top of page
TrustPoint Blog
Critical security information & helpful tips for small and mid sized organizations.
DEPENDABLE
FLEXIBLE
EXPERIENCED
Your Firewall Could Be the Hacker’s Front Door
At TrustPoint IT Solutions, we keep a close eye on the threats hitting businesses like yours, and there's a troubling pattern we need to talk about. The very devices designed to protect your network — firewalls, VPNs, and load balancers sitting at the edge of your business — are increasingly being used as the way in for attackers. A recent investigation revealed a sophisticated, multi-stage attack where hackers compromised a popular network appliance, used it to slip into a c
Nik Lipor
May 274 min read
Critical CrowdStrike Vulnerability Puts Self-Hosted Environments at Risk – Here’s What You Need to Do Now
CrowdStrike LogScale has become one of the a go-to solutions for many organizations that need real-time visibility into their environments. But a newly disclosed critical vulnerability is a stark reminder that even the most trusted tools can introduce serious risk if left unpatched—especially in self-hosted deployments. This issue, tracked as CVE-2026-40050, carries a CVSS score of 9.8 (Critical). It affects LogScale Self-Hosted GA versions 1.224.0 through 1.234.0 and LTS ver
Nik Lipor
Apr 223 min read
New Malware Steals Password & Ignores MFA
A new strain of password-stealing malware is raising serious concerns for businesses by targeting the very tools employees rely on every day—web browsers like Chrome, Edge, and Firefox. This threat is designed to quietly extract stored credentials, session cookies, and authentication data directly from the browser, giving attackers access to accounts without needing to “hack” passwords in the traditional sense. Because modern browsers often store login sessions and autofill c
Nik Lipor
Apr 61 min read
Fortinet Critical Vulnerability: API authentication and authorization bypass
A critical vulnerability has been identified in Fortinet security appliances that could allow attackers to gain unauthorized access to systems without proper authentication. In certain configurations, this flaw can be exploited to bypass login protections, effectively allowing a threat actor to impersonate a legitimate user or gain access without valid credentials. Because these devices are typically deployed at the edge of a network—protecting internet traffic, VPN access, a
Nik Lipor
Apr 51 min read
The Rise of Automated Credential Theft
A newly observed cyberattack campaign is highlighting just how quickly modern vulnerabilities can be weaponized at scale. Attackers are exploiting a critical flaw in widely used web applications to gain unauthorized access to systems, allowing them to execute commands remotely and extract sensitive data. What makes this especially dangerous is how simple the initial attack can be—requiring only a specially crafted request to gain entry into vulnerable environments. Once insid
Nik Lipor
Apr 51 min read
When Email Stops Flowing: Outlook Issues Impact Business Communication
Email remains one of the most critical communication tools for businesses, but recent issues affecting the classic version of Microsoft Outlook have highlighted how fragile that dependency can be. Some users have experienced problems sending emails, receiving non-delivery errors, or finding that messages never reach their intended recipients. In certain cases, these issues are tied to account configurations—particularly when Outlook profiles are connected to multiple accounts
Nik Lipor
Apr 51 min read
The Network Threat You Can’t See: Why Routers Are Under Scrutiny
The U.S. government has taken a significant step to address cybersecurity risks by restricting the approval and sale of new consumer-grade internet routers that are manufactured outside the country. This policy, driven by the Federal Communications Commission (FCC), is rooted in growing concerns that foreign-made networking equipment could expose American homes, businesses, and critical infrastructure to cyber threats. Officials have pointed to past incidents where vulnerabil
Nik Lipor
Mar 252 min read
FortiGate Firewalls Being Used as Entry Points for Cyber Attacks
Cybersecurity researchers are warning that attackers are actively targeting Fortinet FortiGate firewall devices as a way to break into corporate networks. In recent incidents, threat actors exploited vulnerabilities or weakly secured devices to gain access and extract sensitive configuration files directly from the firewall. These configuration files often contain valuable information such as network topology and service account credentials, which can give attackers insight i
Nik Lipor
Mar 102 min read
Blog Post: Apple Devices Targeted by Actively Exploited Vulnerabilities
Security officials are warning organizations and individuals about several vulnerabilities affecting Apple devices, including macOS, iOS, and iPadOS, that are currently being exploited in real-world cyberattacks. The vulnerabilities were recently added to the Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities catalog, signaling that attackers are actively leveraging these flaws against targets. When vulnerabilities reach this list, it ty
Nik Lipor
Mar 91 min read
Address
2310 S. Green Bay Rd
Suite C #281
Racine, WI 53406
Connect
bottom of page