Insights

In the spirit of Cyber Security Awareness Month, Integrity360 is calling for businesses to look beyond basic cyber security measures. As cyber threats evolve, traditional techniques like strong passwords and periodic software updates leave organisations vulnerable to more sophisticated attacks. 

Overview: A newly reported vulnerability in the Common Unix Printing System (CUPS) poses a significant security threat to UNIX-based systems, including Linux and macOS. Security researcher Simone Margaritelli has published the first of a series of blog posts detailing the issue, which can be exploited by sending a specially crafted HTTP request to the CUPS service. This vulnerability allows remote attackers to gain access to affected systems and execute arbitrary code, potentially escalating privileges and compromising critical assets.

CVE-2024-24919 is a critical information disclosure vulnerability in Check Point Security Gateways which have remote access VPN or mobile access software enabled.

Palo Alto Networks has disclosed a critical (CVSS10) command injection vulnerability in Global Protect Gateway, which is the VPN component of PAN-OS powered networking appliances.

An effective incident response plan is a crucial component of an organisation's cyber security strategy. Where data breaches, cyber-attacks, and other security incidents are increasingly common, having a robust plan in place is essential for minimising damage and recovering swiftly. This blog explores the key elements that constitute a good incident response plan, emphasising the importance of preparedness, swift action, and continual improvement in the face of evolving cyber threats. 

Continuing our series on the most significant cyber-attacks this year, Integrity360's incident response team has turned its attention to the cyber security trends that we expect to surface in the latter half of the year.  

Businesses face a constant barrage of potential cyber-attacks, aiming to compromise data, applications, and other crucial assets. The backbone of an effective, modern-day cyber security strategy? The Security Operation Centre (SOC).

A Cyber Incident Response Team (CIRT) is a dedicated group of highly skilled and qualified IT professionals who are trained to respond to cyber security threats and incidents quickly. These teams are equipped with specific skills to identify, manage, and neutralise cyber threats effectively.

In part 2 of our series on the major cyberattacks of 2023 we'll be examining the attacks on Royal Mail and JD Sports. We'll also take a closer look at one of the largest DDoS attacks ever documented and delve into the havoc caused by the Black Basta ransomware spree.

We’re already at the midway point of 2023 and so far there plenty of cyber incidents have hit the headlines. In this blog we take a look at some of the biggest cyber attacks of 2023 (so far).

In today’s world there is an ever-present risk of cyber incidents. These can range from simple malware attacks to sophisticated state-sponsored cyber-espionage. Given the potential for severe impacts on businesses, national security, and personal privacy, understanding incident response – what it is, its significance, and when it's needed – becomes crucial.

This week saw the release of a number of reports showing that payments to ransomware gangs fell in 2022. Our Incident response team offers some insight as to why that might be happening.