A critical vulnerability in Adobe Commerce and Magento (CVE-2025-54236), dubbed "SessionReaper," is being ruthlessly exploited by threat actors using AI-driven tools to automate attacks at machine speed. With the Australian holiday trading season in full swing, this unauthenticated remote code execution (RCE) flaw poses an immediate existential threat to retail and B2B organizations. This alert outlines the mechanics of the attack, the role of AI in its weaponization, and the urgent defensive actions required to prevent a catastrophic data breach.
A zero-click vulnerability, CVE-2025-21042, in millions of Samsung devices is being actively exploited to install "LANDFALL," a commercial-grade spyware. This threat, now on CISA's KEV catalog , transforms an executive's personal device into a silent corporate surveillance tool, completely bypassing your MDM and EDR. For Australian organisations with BYOD policies, this is a critical, reportable data breach scenario under the NDB scheme.
Actively exploited WSUS flaw CVE-2025-59287 (CVSS 9.8) threatens Australian businesses. Patching isn't enough. See why red teaming is essential to validate your security.
Critical Oracle EBS zero-day CVE-2025-61882 actively exploited. Australian firms face data theft. Move beyond patching to proactive red teaming & security.
The ACSC has issued a high alert on attacks against Australia's software supply chain. Adversaries are no longer just targeting your live systems; they are infiltrating the "factory" where your software is built. We simulate these advanced, multi-stage attacks to validate your defences against this critical threat.
The world is observing a definite trend Shift as businesses have started moving over to cloud with their data as well as their services. The cloud-computing sector is observing an explosive growth as numerous cloud computing service providers are springing up. As it happened with most technologies in the past, opinions got divided on merit. While most of the analysts deem cloud computing a revolutionary change, a few of them are worried about the control of security risks in cloud.
Some people still hesitate to use cloud-based software but it is the need of the 21st century. It has already revolutionised the way business is done. While security threat is present in any kind of software, the cloud is not devoid of it. For users, here are some tips to ensure security while using cloud computing and making your experience a smooth one.
