Insight

Software security company Synopsys have discovered a new remote code execution vulnerability (RCE) in the Pluck CMS system. Pluck is a content management system (CMS) implemented in PHP designed for setting up and managing your own website. Devised with ease of use and simplicity in mind, Pluck is best suited for running a small website. Pluck CMS features an “albums” module. Albums are used to create collections of images that can be inserted into web...

The software of your business – and its protection – is crucial if you want to succeed in the business landscape. Around the world, as many as 30,000 businesses are hacked every day, with 64% of companies also experiencing a form of cyber attack. When it comes to small companies, too, 60% go out of business within six months of being targeted by a hacker.  As system architecture increases in scale and complexity, however, it...

As information technology continues to evolve, more and more people are penetrating cyberspace. Most organizations, companies, individuals, and even governments are now doing their activities in the digital world. This allows them to enjoy great benefits such as instant access from anywhere, less usage costs, and worldwide reach. A lot of internet users cannot imagine having a life without technology or access to e-ticket booking, e-commerce, online banking, the latest news, or getting in touch...

When you think of cybersecurity threats, what comes to mind? If you pictured faceless criminals (or a team of them) in a dimly-lit headquarters working tirelessly to steal your most precious digital assets, you’re not alone. Yet, cybercrime doesn’t always look like a scene from a Hollywood movie.   Sometimes, cyber threats are closer to home, making them all the more surprising (and frustrating) for many organizations. They’re called insider threats, and you need to...

The landscape that businesses operate on is ever-changing and transforming. Companies of all shapes and sizes are looking for the best ways to stand out from the competition. Making themselves known in an increasingly crowded market is getting harder and harder every day.  Many businesses look into building their online presence. With this, the quality and performance of their websites have become two of the most essential components in securing a successful digital space. Getting...

APIs are everywhere. They power the web applications that connect today’s digital world, and their use will only continue to grow as more organisations adopt digital transformation initiatives and shift towards cloud-based solutions.    This API sprawl presents major security challenges for organisations. With these digital initiatives, cloud migration projects, and API-first application architectures, API development and usage has proliferated. Yet, most businesses don’t even know how many APIs exist within their infrastructure, let alone...

Mobile phishing is an issue plaguing the masses and a growing concern for enterprises, particularly as  2022 had the highest percentage of mobile phishing encounter rates ever, according to Lookout's Global State of Mobile Phishing report. On average, more than 30% of personal and enterprise users exposed to these attacks every quarter. In the U.K., there was a 35% increase in the average number of mobile devices exposed to at least one malicious phishing attack...

Cyber insurers are losing money. Their loss ratios – total claims plus the insurer’s costs, divided by total premiums earned – are now consistently above 60%, which presents something of an existential threat to the insurance industry, making cyber risk a potentially uninsurable area due to falling profitability.   The insurance sector is battling its losses by increasing premiums – which have gone up by some 94% between 2019 and 2022 – creating the artificial...

In many ways, considered the “new battleground for cybersecurity” in 2023, APIs can make – or break – a business in the coming year. The fact that they’re connectors, that they underpin and pull together the majority of digital services we use daily, makes them prime targets for hacks. The holy grail of a hacker is the ultimate low-risk, high-payout option. Because APIs are the hub for so many useful back-end services, they are a...

Millions of Britons (1) have now fallen victim to an online scam, losing life savings, their identity, passwords, photos or vital personal data.  Yet, despite contributing to the billions of pounds (2) lost annually to cybercrime in the UK, Britons still don’t take protective measures. A quarter of the nation carry out activity online – from banking to dating - without any cybersecurity in place at all, making themselves attractive bait for online criminals to...