Cyber Security News

Corrine Jefferson · 12 May 2026

Three stories this week that every UK small business owner needs to hear. One phishing email. Twenty months undetected. One million pounds.

Corrine Jefferson · 6 May 2026

WordPress sites can be taken over without a password. A Linux root exploit is being actively weaponised. And a nation-state group is still walking through Exchange servers that weren't patched in 2021.

Corrine Jefferson · 5 May 2026

cPanel is on CISA's active exploit list. MOVEit has a new authentication bypass. Your cheap router may already be compromised. Here is what matters today.

Corrine Jefferson · 29 April 2026

Russian state hackers are in your Windows machine without a click. Five router flaws scored 9.8 overnight. This week's threat brief cuts through the noise.

Noel Bradford · 26 April 2026

Cyber Essentials v3.3 goes live tomorrow. MFA and patching become auto-fail questions. Cloud services cannot be scoped out. Buckle up.

Noel Bradford · 26 March 2026

Another European government department has taken a hit. If you think that is somebody else’s problem, think harder. The Dutch Finance Ministry breach is a warning shot for every UK organisation that still believes attackers only care about the big glamorous targets.

Noel Bradford · 25 March 2026

Authorities disrupted four major IoT botnets tied to record breaking DDoS attacks, but the real issue is closer to home. Cheap cameras, routers, DVRs, and forgotten smart devices still sit on business networks with weak ownership, poor patching, and laughable security. If you run a UK business, this is not just a botnet story. It is a warning about edge kit, supplier sprawl, and the junk quietly hanging off your network right now.

Noel Bradford · 25 March 2026

If you have a QNAP router humming away in a cupboard and nobody has looked at it in months, this story is for you. QNAP has patched critical QuRouter flaws, and the bigger issue is not just the bugs. It is the number of businesses that forget the edge device exists until it bites them.

Noel Bradford · 24 March 2026

Today’s hot cyber security story is not subtle. Citrix has patched a critical NetScaler flaw, NHS England has already put out an alert, and any UK organisation using vulnerable NetScaler kit needs to move now. If your remote access stack includes NetScaler, this is your wake up call.

Noel Bradford · 24 March 2026

A trusted security tool got turned into a thief. That is the part people keep missing. The Trivy supply chain attack is not just a developer story. It is a board level lesson in what happens when your pipeline trusts tags, tokens and wishful thinking.