From the Blog

Assurance
Peter Bassill

Chubb Cyber Ransomware Attack

Chubb Cyber Ransomware Attack? Really? Well yes. It seem that, according the operations of Maze Ransomware, there really was a Chubb Cyber Ransomware Attack.

Read More »
General Electric Breach
Data Protection
Peter Bassill

General Electric Breach

In a surprising announcement Fortune 500 technology giant General Electric (GE), an organisation that should have this all sown up, disclosed that personally identifiable information of current and former employees, as well as beneficiaries, was exposed in a security incident experienced by one of GE’s service providers. Shock, Horror, Information Security in the supply chain yet again.

Read More »
News
Michael Aguilera

Cisco’s recent update fixes high-severity flaws

Cisco has recently uncovered hidden flaws which if exploited could lead to privileged code execution. These flaws are found within Cisco’s SD-WAN devices which include their vBond and vSmart controllers along with their vManage Network Management system and vBond Orchestrator software. Other devices that are affected by this vulnerability are Cisco’s vEdge routers. “Cisco has

Read More »
Data Protection
Peter Bassill

NutriBullet Hack

NutriBullet has become the latest Magecart victim with skimmer code planted within their domain in order to steal customer financial data. RiskIQ published their research on Wednesday of this week, and it make very good reading.

Read More »
Data Protection
Peter Bassill

MCA Wizard Databreach

A large volume of what is most certainly sensitive and confidential information relating to two financial companies has been found exposed online in the latest case of sysadmin or developer mistake.

Read More »
News
Peter Bassill

Ecclesiastical issues cybercrime warning

Sat enjoying my early morning cup of coffee, as is my want most mornings, when I got an article alert through Linkedin that piqued my interest. “Too complacent,” is how specialist insurer Ecclesiastical describes charities when it comes to cybercrime risk. Thats a heck of a statement to make, but it is correct. According to the research

Read More »
Assurance
Thomas Wood

Intel Vulnerability Enables Multiple Issues

Intel is warning users of a high severity flaw found within their firmware of it’s ‘Converged Security and Management Engine’ (CSME) which is used to power Intel’s ‘Active Management System’ hardware for the purpose of remote out-of-band management to consumers. This flaw could enable an attacker to conduct Privilege Escalation, Information Disclosure and Denial of Service.

Read More »
Data Protection
Thomas Wood

Dell SupportAssist-ing Hackers

A recent vulnerability found in Dell’s SupportaAssist software found that if exploited correctly can lead to code execution for unprivileged users. This is known as an uncontrolled search path vulnerability (CVE-2020-5316).

Read More »
News
Michael Aguilera

Android Bluetooth Critical RCE Flaw

A recent vulnerability was found by researchers from a German security firm. Fixes are available via the Android February 2020 Security Bulletin. The bug is identified as CVE-2020-002; when exploited can result in remote-code-execution without any user interaction with elevated privileges.

Read More »
Data Protection
Thomas Wood

WhatsApp? WhatsPatch? WhatsCrack? | WhatsApp Critical Flaw

A security researcher by the name of Gal Weizman from PerimeterX found multiple flaws within WhatsApp that could potentially lead to remote-code-execution (RCE). The flaws enabled vulnerabilities such as Open-Redirect, Persistent-XSS, CSP-Bypass and read privileges from the Local File System (LFS).

Read More »
Data Protection
Thomas Wood

Google Exposed Personal Photos

It has recently been reported that not long ago, last Thanksgiving, Google had a bug which caused personal photos to be shared to complete strangers. ‘The Chocolate Factory’ made note of this issue and began notifying users that there is a bug in Google Photos data-archiving tool, Takeout.

Read More »
Scroll to Top

Covid-19 Update

We Remain Open

At this present time we have taken all the relevant measures to ensure our team are safe. Until further notice all our “onsite” engagements will either be postponed or performed remotely via VPN or one of our appliances.

Please bear with us if we need to reschedule some of your work. As a collective, we are also volunteering our time to support the elderly and assist essential services.

Thank you for your patience and understanding.

Peter
CEO & Founder