For smaller organisations updating network devices is often overlooked. CISA is warning of a flaw in Zyxel firewalls that is being actively exploited by hackers even though the vendor issued patches for the vulnerability over a month ago! CISA Adds One Known Exploited Vulnerability to Catalog | CISA Hackers exploit …
Amazon IoT cyber security is not that good
Devices designed for the Internet-of-Things (IoT) have a history of issues when it comes to cyber security – which is why the UK Government has the  Product Security and Telecommunications Infrastructure Act (PSTI) under consideration. However when buying IoT equipment, for installation in your home or office, you would expect Amazon …
Continue reading “Amazon IoT cyber security is not that good”
The Capita hack keep gathering victims
Capita is the largest outsourcing company in the UK and counts among it’s contracts the UK Government, the Ministry of Defence, local authorities and businesses. When Capita’s security was breached it was going to lead to an ever increasing list of victims as the investigation proceeded. Capita hack: 90 organisations …
MOVEit secure file transfer compromised
A security advisory and advice has been issued by Progress for their popular secure file transfer software MOVEit. The flaw could give elevated privileges to threat actors to exfiltrate information that the client considers secure, without the client detecting the activity. Progress Software Releases Security Advisory for MOVEit Transfer | …
WordPress JetPack and Gravity Forms vulnerable
Just before I write this I am going to alert our web team so they can check our clients have the WordPress patch installed and if not get it done for them… The WordPress JetPack is a useful add-on for WordPress websites that provides a range of extra functionality – …
Continue reading “WordPress JetPack and Gravity Forms vulnerable”
