17/01/2024
Ivanti vulnerabilities (CVE-2023-46805, CVE-2024-21887) in widespread exploitation – Action Recommended

Summary: January 10, 2024, Ivanti published an advisory regarding two vulnerabilities (CVE-2023-46805 and CVE-2024-21887) that impact all supported versions of the Connect Secure (formerly known as Pulse Connect Secure) and Policy Secure gateways. CVE-2023-46805 is… More »

News
18/12/2023
Critical Apache Struts 2 vulnerability (CVE-2023-50164) in active exploitation – Action Recommended

Summary: Apache disclosed a critical vulnerability (CVE-2023-50164) in the Apache Struts 2 open-source framework. Successful exploitation can allow an attacker to manipulate file upload parameters to enable path traversal and upload a malicious file. The… More »

News
13/12/2023
2023 Christmas Checklist

To prepare for your Christmas break, please take a minute to read the below checklist, to help make sure there are no unwanted interruptions over the festive period, or in fact any uninvited surprises waiting… More »

News
07/11/2023
LockBit affiliates exploiting “Citrix Bleed” vulnerability (CVE-2023-4966) – Action Recommended

Summary: Our Security Partner (Secureworks Counter Threat Unit researchers) are aware of at least two incidents where affiliates of the LockBit ransomware group have exploited the Citrix Bleed vulnerability (CVE-2023-4966) to access environments. It is… More »

News
18/10/2023
Cisco IOS XE vulnerability (CVE-2023-20198) in active exploitation – Action Recommended

Summary: On October 16, 2023, Cisco disclosed a critical privilege escalation vulnerability (CVE-2023-20198) that affects the web user interface (web UI) used in Cisco IOS XE software. Cisco observed this vulnerability being actively exploited since… More »

News
02/08/2023
NetScaler ADC and NetScaler Gateway vulnerabilities in active exploitation – Action Recommended

Summary: On July 18, 2023, Citrix disclosed multiple vulnerabilities (CVE-2023-3519, CVE-2023-3466, CVE-2023-3467) that impact NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). Only customer-managed platforms are affected. CVE-2023-3519 is under active exploitation… More »

News
13/06/2023
AI – Artificial Intelligence in Education

Why has AI suddenly become a hot topic? Why should schools be interested and/or concerned? The NEN (National Education Network) have developed a broad overview of AI and the potential challenges for the education sector.… More »

News
02/06/2023
Critical MOVEit Transfer vulnerability in active exploitation – Action Recommended

Summary: On May 31, 2023, Progress Software disclosed a critical vulnerability that impacts the MOVEit Transfer web application, which transfers files. Exploitation can lead to the deployment of a web shell and exfiltration of data.… More »

News
22/05/2023
Cybersecurity in Schools

In todays digital age, cybersecurity is an increasingly critical concern for schools and colleges. As schools rely more on technology to enhance learning. They also become more vulnerable to cyber threats. Why is Cyber security… More »

News

Keeping Up To Date With Us Is Easy, Sign Up To Our Newsletter Today!

Stay in touch with emPSN, so that you get the latest e-safety advice and invites to our community events.

Our partners