Despite widespread Multi-Factor Authentication (MFA) adoption, identity-based attacks continue to succeed. The reason is that many authentication methods still rely on mechanisms attackers can bypass. Phishing-resistant authentication addresses this and should now be a top priority for organisations. Quick Takeaways Authentication remains a primary attack path: Attackers target passwords, login prompts, and active sessions because they provide a direct route into business sy

Today’s security landscape looks very different from the one traditional firewalls were originally built for. Users are no longer always in the office. Devices move between networks. Applications are delivered through SaaS. Workloads run in public cloud platforms. Many business systems are now accessed directly over the internet rather than through a private corporate network. In this world, the firewall is no longer the natural centre of gravity for security. That does not m

OpenAI recently confirmed that two employee devices in its corporate environment were impacted as part of the TanStack npm supply chain attack. According to OpenAI, the security breach involved activity consistent with malware behaviour, including unauthorised access and credential-focused exfiltration activity in a limited subset of internal source code repositories accessible to the impacted employees. Importantly, OpenAI stated that it found no evidence that user data was

A recently disclosed security vulnerability affecting cPanel and WHM (CVE‑2026‑41940) is currently under active exploitation. Given that cPanel powers a significant portion of global websites, this critical vulnerability presents a significant risk to organisations and businesses that rely on cPanel‑based hosting. If your organisation uses cPanel or WHM, here’s what you need to know — and the steps you should take to protect your environment. What You Should Do Immediately Re