Blog

The latest news and developments

Latest Blogs and News

Secora Consulting’s blog is a mixture of news and developments in the security world and technical breakdowns of our services. Bookmark this page to stay informed.

Cybersecurity News

This Week in Cybersecurity: Looking Back at Week 31

Week 31 of 2025 saw a series of significant cybersecurity events, highlighting the ongoing challenges facing digital infrastructure and security operations. Apple and Google both responded to active threats. Apple patched a critical WebKit zero day also affecting Chrome, while Google launched the open beta of DBSC to bolster browser security. Law enforcement scored a significant victory as arrests related to the notorious Scattered Spider group disrupted operations, though copycat actors remain a lingering threat.

Cybersecurity News

This Week in Cybersecurity: Looking Back at Week 30

Week 30 of 2025 saw a surge in cybersecurity developments spanning policy, infrastructure vulnerabilities, advanced threat campaigns and law enforcement action. The UK took a firm stance on ransomware by introducing a public sector payment ban and mandatory reporting requirements, aiming to break the financial incentives behind these attacks. Meanwhile, a critical zero-day vulnerability in Microsoft SharePoint is being actively exploited, prompting urgent patching and mitigation efforts. Google unveiled its OSS Rebuild initiative to strengthen open-source software integrity and prevent supply chain tampering.

Cybersecurity News

This Week in Cybersecurity: Looking Back at Week 29

This week in cybersecurity, several critical threats were identified across various sectors, involving unauthenticated access, supply chain vulnerabilities, and sophisticated malware deployment. A severe SQL injection flaw in FortiWeb has been identified, enabling full remote code execution, while critical VMXNET3 vulnerabilities in VMware products may allow guest-to-host code execution. Meanwhile, FortiGuard Labs has uncovered the integration of Lcryx ransomware into the H2miner cryptomining botnet, signaling a dangerous evolution in hybrid cyberattacks.

Cybersecurity News

This Week in Cybersecurity: Looking Back at Week 28

This week in cybersecurity has been nothing short of intense, with developments spanning global law enforcement action, large scale data breaches, and sophisticated malware campaigns. Authorities arrested four individuals in connection with a major cyberattack targeting UK retail giants M&S, Co-op, and Harrods, marking a significant breakthrough in an ongoing probe. Meanwhile, Qantas confirmed a breach affecting 5.7 million customers, raising fresh concerns about data protection in the aviation industry.

Cybersecurity News

This Week in Cybersecurity: Looking Back at Week 27

This week brought a wave of high impact incidents and critical updates including a massive third-party breach at Qantas, while a sophisticated cyberattack has targeted none other than the International Criminal Court. Meanwhile, a ransomware assault on a Swiss health foundation has resulted in the exposure of a staggering 1.3 terabytes of sensitive data. On the defense front, Google has rushed out an emergency patch for a Chrome zero-day that is already being exploited in the wild, and Microsoft’s June Patch Tuesday addresses over 70 vulnerabilities, including five actively exploited zero-days.

Cybersecurity News

This Week in Cybersecurity: Looking Back at Week 26

In this weeks cybersecurity news, organisations across sectors, from education to enterprise tech, have been confronted with both new risks and regulatory shifts. In Ireland, the City of Dublin Education and Training Board faces a hefty €125,000 fine after failing to safeguard sensitive student grant data, while the country simultaneously launches a national cybersecurity framework inspired by NIST standards to boost organisational resilience. Meanwhile, vulnerabilities in popular technologies have raised alarm bells worldwide.