Security

New Windows Flaw Lets Attackers Bypass Mark of the Web

New Windows Flaw Lets Attackers Bypass Mark of the Web

AndyC 21 January 2026

image: envato/Image-Source Microsoft has released security updates to address a Windows Remote Assistance vulnerability that could allow attackers to bypass...

Read More

Could ChatGPT Convince You to Buy Something?

When Security Incidents Break: The Questions Every CISO Asks (And How We Securely Built a Solution in Record Time)

AndyC 21 January 2026

When Security Incidents Break: The Questions Every CISO Asks (And How We Securely Built a Solution in Record Time) It was an average Tuesday when...

Read More

UK NCSC warns of Russia-linked hacktivists DDoS attacks

UK NCSC warns of Russia-linked hacktivists DDoS attacks

AndyC 21 January 2026

UK NCSC warns of Russia-linked hacktivists DDoS attacks Pierluigi Paganini January 20, 2026 The UK government warns Russia-linked hacktivists are...

Read More

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

AndyC 21 January 2026

Ravie LakshmananJan 20, 2026Web Security / Vulnerability Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME)...

Read More

NCSC Warns of Increased Russian Hacktivist Threat to UK Online Services

NCSC Warns of Increased Russian Hacktivist Threat to UK Online Services

AndyC 21 January 2026

From Russia with a lack of love. Image: Unsplash The UK government has issued an urgent cybersecurity alert as Russian-aligned...

Read More

As breakout time accelerates, prevention-first cybersecurity takes center stage

As breakout time accelerates, prevention-first cybersecurity takes center stage

AndyC 8 April 2026

Business Security Threat actors are using AI to supercharge tried-and-tested TTPs. When attacks move this fast, cyber-defenders need to rethink their own strategy. Phil Muncaster...

Read More

Digital assets after death: Managing risks to your loved one’s digital estate

Digital assets after death: Managing risks to your loved one’s digital estate

AndyC 2 April 2026

Digital Security Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay. Phil Muncaster 01...

Read More

This month in security with Tony Anscombe – March 2026 edition

This month in security with Tony Anscombe – March 2026 edition

AndyC 1 April 2026

The past four weeks have seen a slew of new cybersecurity wake-up calls that showed why every organization needs a well-thought-out cyber-resilience plan 31 Mar...

Read More

RSAC 2026 wrap-up – Week in security with Tony Anscombe

RSAC 2026 wrap-up – Week in security with Tony Anscombe

AndyC 28 March 2026

This year, AI agents took the center stage – as a defensive capability, but more pressingly as a risk many organizations haven't caught up with...

Read More

A cunning predator: How Silver Fox preys on Japanese firms this tax season

A cunning predator: How Silver Fox preys on Japanese firms this tax season

AndyC 28 March 2026

Business Security Silver Fox is back in Japan, spoofing tax and HR emails timed to the one season when no one thinks twice about opening...

Read More

Virtual machines, virtually everywhere – and with real security gaps

Virtual machines, virtually everywhere – and with real security gaps

AndyC 26 March 2026

Twenty years ago, almost to the day, Amazon Web Services (AWS) launched Simple Storage Service (S3). A few months later, the company’s Elastic Compute Cloud (EC2) service opened for public...

Read More

SIEM Detection is Failing. Here’s What Stronger Teams Do Instead.

U.S. agencies alert: Iran-linked actors target critical infrastructure PLCs

AndyC 8 April 2026

As Iran war drags on, IDC sees worsening tech environment

What the 2025 healthcare cybersecurity claims data reveals

AndyC 8 April 2026

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

AndyC 8 April 2026

As breakout time accelerates, prevention-first cybersecurity takes center stage

As breakout time accelerates, prevention-first cybersecurity takes center stage

AndyC 8 April 2026

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

AndyC 8 April 2026