortages include: Cloud security Cyberthreat intelligence Malware analysis The cybersecurity shortage has hit managed service providers (MSPs) especially hard. Skilled ..read more

This Cybersecurity Threat Advisory details the exploitation of the critical vulnerability CVE-2023-22518 in the Atlassian Confluence Data Center and Server. Attackers are deploying a Linux variant of Cerber (aka C3RB3R) ransomware. This allows unauthenticated attackers to reset Confluence and create administrator accounts, granting them complete control over affected systems. Continue reading to learn how to keep your systems safe. What is the threat? CVE-2023-22518 is being exploited to gain a foothold on the targeted Atlassian Confluence application servers. This critical vulnerability allo ..read more

The volume of applications deployed in the cloud continues to increase steadily. More organizations are looking to contain costs but are finding they lack the skills and expertise needed. A survey of over 400 cloud and data decision-makers conducted by Forrester Consulting on behalf of Boomi, finds nearly three quarters (72 percent) exceeded their cloud budgets last fiscal year, with 22 percent now making reducing cloud spending a priority. Overall, respondents admit they can’t account for 40 percent of spending on cloud services. Primary reasons for being over budget include excessive storag ..read more