• Security Alerts blog

BLE Vulnerability Leads to Broken Authentication and Malicious Data Transfer

A successful Bluetooth Low Energy Spoofing Attack (BLESA) allows threat actors to connect with a device (by getting around reconnection…

• Security Testing blog

What to Include in Your Security Testing Supplier’s Agreement

A successful penetration test requires good preparation with an airtight service-level contract between the customer and a supplier that helps…

• Blog

Cyber Security After COVID-19: How to Protect Your Business

What is cyber security after COVID-19? We have now passed the stage of emergency policies and procedures being implemented, new…

• Blog

Top Security Breaches that have Zoomed into 2020 Thus Far

We have all seen how fast things can change in 2020 but the one thing that has not changed is…

• Blog

How to Optimise Your Security Penetration Testing | VIDEO

• Security Alerts blog

File Manager Plugin in WordPress Contains a Remote Code Execution Vulnerability

WordPress’ popular plugin File Manager (versions 6.0-6.8) contains a vulnerability that allows an attacker to upload files and execute commands.…

• Blog

Why Minimising Your Attack Surface is Crucial

With every security test, Risk Crew has performed, there has been at least one attack surface that can vary in…

• Security Alerts blog

Multiple Vulnerabilities found in Microsoft Azure Sphere

Microsoft Azure Sphere versions 20.07 and 20.06 contain vulnerabilities such as remote code execution and privileges escalation. This could allow…

• Blog

5 Items to Consider When Choosing a Pen Test Provider

As security professionals with nearly two decades in the industry, we understand the significance of choosing the right penetration testing…

• Blog

NHS Test and Trace Verifies the Importance of DPIAs

The NHS Test and Trace Programme leaves no doubt that it involves the processing of personal data on a large…