UK and allies expose Russian intelligence campaign targeting western logistics and technology organisations – NCSC News
Organisations urged to familiarise themselves with the threat and take immediate action to protect themselves. – Read More
2025
Critical flaw in OpenPGP.js raises alarms for encrypted email services – CSO Online
A newly discovered flaw in OpenPGP.js, a JavaScript cryptography library used by services like Proton Mail, could allow attackers to spoof messages that appear securely signed and encrypted, security researchers…
Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims – The Hacker News
Counterfeit Facebook pages and sponsored ads on the social media platform are being employed to direct users to fake websites masquerading as Kling AI with the goal of tricking victims…
Facing the cyber threat behind the headlines – NCSC Blog
NCSC CEO urges all businesses to face the stark reality of the cyber threat they face, whether in the spotlight or not. – Read More
Trust becomes an attack vector in the new campaign using trojanized KeePass – CSO Online
A known crew of cybercriminals has weaponized the widely used, open-source KeePass password manager with malware to steal passwords and lock down computers for ransom. Victims were tricked through Bing…
DWF to grow its own forest – Legal Cheek
Part of net zero efforts DWF has revealed plans for a carbon removal project — the “DWF Forest” — as part of its efforts to achieve net zero by 2045.…
Securing CI/CD workflows with Wazuh – The Hacker News
Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments. CI/CD pipelines are fundamental in modern software development, ensuring code…
Small firms, big Pride: Amplifying LGBTQ+ inclusion in the legal profession – Law Gazette – Features
How small and regional firms can promote equality, diversity and inclusion practices even when resources are limited. – Read More
How to Detect Phishing Attacks Faster: Tycoon2FA Example – The Hacker News
It takes just one email to compromise an entire system. A single well-crafted message can bypass filters, trick employees, and give attackers the access they need. Left undetected, these threats…
GitHub package limit put law firm in security bind – CSO Online
A $1 billion law firm last week learned a critical cybersecurity lesson: Even something as innocuous as the ceiling on the number of packages allowed in GitHub can increase an…
Researchers Expose PWA JavaScript Attack That Redirects Users to Adult Scam Apps – The Hacker News
Cybersecurity researchers have discovered a new campaign that employs malicious JavaScript injections to redirect site visitors on mobile devices to a Chinese adult-content Progressive Web App (PWA) scam. “While the…
SRA hits law firm owner with record £4 million fine – Legal Cheek
Dishonesty impacted thousands The Solicitors Regulation Authority (SRA) has fined the former owner of a law firm nearly £4 million — a record financial penalty for the regulator. Nurul Miah,…
Lawyers gear up for London Legal Walk – Legal Cheek
17 June Lawyers are limbering up for this years’ London Legal Walk which is just under a month away. The annual walkathon will see charities, lawyers and judges, from Lady…
Google Chrome Can Now Auto-Change Compromised Passwords Using Its Built-In Manager – The Hacker News
Google has announced a new feature in its Chrome browser that lets its built-in Password Manager automatically change a user’s password when it detects the credentials to be compromised. “When…
Threat intelligence platform buyer’s guide: Top vendors, selection advice – CSO Online
The bedrock of a solid enterprise security program begins with the choice of an appropriate threat intelligence platform (TIP) and how to use this to design the rest of your…