Security
-
Blog
Western Sydney University discloses security breaches, data leak
Western Sydney University (WSU) announced two security incidents that exposed personal information belonging to members of its community. WSU is a prominent Australian institution offering various undergraduate, postgraduate, and research programs across multiple disciplines. It serves a student body of 47,000 and employs over 4,500 permanent and seasonal staff, operating with an annual budget of approximately $600 million. One of…
Read More » -
Blog
Windows ‘inetpub’ folder created by security fix, don’t delete
Microsoft has now confirmed that an April 2025 Windows security update is creating a new empty “inetpub” folder and warned users not to delete it. This folder is typically used by Microsoft’s Internet Information Services (IIS), a web server platform that can be enabled via the Windows Features dialog to host websites and web apps. However, after installing this month’s…
Read More » -
Blog
Google’s Latest Patch Fixes 62 Security Vulnerabilities in Android
Google has released its April 2025 Android Security Bulletin, which includes patches for 62 vulnerabilities affecting Android devices. Two of the fixes address critical zero-day flaws that may have been exploited in “limited, targeted” attacks, according to Google. Zero-days are security vulnerabilities that are exploited before the software developer can identify the flaw and issue a patch. The security update…
Read More » -
Blog
WinRAR flaw bypasses Windows Mark of the Web security alerts
A vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine. The security issue is tracked as CVE-2025-31334 and affects all WinRAR versions except the most recent release, which is currently 7.11. Mark of the Web is a security function in Windows…
Read More » -
Blog
Security experts issue warning over the rise of ‘gray bot’ AI web scrapers
Security firm Barracuda has called for organizations to factor AI bots that scrape data from public websites into their security strategies, labelling them not as good or bad bots, but “gray bots”. Defining these three categories of bot, senior principal software engineer for application security engineering at Barracuda Rahul Gupta said: “There are good bots – such as search engine…
Read More » -
Blog
Security in P2P Networks
Peer-to-Peer (P2P) networks have evolved from simple file-sharing systems to complex infrastructures that support a wide range of applications, including content distribution, decentralized finance (DeFi), blockchain technologies, and collaborative platforms. These decentralized networks, in which each participant (or “peer”) acts as both a client and a server, eliminate the need for central servers. This decentralized architecture offers numerous benefits, including…
Read More » -
Blog
How to Use Landscaping to Enhance Your Home’s Security
Although home burglaries are trending downward overall, there are still more than 800,000 break-ins every year. Aside from the potential damage to your property and the loss of your belongings, there also the concern for your family’s safety—no one wants criminals wandering around your house. The obvious solution is to go with technology—alarm systems and security cameras. While these kinds…
Read More » -
Blog
GitHub expands security tools after 39 million secrets leaked in 2024
GitHub announced updates to its Advanced Security platform after it detected over 39 million leaked secrets in repositories during 2024, including API keys and credentials, exposing users and organizations to serious security risks. In a new report by GitHub, the development company says the 39 million secrets were found through its secret scanning service, a security feature that detects API…
Read More » -
Blog
MSPs face scrutiny in Cyber Security and Resilience Bill
The UK government has called out managed services providers (MSPs) as critical to the UK’s cyber defenses in its proposed Cyber Security and Resilience Bill. A policy statement released on 1 April contains a section dedicated to the role and regulation of MSPs, stating that as they “play a critical role in the UK economy by offering core IT services…
Read More » -
Blog
Former GCHQ intern risked national security after taking home top secret data
A former GCHQ intern has pleaded guilty to transferring data from a top-secret computer onto his work phone. Hassaan Arshad, who was arrested in 2022, is alleged to have downloaded the stolen data onto a hard drive connected to a personal computer. He pleaded guilty to a charge under Section 3ZA of the Computer Misuse Act 1990, which relates to…
Read More »