What is it? CVE-2021-44228, also known as Log4Shell, is a remote code execution (RCE) vulnerability affecting Apache...
Executive Summary The modern day era is constantly changing and we are increasingly integrating technology into our...
Executive Summary It comes as no surprise that as artificial intelligence (AI) rapidly evolve and becomes more widely...
Executive Summary In recent years, the internet has become a hub for many activities, ranging from online shopping to...
Executive Summary In April 2023, a surge in the use of an outdated WordPress plugin called Eval PHP was reported by...
Executive Summary On the 31st of March at 2:00pm, The Times reporter, Katie Prescott, published an article speculating...
In a recent online briefing, SureCloud’s Risk Advisory Senior Director, Craig Moores, sat down with Senior Consultant...
Jitsi-Meet Authentication Bypass (CVE-2021-33506) At CSA, one of our most vital services is penetration testing. We...
Executive Summary During the Covid-19 pandemic, TikTok quickly became one of the most popular social media platforms...
Executive Summary An unidentified threat actor was identified by Menlo Labs using Discord to spread an evasive threat...
For some years now, geopolitical conflicts have been as much about bits and bytes as they have boots and bullets. The...
What is it? WPwnKit, discovered by the Qualys Research Team, is a local privilege escalation vulnerability affecting a...
Executive Summary One of the most important tasks for an attacker using malware to successfully compromise a target, is...
Executive Summary Although the ongoing war between Russia and Ukraine is well known since the invasion in February...
The Founders of Cyber Security Associates (CSA), Dave Woodfine and James Griffiths recently joined members of BPE and...
IASME is bringing in a new question set and marking scheme for 2022. These changes will affect both Cyber Essentials...
The cybersecurity landscape is more challenging and complex than ever before. The development of intelligent new...
Whether it’s governments, big corporations, or individuals, any organization with an internet connection is a possible...
Today’s threat landscape is more sophisticated than ever before, with every business a potential target. Broadly...
The UK government’s Department for Digital, Culture, Media and Sport (DCMS) has released its 2022 Cyber Security...
Despite ransomware incidents continuing to dominate the cyber-related headlines, there seems to be a misconception...