Trusted Cyber Security Experts
25+ Years Industry Experience
Ethical, Professional & Pragmatic
F5 Discloses Nation-State Intrusion While Stating Operations Remain Unaffected
F5 has disclosed that a nation-state threat actor gained unauthorised access to parts of its internal environment, prompting a coordinated incident response that the company says prevented impact to customer-facing
OpenAI Disrupts State-Linked Misuse of ChatGPT for Cyberattacks
OpenAI has revealed that it disrupted three coordinated operations by state-linked actors from Russia, North Korea and China who attempted to exploit ChatGPT to assist in developing malware, conducting phishing
DeepSeek Data Leak: How a Simple Security Flaw Exposed Over a Million Records
In January 2025, the cybersecurity community was alerted to a significant data exposure involving DeepSeek, a prominent Chinese artificial intelligence (AI) startup. Researchers from Wiz, a cloud security firm, discovered
Latest Industrial Control System Advisories from CISA
The Cybersecurity and Infrastructure Security Agency (CISA) released six advisories this month addressing vulnerabilities in Industrial Control Systems (ICS). These advisories highlight critical flaws that could be exploited to compromise
Critical UEFI Secure Boot Vulnerability (CVE-2024-7344)
Recently, cybersecurity researchers uncovered a severe vulnerability within the Unified Extensible Firmware Interface (UEFI) Secure Boot system, tracked as CVE-2024-7344. This flaw allows attackers to bypass Secure Boot protections, enabling
How EagerBee is Redefining Cyber Espionage in the Middle East
In early January 2025, cybersecurity researchers uncovered a sophisticated cyber espionage campaign targeting Internet Service Providers (ISPs) and government entities in the Middle East. At the centre of this campaign
FunkSec: The Emergence of AI-Driven Ransomware Threats
In late 2024, a new ransomware group known as FunkSec emerged, leveraging artificial intelligence (AI) to enhance their cybercriminal activities. By January 2025, they had targeted over 85 organisations worldwide,
Palo Alto Networks PAN-OS RCE Vulnerability (CVE-2024-5910)
Palo Alto Networks has issued an urgent advisory to its customers, highlighting a potential remote code execution (RCE) vulnerability within the PAN-OS management interface. The cybersecurity firm advises organisations to
Critical VMware vCenter Server Vulnerability (CVE-2024-38812) Poses Serious Risk
The CVE-2024-38812 vulnerability is a critical flaw that exposes VMware vCenter Servers to serious security risks, including remote code execution and full system compromise. Organisations using VMware’s virtualisation tools must
Critical Microsoft SharePoint Vulnerability (CVE-2024-38094) Creates Remote Code Execution Threat
The recently disclosed vulnerability, CVE-2024-38094, in Microsoft SharePoint presents a significant threat to organisations by allowing attackers to execute remote code on compromised servers. This flaw stems from improper input
Nation-State Attackers Exploiting Critical Infrastructure: A Growing Threat
Nation-state cyberattacks on critical infrastructure are becoming increasingly sophisticated and destructive, as highlighted by recent reports. In October 2024, attackers began exploiting vulnerabilities in Ivanti software used by critical sectors,
Apple Patches VoiceOver Bug That Could Read Passwords Aloud
Apple has recently addressed a significant vulnerability in its VoiceOver feature that raised privacy concerns for iPhone and iPad users. The flaw, identified as CVE-2024-44204, allowed the VoiceOver accessibility tool
Subscribe to our monthly newsletter today
If you’d like to stay up-to-date with the latest cyber security news and articles from our technical team, you can sign up to our monthly newsletter.
We hate spam as much as you do, so we promise not to bombard you with emails. We’ll send you a single, curated email each month that contains all of our cyber security news and articles for that month.