The Russian state-linked group APT29, also known as Cozy Bear, conducted a sophisticated cyber espionage campaign against Keir Giles, a senior associate at Chatham House, using advanced social engineering tactics to extract sensitive information.
A cybersecurity incident at Oxford City Council compromised personal data of employees involved in elections from 2001 to 2022, prompting investigations and enhanced security measures.
The UK public sector faces challenges in attracting cybersecurity talent due to average salaries significantly lower than those in the private sector, highlighting a need for competitive compensation to retain skilled professionals.
Organizations employ user blocking and penetration testing to identify and mitigate vulnerabilities such as SQL Injection, XSS, and CSRF, ensuring the security of web applications against cyber threats.
In April 2025, Marks & Spencer and The Co-op faced significant cyberattacks, including a ransomware incident attributed to the Scattered Spider group, leading to operational disruptions and substantial financial losses.
Phishing, vishing, and smishing attacks are increasingly sophisticated social engineering threats that exploit personal information, leading to data breaches, financial losses, and identity theft for individuals and organizations.
WatchTowr identifies severe security flaws in Sitecore’s Experience Platform, including a pre-authentication Remote Code Execution vulnerability and hardcoded credentials, affecting thousands of instances and posing significant risks to organizations.
Websites face significant threats from DDoS attacks, which can disrupt availability, necessitating robust security measures such as DDoS-protected hosting, CDNs, and effective response plans.
Microsoft has expanded its European cloud sovereignty initiative with the launch of the Sovereign Cloud suite, designed to ensure data residency and compliance for governments and regulated industries within the EU and EFTA regions.
The rise of SEO poisoning attacks, facilitated by the Hacklink platform, manipulates search engine rankings to promote malicious sites, posing significant threats to online security.
