Threats & Attacks
Threat Analysis: Oracle EBS Under Active Exploitation and the DriveSurge Drive-By Campaign, What UK SMBs Need to Know Mauven MacLeod · 29 June 2026
Oracle's E-Business Suite is being actively exploited right now. And a new initial access broker is turning legitimate websites into malware delivery points.
Read more → Social Engineering
The UK's Open Book: How Public Data Turns Directors Into Targets Noel Bradford · 29 June 2026
Companies House, the open electoral register, and LinkedIn combine into a director profile any attacker can build in under 20 minutes. Here is the full picture.
Read more → Cyber Security News
The Week Ahead: Stop Treating KEV Like a Newsletter Mauven MacLeod · 28 June 2026
KEV is not interesting. It is known exploited. Turning the catalogue into a five-minute weekly check is the cheapest security upgrade most SMBs can make.
Read more → Opinion
Green Is Not Safe: The Dashboard Lie Noel Bradford · 27 June 2026
Green boxes and vibes have become the native language of weak assurance. A dashboard that cannot tell busy from dangerous is not security. It is confetti.
Read more → Case Study
When the Patch Was Not Enough: An Accountability Audit Lucy Harper · 26 June 2026
The patch closed the hole. Attackers got in through a new one. The real failure was not technical. It was the absence of anyone watching the edge.
Read more → Threats & Attacks
Threat Analysis: Mini Shai-Hulud and CVE-2026-20245 - What UK SMBs Need to Know Mauven MacLeod · 26 June 2026
Today's focus: Supply chain attacks on npm packages and active zero-day exploitation in Cisco SD-WAN. Crucial for UK SMBs.
Read more → Threats & Attacks
Critical Vulnerabilities Impacting UK SMBs: WordPress Plugins and Cisco Exploits Corrine Jefferson · 25 June 2026
WordPress plugin flaws and a Cisco exploit are high-risk for UK SMBs. Urgent updates recommended.
Read more → Threats & Attacks
Threat Analysis: New Backdoor and FortiGate Campaign Uncovered, What SMBs Need to Know Mauven MacLeod · 25 June 2026
Exploring recent threats: a new backdoor may be linked to ransomware, and a large-scale FortiGate campaign affects security.
Read more → Practical Advice
Ten Questions to Ask Your IT Provider This Week Graham Falkner · 25 June 2026
You do not need to understand SAML or KEV. You need to ask grown-up questions and expect plain-English answers. Here are ten of them.
Read more → Threats & Attacks
Threat Analysis: Mistic Backdoor and KongTuke Broker, What UK SMBs Need to Know Mauven MacLeod · 24 June 2026
UK SMBs must be aware: Mistic backdoor linked to ransomware broker is active. What this means for your security.
Read more → Threats & Attacks
Critical Vulnerabilities: What UK SMEs Need to Know Now Corrine Jefferson · 24 June 2026
Lantronix and UniFi OS vulnerabilities demand immediate attention from UK SMEs to prevent breaches.
Read more → Threats & Attacks
What the Fortinet Bypass Tells Us About Trusting the Edge Corrine Jefferson · 24 June 2026
An authentication bypass leaves a quiet signal: admin activity, not exploit traffic. Most small businesses are not watching for it.
Read more → Threats & Attacks
Why Ignoring These Critical Vulnerabilities Could Sink Your SMB Corrine Jefferson · 23 June 2026
Ignoring IBM Langflow and WordPress plugin threats could sink your SMB. Here's what you need to know.
Read more → Network Security
Defence in Depth Is Not a Bundle You Can Buy Mauven MacLeod · 23 June 2026
Buying a firewall, endpoint protection, and a backup product is not Defence in Depth. It is a collection of controls. The difference matters.
Read more → Threats & Attacks
Threat Analysis: Klue Supply Chain Attack and Five Eyes Warning Mauven MacLeod · 23 June 2026
Klue's Salesforce breach affects UK SMBs. Dive into supply chain vulnerabilities and AI risks.
Read more → Podcast
Your Firewall Won't Save You From Being Badly Run Noel Bradford · 22 June 2026
A firewall cannot save you from weak governance, stale admin accounts, or untested backups. This week's podcast explains why.
Read more → Threats & Attacks
Threat Analysis: Key UK Cyber Threats, Strategic Insights for 2026 Mauven MacLeod · 22 June 2026
Analysing key cyber threats affecting UK businesses today. From supply chain attacks to AI risks, stay informed.
Read more → Security Controls
UK Small Business Cybersecurity: Don't Ignore These Vulnerabilities Corrine Jefferson · 22 June 2026
Legacy routers infected by AryStinger show why UK SMBs need to update their network security.
Read more → Threats & Attacks
Threat Analysis: npm Supply Chain Surge and Splunk Under Active Exploit, What UK SMBs Need to Know Mauven MacLeod · 19 June 2026
Your developers' tools and your logging stack are both under active attack today. Here is what is actually happening and what to do about it.
Read more → Podcast
INC Ransomware, DragonForce in Teams, and a Splunk Zero-Day: Your UK SMB Threat Briefing for 19 June 2026 Corrine Jefferson · 19 June 2026
Three threats that landed overnight. One is actively exploited right now. Here is what UK small businesses need to know before Friday.
Read more →