cyber risk management

The Cybersecurity and Infrastructure Security Agency (CISA) has once again sounded the alarm for operators and defenders of critical infrastructure, releasing eight detailed advisories highlighting newly uncovered vulnerabilities in widely deployed Industrial Control Systems (ICS). Across...

In a decisive move underscoring escalating concerns about digital security and privacy within U.S. federal operations, the House of Representatives’ Chief Administrative Officer (CAO) has informed congressional staff that WhatsApp, the globally dominant messaging app owned by Meta Platforms, is...

The rise of Agentic AI Assistants—powerful digital agents that can perceive, interpret, and act on behalf of users—has revolutionized the mobile landscape, ushering in an unprecedented era of convenience, productivity, and automation. Yet, with every technological advance comes an accompanying...

Artificial intelligence agents powered by large language models (LLMs) such as Microsoft Copilot are ushering in a profound transformation of the cybersecurity landscape, bringing both promise and peril in equal measure. Unlike conventional digital threats, the new breed of attacks targeting...

The Cybersecurity and Infrastructure Security Agency (CISA) has once again sounded the alarm on the persistent threat posed by known exploited vulnerabilities, adding two high-profile CVEs to its renowned Known Exploited Vulnerabilities (KEV) Catalog. This update serves both as a critical...

Trend Micro has recently addressed several critical vulnerabilities in its enterprise-level tools, Apex Central and Endpoint Encryption (TMEE) PolicyServer, underscoring the importance of prompt software updates to maintain robust cybersecurity defenses. Apex Central serves as a web-based...

The ever-evolving landscape of cybersecurity threats once again puts Microsoft’s ecosystem at the forefront, as CVE-2025-33053 has emerged as a noteworthy vulnerability within the Web Distributed Authoring and Versioning (WebDAV) service. With the potential for remote code execution (RCE)...

For South African businesses grappling with the mounting pressures of a digital-first economy, the announcement of the BUI Cyber Security Warranty represents a significant step-change. As cyber threats escalate in complexity and consequence, many organisations are seeking more than just...

In the rapidly evolving digital landscape, Microsoft 365 has become a cornerstone for organizational productivity, offering a suite of tools that facilitate communication, collaboration, and data management. However, its widespread adoption has also made it a prime target for cyber threats...

Singapore’s status as a technological and economic powerhouse in Southeast Asia is hard-won, built on decades of digitally driven advances and relentless investment in modern infrastructure. Yet, as the digital landscape becomes more intertwined with daily life, organizations across the region...

In a significant development for South African businesses, global technology consultancy BUI has introduced the BUI Cyber Security Warranty, the nation's first cyber security warranty designed to offer financial protection and response assurance against severe cyber threats. This initiative...

Rockwell Automation’s FactoryTalk Historian integration with ThingWorx stands as a cornerstone in the rapidly evolving landscape of industrial automation and digital transformation. When headlines broke regarding a critical vulnerability tied to its use of Apache log4net configuration files...

Siemens Siveillance Video, a well-established software solution in the video management domain, stands as an integral pillar of many critical infrastructure and enterprise security environments worldwide. Designed to be the keystone in layered surveillance deployments, Siveillance Video...

The Siemens Desigo CC platform, a flagship building management system deployed in commercial and critical manufacturing sectors worldwide, has emerged at the center of a high-severity cybersecurity advisory, underlining both the increasing sophistication of threats to industrial control systems...

The cybersecurity community was jolted by recent revelations that Microsoft’s Copilot AI—a suite of generative tools embedded across Windows, Microsoft 365, and cloud offerings—has been leveraged by penetration testers to bypass established SharePoint security controls and retrieve restricted...

As Microsoft approaches the official end-of-support phase for Windows 10, users, enterprises, and IT administrators are bracing for a wave of changes impacting how they work and secure their devices. Amid a flurry of announcements, policy updates, and user anxieties about shifting to Windows 11...

In the rapidly evolving domain of digital security, one constant has emerged: the need for visionary leaders capable of navigating the complexity of modern cyber risk while simultaneously fostering innovation across vast, global organizations. At the center of this high-stakes balancing act...

The recently disclosed vulnerability in the Vestel AC Charger, identified as CVE-2025-3606, highlights the persistent risks faced by the rapidly growing market for electric vehicle (EV) charging solutions. As electric vehicles become increasingly prevalent worldwide, the infrastructure that...

In the world of industrial cybersecurity, every new advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA) reads as both a technical bulletin and a stark warning. This is certainly true with the recent CISA alert centered on vulnerabilities within Subnet Solutions Inc.’s...

As the manufacturing sector races ahead in its digital transformation, the intersection of IoT, OT, and security comes sharply into focus. Today, the digital thread runs deep in factories, weaving intelligent automation, connected sensors, and remote operations into a unified tapestry that...