Latest Blog Posts

Keep up to date with all things security testing by reading our latest blog posts.

Cyber Security Training for the UAE
SAMA Cybersecurity Framework Compliance: Benefits and Requirements

Understanding SAMA’s Cyber Security Framework  Due to the increasing ubiquity of cyber-attacks, the financial sector of Saudi Arabia has realised the need to strengthen its defences or risk untold losses. As a result, the Saudi Arabian Monetary Authority set about creating the SAMA Cyber Security Framework. This guide will walk[...]

An Overview of the Digital Operational Resilience Act (DORA)

The Digital Operational Resilience Act (DORA) is an EU regulation that was enacted on 16 January 2023 and will apply as of 17 January 2025. This act aims at strengthening the Information and Communication Technology (ICT) security with financial entities. DORA harmonises the rules on digital operational resilience for the[...]

how to write a phishing email
AI Governance: Secure the Future by Embracing Responsible AI Practices

AI in Simple Terms  At its core, AI is simply software that can ‘think’, ‘learn’, and ‘make’ decisions – somewhat like we humans do. AI systems aren’t programmed in the traditional way – but instead, and to an extent, program themselves.   Generative AI is a specific type of AI that[...]

EU Resilience Act
Cracking the Code: Understanding the European Cyber Resilience Act and its Impact

EU Cyber Resilience Act The Cyber Resilience Act (CRA) exists to bolster cyber security for the EU. But it has not been without controversy. Many open-source organisations have criticised the act for creating ‘a chilling effect on open-source development.’   The proposal spells out defence and resilience on several fronts.[...]

Lockbit Ransomware
APACHE STRUTS 2 Critical Vulnerability – CVE: 2023-50164

Risk Rating: CRITICAL CVSS Score: 9.8 Vulnerability Type: Remote Code Execution (RCE) CVE Identifier: CVE-2023-50164 Exploitation Status: Actively exploited. Affected Version: Struts 2.0.0-2.3.37(EOL), 6.0.0-6.3.0.1, 2.0.0-2.5.32. Link: Apache.org Introduction  Recently discovered, CVE-2023-50164 reveals a critical flaw in Apache Struts that could allow hackers to execute code remotely by manipulating file upload settings.[...]

Clear Desk and Screen Policy
How to Implement a Clear Desk & Clear Screen Policy for Your Organisation

You know that feeling when you walk into an office, and it looks like a hurricane just blew through? Papers litter the area, sticky notes cling to computer monitors like colourful barnacles, and chaos fills the air. The implications of these might seem obvious but they pose greater problems —[...]