News, IT Industry News & Insights

Optimised data for better insights

Deliver clean, enriched log data to drive faster and smarter decisions.

Datastream

Find out more

Boost productivity with ecm

Secure, organize, and access business contact from one central platform.

Find out more

Enterprise Content

Licensing That Supports your strategy

DDS delivers licensing, support, and ongoing optimisation.

Find out more

Microsoft Licensing (CSP)

Trust no one.
verify explicitly

Always authentication and authorise based on real-time data.

Find out more

Zero Trust Cybersecurity

2 April 2026

ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

The latest ThreatsDay Bulletin is basically a cheat sheet for everything breaking on the internet right now. No corporate fluff or boring lectures here, just a quick and honest look at the […]

2 April 2026

Possible US Government iPhone Hacking Tool Leaked

Wired writes (alternate source): Security researchers at Google on Tuesday released a report describing what they’re calling “Coruna,” a highly sophisticated iPhone hacking toolkit that includes five complete hacking techniques […]

2 April 2026

Smashing Security podcast #461: This man hid $400 million in a fishing rod. Then it vanished

A cannabis-growing, beekeeping, gyrocopter-flying Irishman invested his drug money in Bitcoin back in 2011 – and now sits on a fortune worth $400 million. There’s just one small problem: the […]

1 April 2026

Malicious Script That Gets Rid of ADS, (Wed, Apr 1st)

Today, most malware are called “fileless” because they try to reduce their footprint on the infected computer filesystem to the bare minimum. But they need to write something… think about […]

1 April 2026

Block the Prompt, Not the Work: The End of “Doctor No”

There is a character that keeps appearing in enterprise security departments, and most CISOs know exactly who that is. It doesn’t build. It doesn’t enable. Its entire function is to […]

1 April 2026

A Taxonomy of Cognitive Security

Last week, I listened to a fascinating talk by K. Melton on cognitive security, cognitive hacking, and reality pentesting. The slides from the talk are here, but—even better—Menton has a […]

1 April 2026

Alleged RedLine malware developer extradited to United States

A man has appeared in federal court in Austin, Texas, after being extradited to the United States to face charges related to his alleged role as a key developer of […]

1 April 2026

Digital assets after death: Managing risks to your loved one’s digital estate

Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay.

31 March 2026

Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts

Cybersecurity researchers have disclosed a security “blind spot” in Google Cloud’s Vertex AI platform that could allow artificial intelligence (AI) agents to be weaponized by an attacker to gain unauthorized […]

31 March 2026

Inventors of Quantum Cryptography Win Turing Award

Charles Bennett and Gilles Brassard have won the 2026 Turing Award for inventing quantum cryptography. I am incredibly pleased to see them get this recognition. I have always thought the […]

31 March 2026

This month in security with Tony Anscombe – March 2026 edition

The past four weeks have seen a slew of new cybersecurity wake-up calls that showed why every organization needs a well-thought-out cyber-resilience plan

31 March 2026

Iranian hackers breach FBI director’s personal email, and post his CV and photos online

It’s not every day that you read that the head of America’s top law enforcement agency has been hacked, but then – these aren’t ordinary times. Read more in my […]

31 March 2026

Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)

In case of a cyber incident, most organizations fear more of data loss (via exfiltration) than regular data encryption because they have a good backup policy in place. If exfiltration happened, it […]

31 March 2026

Weekly Update 497

Day by day, I find we’re eeking more goodness out of OpenClaw and finding the sweet spot between what the humans do well and the agent can run off and […]

31 March 2026

Axios npm package compromised to deploy malware

Categories: Threat Research Tags: advisory, NPM, Axios

30 March 2026

DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)

A lot of the information seen on DShield honeypots [1] is repeated bot traffic, especially when looking at the Cowrie [2] telnet and SSH sessions. However, how long a session […]

30 March 2026

The State of Secrets Sprawl 2026: 9 Takeaways for CISOs

Secrets sprawl isn’t slowing down: in 2025, it accelerated faster than most security teams anticipated. GitGuardian’s State of Secrets Sprawl 2026 report analyzed billions of commits across public GitHub and […]

30 March 2026

Apple’s Camera Indicator Lights

A thoughtful review of Apple’s system to alert users that the camera is on. It’s really well-designed, and important in a world where malware could surreptitiously start recording. The reason […]

30 March 2026

Incident responders, s’il vous plait: Invites lead to odd malware events

<p>A phishing campaign targeting multiple organizations led to RMM installations – but not much else (yet). A threat actor experimenting, or an access-as-a-service attack underway?</p> Categories: Threat Research Tags: STAC6405, […]

28 March 2026

Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

Threat actors with ties to Iran successfully broke into the personal email account of Kash Patel, the director of the U.S. Federal Bureau of Investigation (FBI), and leaked a cache […]

28 March 2026

TeamPCP Supply Chain Campaign: Update 003 – Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)

This is the third update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 002 covered developments through March 27, […]

ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

Possible US Government iPhone Hacking Tool Leaked

Smashing Security podcast #461: This man hid $400 million in a fishing rod. Then it vanished

Malicious Script That Gets Rid of ADS, (Wed, Apr 1st)

Block the Prompt, Not the Work: The End of “Doctor No”

A Taxonomy of Cognitive Security

Alleged RedLine malware developer extradited to United States

Digital assets after death: Managing risks to your loved one’s digital estate

Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts

Inventors of Quantum Cryptography Win Turing Award

This month in security with Tony Anscombe – March 2026 edition

Iranian hackers breach FBI director’s personal email, and post his CV and photos online

Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)

Weekly Update 497

Axios npm package compromised to deploy malware

DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)

The State of Secrets Sprawl 2026: 9 Takeaways for CISOs

Apple’s Camera Indicator Lights

Incident responders, s’il vous plait: Invites lead to odd malware events

Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

TeamPCP Supply Chain Campaign: Update 003 – Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)

Links

Enterprise Solutions

SMB Solutions

Contact Us

Follow Us