Preparing for a Cyber Incident
Figures from the Cyber Security Breaches Survey show that 39% of UK organisations identified a cyber attack in the last 12 months. Clearly, no organisation…
Month: January 2023
Latest News and Updates From the Community
Use the filters to focus on certain months, sectors, or departments.
Filter articles
Critically vulnerable WordPress plugin ‘LearnPress’ version still used in over 75 thousand websites
Description: Security researchers at Patchstack have published research detailing multiple vulnerabilities within the popular WordPress plugin LearnPress, a free learning management system plugin for WordPress that allows site…
Scams targeting hospitality sector
Information provided by the City of London Police has advised that analysis of crime reports by the National Fraud Intelligence Bureau reveals that the hospitality…
Working four days could close tech skills gap, finds the Cyber and Fraud Centre – Scotland
Following a nine-month trial of a four-day working week, the Cyber and Fraud Centre – Scotland (Formally SBRC) has made the new working schedule official,…
Over 4,000 internet-facing Sophos Firewalls found to be still vulnerable to remote code execution bug disclosed in September 2022
Description: In September 2022, Sophos released a security advisory warning of a critical remote code execution vulnerability that had been seen exploited in the wild….
Threat actors spreading malware using Google Ads campaigns
Description: A recent rise in malware spreading through Google Ads has been noted by security researchers, with the impersonation campaigns affecting multiple software brands, such…
Microsoft’s January 2023 Patch Tuesday addresses 11 critical vulnerabilities, with one actively exploited
Description: Microsoft’s first Patch Tuesday of 2023 fixes 98 vulnerabilities, 11 of which have a critical CVSS severity rating. Of the 98, only one of the vulnerabilities…
Cisco warns of critical authentication bypass vulnerability in End-of-Life small business routers
Description: Cisco has published a security advisory warning of a critical vulnerability in multiple End-Of-Life (EoL) routers that could allow a remote attacker to bypass authentication or…
Twitter Data Breach
On the 5th of January, I woke up to an unfortunately common email from the website HaveIBeenPwned. They provide a free service which tells you if…