Microsoft SharePoint Attacks: What Your Business Needs to Know
A new wave of cyber attacks targeting Microsoft SharePoint has left many businesses exposed, according to multiple threat reports this week. Attackers are actively exploiting…
Important Security Alert: Issue Found in React (Common Website Technology)
A serious security fault has been discovered in a piece of software called React, which many websites and online services use behind the scenes.
This fault could allow criminals to run harmful code on a server without needing a password or any special access. In other words, a hacker could potentially break in remotely.
The issue sits withing something called React Server Components. Even organisations that aren’t knowingly using these components may still be affected, depending on how their website or app has been built.
The team behind React has released updates to fix the problem and has advised all organisations to update as soon as possible.
What organisations should do
- Speak with your web developer, IT provider, or hosting company urgently.
- Ask them to confirm whether your website or product uses React, and if so, whether it has been updated to the latest secure version.
- If they are unsure, encourage them to check the React security notice and apply the update.
If you need support understanding this risk, or want guidance, our team is here to help. Further details on the vulnerability can be found here – Critical Security Vulnerability in React Server Components – React.
Related articles
Microsoft 365: Legacy Authentication Protocols Security Update
Starting in mid-July 2025, Microsoft will begin automatically blocking legacy authentication protocols in Microsoft 365, with full enforcement expected by August 2025. This update addresses…
EchoLeak: Critical Zero-Click Vulnerability in Microsoft 365 Copilot
A critical security vulnerability discovered in Microsoft 365 Copilot highlights that there is a risk associated with AI-powered business tools that we must continue to…