I'm a proud supporter of Mind, the UK's leading mental health charity. Please consider donating to Mind to support their mission on World Mental Health Day. Visit mind.org.uk/wmhd.
October 10, 2025 at 7:15 AM
I'm a proud supporter of Mind, the UK's leading mental health charity. Please consider donating to Mind to support their mission on World Mental Health Day. Visit mind.org.uk/wmhd.
#SolarWinds customers take note:
"SolarWinds has released a hotfix for a critical a critical vulnerability in Web Help Desk that allows remote code execution (RCE) without authentication."
Don't delay, get those patches deployed ASAP!
www.bleepingcomputer.com/news/securi...
"SolarWinds has released a hotfix for a critical a critical vulnerability in Web Help Desk that allows remote code execution (RCE) without authentication."
Don't delay, get those patches deployed ASAP!
www.bleepingcomputer.com/news/securi...
SolarWinds releases third patch to fix Web Help Desk RCE bug
SolarWinds has released a hotfix for a critical a critical vulnerability in Web Help Desk that allows remote code execution (RCE) without authentication.
www.bleepingcomputer.com
September 23, 2025 at 6:00 PM
#SolarWinds customers take note:
"SolarWinds has released a hotfix for a critical a critical vulnerability in Web Help Desk that allows remote code execution (RCE) without authentication."
Don't delay, get those patches deployed ASAP!
www.bleepingcomputer.com/news/securi...
"SolarWinds has released a hotfix for a critical a critical vulnerability in Web Help Desk that allows remote code execution (RCE) without authentication."
Don't delay, get those patches deployed ASAP!
www.bleepingcomputer.com/news/securi...
PSA: Just because an app is listed on the Google Play Store, it doesn't mean it's trustworthy.
"Seventy-seven malicious #Android apps with more than 19 million installs were delivering multiple malware families to Google Play users."
www.bleepingcomputer.com/news/securi...
"Seventy-seven malicious #Android apps with more than 19 million installs were delivering multiple malware families to Google Play users."
www.bleepingcomputer.com/news/securi...
Malicious Android apps with 19M installs removed from Google Play
Seventy-seven malicious Android apps containing different types of malware were found on Google Play after being downloaded more than 19 million times.
www.bleepingcomputer.com
August 26, 2025 at 7:24 PM
PSA: Just because an app is listed on the Google Play Store, it doesn't mean it's trustworthy.
"Seventy-seven malicious #Android apps with more than 19 million installs were delivering multiple malware families to Google Play users."
www.bleepingcomputer.com/news/securi...
"Seventy-seven malicious #Android apps with more than 19 million installs were delivering multiple malware families to Google Play users."
www.bleepingcomputer.com/news/securi...
Update your #Apple devices now!
"Apple has released emergency updates to patch another zero-day vulnerability that was exploited in an "extremely sophisticated attack."
www.bleepingcomputer.com/news/apple/...
"Apple has released emergency updates to patch another zero-day vulnerability that was exploited in an "extremely sophisticated attack."
www.bleepingcomputer.com/news/apple/...
Apple fixes new zero-day flaw exploited in targeted attacks
Apple has released emergency updates to patch another zero-day vulnerability that was exploited in an "extremely sophisticated attack."
www.bleepingcomputer.com
August 20, 2025 at 8:27 PM
Update your #Apple devices now!
"Apple has released emergency updates to patch another zero-day vulnerability that was exploited in an "extremely sophisticated attack."
www.bleepingcomputer.com/news/apple/...
"Apple has released emergency updates to patch another zero-day vulnerability that was exploited in an "extremely sophisticated attack."
www.bleepingcomputer.com/news/apple/...
A hard-coded single character #password of "b" is incredibly insecure, but also very funny. How does this happen in an modern enterprise application? Reminds me of the 90s!
thehackernews.com/2025/06/har...
thehackernews.com/2025/06/har...
Hard-Coded 'b' Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments
Three flaws in Sitecore XP v10.1+ let attackers gain remote access using default credentials—impacting banks, airlines, and global enterprises
thehackernews.com
June 24, 2025 at 3:42 PM
A hard-coded single character #password of "b" is incredibly insecure, but also very funny. How does this happen in an modern enterprise application? Reminds me of the 90s!
thehackernews.com/2025/06/har...
thehackernews.com/2025/06/har...
Interesting read for my fellow cyber geeks :)
"The potential impact is massive in scale, and the malware's persistence mechanism is particularly concerning – attackers maintain access to infected machines even after maintainers update the packages,"
thehackernews.com/2025/06/new...
"The potential impact is massive in scale, and the malware's persistence mechanism is particularly concerning – attackers maintain access to infected machines even after maintainers update the packages,"
thehackernews.com/2025/06/new...
New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally
Supply chain attack infects 16 GlueStack npm packages used by 1M weekly users, enabling malware that steals data and controls systems.
thehackernews.com
June 8, 2025 at 3:06 PM
Interesting read for my fellow cyber geeks :)
"The potential impact is massive in scale, and the malware's persistence mechanism is particularly concerning – attackers maintain access to infected machines even after maintainers update the packages,"
thehackernews.com/2025/06/new...
"The potential impact is massive in scale, and the malware's persistence mechanism is particularly concerning – attackers maintain access to infected machines even after maintainers update the packages,"
thehackernews.com/2025/06/new...
How is this even legal? People who purchased a "lifetime" subscription from #VPNSecure are now being told they need to pay more to continue using the service. My advice is to switch to a new provider...
www.techspot.com/news/107896...
www.techspot.com/news/107896...
VPN service cancels customers' lifetime subscriptions after takeover, says new owners didn't know they existed
In an email posted on Reddit from "The VPN Secure Team" sent to lifetime subscription holders, it's explained that VPNSecure was acquired in 2023. The deal included...
www.techspot.com
May 13, 2025 at 2:40 PM
How is this even legal? People who purchased a "lifetime" subscription from #VPNSecure are now being told they need to pay more to continue using the service. My advice is to switch to a new provider...
www.techspot.com/news/107896...
www.techspot.com/news/107896...
No matter how bad you mess up at work, at least it (probably) didn't cost your employer 530 million Euros.
The money from #GDPR fines should be used to invest in tech startups in Europe with the goal of reducing US dominance.
thehackernews.com/2025/05/tik...
The money from #GDPR fines should be used to invest in tech startups in Europe with the goal of reducing US dominance.
thehackernews.com/2025/05/tik...
TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China
TikTok fined €530M for illegally transferring EEA user data to China, violating GDPR Article 46(1).
thehackernews.com
May 4, 2025 at 2:53 PM
No matter how bad you mess up at work, at least it (probably) didn't cost your employer 530 million Euros.
The money from #GDPR fines should be used to invest in tech startups in Europe with the goal of reducing US dominance.
thehackernews.com/2025/05/tik...
The money from #GDPR fines should be used to invest in tech startups in Europe with the goal of reducing US dominance.
thehackernews.com/2025/05/tik...
We are now supporting TreeApp in their mission to fight deforestation. They have planted over 450 million trees around the world. It's incredibly important work and I'm hoping we can contribute hundreds more trees this year to their ever growing total.
www.thetreeapp.org
www.thetreeapp.org
Treeapp | Tree Planting
Treeapp enables anyone to plant trees in the regions that need it most across the world. Absorb your carbon footprint and regrow the worlds’ most needed forests, today.
www.thetreeapp.org
April 28, 2025 at 11:31 AM
We are now supporting TreeApp in their mission to fight deforestation. They have planted over 450 million trees around the world. It's incredibly important work and I'm hoping we can contribute hundreds more trees this year to their ever growing total.
www.thetreeapp.org
www.thetreeapp.org
Considering the uncertain future of the #cve program and the general chaos of 2025 so far, I wouldn't be surprised if the US gov proposes basing risk scores solely on the movement of random celestial objects.
www.theregister.com/2025/04/18/...
www.theregister.com/2025/04/18/...
The splintering of a standard bug tracking system has begun
Comment: MITRE, EUVD, GCVE … WTF?
www.theregister.com
April 22, 2025 at 12:35 PM
Considering the uncertain future of the #cve program and the general chaos of 2025 so far, I wouldn't be surprised if the US gov proposes basing risk scores solely on the movement of random celestial objects.
www.theregister.com/2025/04/18/...
www.theregister.com/2025/04/18/...
"Google on Wednesday revealed that it suspended over 39.2 million advertiser accounts in 2024, with a majority of them identified and blocked by its systems before it could serve harmful ads to users."
Should charge a sign-up fee for #GoogleAds accounts
thehackernews.com/2025/04/goo...
Should charge a sign-up fee for #GoogleAds accounts
thehackernews.com/2025/04/goo...
Google Blocked 5.1B Harmful Ads and Suspended 39.2M Advertiser Accounts in 2024
Google blocked 5.1B bad ads and suspended 39.2M advertiser accounts in 2024 using AI to fight scams.
thehackernews.com
April 21, 2025 at 1:29 PM
"Google on Wednesday revealed that it suspended over 39.2 million advertiser accounts in 2024, with a majority of them identified and blocked by its systems before it could serve harmful ads to users."
Should charge a sign-up fee for #GoogleAds accounts
thehackernews.com/2025/04/goo...
Should charge a sign-up fee for #GoogleAds accounts
thehackernews.com/2025/04/goo...
We just signed up for our annual organisation membership of the National Autistic Society. Please consider supporting them this #autismacceptancemonth
www.autism.org.uk/get-involve...
www.autism.org.uk/get-involve...
Membership
Join today to receive Your Autism magazine, access our members Facebook group and attend our AGM. Whether youre autistic or support an autistic person, youll be welcomed into our membership community.
www.autism.org.uk
April 17, 2025 at 12:32 PM
We just signed up for our annual organisation membership of the National Autistic Society. Please consider supporting them this #autismacceptancemonth
www.autism.org.uk/get-involve...
www.autism.org.uk/get-involve...
This is terrible news. Not particularly surprising though, given the current state of things.
www.theregister.com/2025/04/16/...
#cve #infosec
www.theregister.com/2025/04/16/...
#cve #infosec
Homeland Security funding for CVE program expires
: Because vulnerability management has nothing to do with national security, right?
www.theregister.com
April 16, 2025 at 11:25 AM
This is terrible news. Not particularly surprising though, given the current state of things.
www.theregister.com/2025/04/16/...
#cve #infosec
www.theregister.com/2025/04/16/...
#cve #infosec
Timely reminder to enable multi-factor authentication for your social media accounts! #Phishing #CryptoScams
www.bbc.co.uk/news/articl...
www.bbc.co.uk/news/articl...
Minister Lucy Powell's X account hacked to promote crypto scam
The MP's office says "steps were taken quickly to secure the account and remove misleading posts".
www.bbc.com
April 15, 2025 at 12:58 PM
Timely reminder to enable multi-factor authentication for your social media accounts! #Phishing #CryptoScams
www.bbc.co.uk/news/articl...
www.bbc.co.uk/news/articl...
Heads up for FortiGate admins using SSL VPNs:
"...threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched."
#Fortigate #Fortinet
thehackernews.com/2025/04/for...
"...threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched."
#Fortigate #Fortinet
thehackernews.com/2025/04/for...
Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit
Fortinet warns attackers used symlink exploits to retain access post-patch, prompting urgent FortiOS updates and SSL-VPN mitigations.
thehackernews.com
April 14, 2025 at 11:02 AM
Heads up for FortiGate admins using SSL VPNs:
"...threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched."
#Fortigate #Fortinet
thehackernews.com/2025/04/for...
"...threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched."
#Fortigate #Fortinet
thehackernews.com/2025/04/for...
Walk together for a more inclusive world this #AutismAcceptanceMonth. Participate in a 5k walk this April and show your support for autistic individuals and their families. Learn more & register: waam.autism.org.uk/walk-5k-thi...
Walk 5k this April
Celebrate World Autism Acceptance Month in April 2025 by organising your own 5k sponsored Walk at a time and place that suits you.
waam.autism.org.uk
April 10, 2025 at 12:54 PM
Walk together for a more inclusive world this #AutismAcceptanceMonth. Participate in a 5k walk this April and show your support for autistic individuals and their families. Learn more & register: waam.autism.org.uk/walk-5k-thi...
Only 26% of autistic pupils feel happy at school. Support the National Autistic Society to help autistic children have a happy and fulfilled time at school.
#AutismAcceptanceMonth
waam.autism.org.uk/
#AutismAcceptanceMonth
waam.autism.org.uk/
World Autism Acceptance Month 2025
Celebrate with us this World #AutismAcceptanceMonth by joining the 5k sponsored #SpectrumColourWalk in Battersea Park, London, in aid of the National Autistic Society.
waam.autism.org.uk
March 21, 2025 at 8:29 PM
Only 26% of autistic pupils feel happy at school. Support the National Autistic Society to help autistic children have a happy and fulfilled time at school.
#AutismAcceptanceMonth
waam.autism.org.uk/
#AutismAcceptanceMonth
waam.autism.org.uk/
For anyone using Nessus that has unexpectedly had .NET Core 8.0.14 show up as being a vulnerability with plugin ID 232619: there was an issue with the plugin generating a false positive, which has now been resolved. Ensure your plugin set is up to date and rescan.
March 20, 2025 at 4:35 PM
For anyone using Nessus that has unexpectedly had .NET Core 8.0.14 show up as being a vulnerability with plugin ID 232619: there was an issue with the plugin generating a false positive, which has now been resolved. Ensure your plugin set is up to date and rescan.
CIS are currently offering a discount on SecureSuite Membership. Use code "RCD25" to save up to 20%. Definitely worth a look for any org that wants to implement a secure baseline configuration.
www.cisecurity.org/
www.cisecurity.org/
CIS
CIS is a forward-thinking nonprofit that harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.
www.cisecurity.org
March 19, 2025 at 5:58 PM
CIS are currently offering a discount on SecureSuite Membership. Use code "RCD25" to save up to 20%. Definitely worth a look for any org that wants to implement a secure baseline configuration.
www.cisecurity.org/
www.cisecurity.org/
This is great for Google, not sure if it’s so great for Wiz (or their customers…). Time will tell!
cloud.google.com/blog/produc...
cloud.google.com/blog/produc...
Google announces agreement to acquire Wiz | Google Cloud Blog
Google announces agreement to acquire Wiz. Learn how this acquisition will provide a unified security platform and protect against new threats.
cloud.google.com
March 18, 2025 at 11:07 PM
This is great for Google, not sure if it’s so great for Wiz (or their customers…). Time will tell!
cloud.google.com/blog/produc...
cloud.google.com/blog/produc...
Two weeks until we get our new office at Capability Green. Exciting times!
March 17, 2025 at 10:02 PM
Two weeks until we get our new office at Capability Green. Exciting times!
March 16, 2025 at 9:10 PM
Fast learner? Successfully complete the Microsoft "30 Days to Learn It" challenge and get a 50% discount on the price of your exam. See the link below for more info :)
learn.microsoft.com/en-us/train...
learn.microsoft.com/en-us/train...
30 Days to Learn It - Official Rules
learn.microsoft.com
March 15, 2025 at 9:11 PM
Fast learner? Successfully complete the Microsoft "30 Days to Learn It" challenge and get a 50% discount on the price of your exam. See the link below for more info :)
learn.microsoft.com/en-us/train...
learn.microsoft.com/en-us/train...
Only 30% of autistic people are in any kind of employment. That’s why I’m supporting and raising funds this #WorldAutismAcceptanceMonth.
www.autism.org.uk/what-we-do/...
www.autism.org.uk/what-we-do/...
World Autism Acceptance Month 2025
Take part this World Autism Acceptance Month at home, at school, or in the workplace.
www.autism.org.uk
March 14, 2025 at 2:57 PM
Only 30% of autistic people are in any kind of employment. That’s why I’m supporting and raising funds this #WorldAutismAcceptanceMonth.
www.autism.org.uk/what-we-do/...
www.autism.org.uk/what-we-do/...
Here is one of the reasons why we recommend SentinelOne:
"The 2024 MITRE ATT&CK Evaluations: Enterprise simulated 16 attack steps and 80 substeps...The result: SentinelOne’s Singularity Platform successfully detected 100% of the attacks with no delays"
www.sentinelone.com/blog/sentin...
"The 2024 MITRE ATT&CK Evaluations: Enterprise simulated 16 attack steps and 80 substeps...The result: SentinelOne’s Singularity Platform successfully detected 100% of the attacks with no delays"
www.sentinelone.com/blog/sentin...
SentinelOne Continues to Set the Standard in MITRE ATT&CK® Evaluations | 100% Detection, Zero Delays and 88% Less Noise
SentinelOne achieves 100% detection and zero detection delays in the MITRE ATT&CK® Evaluations: Enterprise 2024.
www.sentinelone.com
March 13, 2025 at 1:13 PM
Here is one of the reasons why we recommend SentinelOne:
"The 2024 MITRE ATT&CK Evaluations: Enterprise simulated 16 attack steps and 80 substeps...The result: SentinelOne’s Singularity Platform successfully detected 100% of the attacks with no delays"
www.sentinelone.com/blog/sentin...
"The 2024 MITRE ATT&CK Evaluations: Enterprise simulated 16 attack steps and 80 substeps...The result: SentinelOne’s Singularity Platform successfully detected 100% of the attacks with no delays"
www.sentinelone.com/blog/sentin...