Lean Security Expert
Cisco SD-WAN Zero-Day (CVE-2026-20127): Deep ...

Discover how threat actors exploit the critical CVE-2026-20127 Cisco SD-WAN vulnerability. Learn IoCs, remediation steps, and how penetration testing secures your network.

Cisco SD-WAN Zero-Day (CVE-2026-20127): Deep Dive & Fix
Lean Security Expert
The ToolShell Crisis: Why Your SharePoint ...

The Australian Cyber Security Centre has issued urgent warnings about actively exploited vulnerabilities in Microsoft SharePoint Server (CVE-2025-53770) that enable unauthenticated remote code execution. With Chinese state-aligned actors and ransomware groups already compromising Australian organisations, this threat represents an immediate and severe risk to business-critical data and infrastructure.

The ToolShell Crisis: Why Your SharePoint Server Is a Ticking Time Bomb
Lean Security Expert
Why Long-Lived Cloud Credentials Are Your ...

Across AWS, Google Cloud, and Microsoft Azure environments in Australia and globally, 59% of IAM users maintain access keys that have never expired—credentials that have been active for more than one year. These long-lived credentials represent a silent but catastrophic vulnerability in your cloud infrastructure. This blog explores why long-lived credentials have become the primary attack vector for identity-based breaches, how red teams exploit them during penetration tests, and what you must do today to eliminate this ticking time bomb.

Why Long-Lived Cloud Credentials Are Your Biggest Identity Risk in 2025
Lean Security Expert
Fortinet "Ghost Logins": How Authentication ...

Critical authentication bypass vulnerabilities in Fortinet FortiGate and related products (CVE-2025-59718 and CVE-2025-59719) are now under active attack, allowing "ghost" SSO logins that completely sidestep normal controls and logs. For Australian organisations, this is more than a VPN or firewall problem – it is a board-level exposure that directly tests whether your external penetration testing, internal penetration testing, and red team assessment services are capable of simulating SSO abuse, identity takeovers, and lateral movement across hybrid networks.

Fortinet "Ghost Logins": How Authentication Bypass Attacks Expose Gaps in Your Penetration Testing Strategy
Lean Security Expert
React2Shell: A CISO’s Guide to CVE-2025-55182

A new security flaw called React2Shell (CVE-2025-55182) puts Australian businesses at extreme risk. It has a severity score of CVSS 10.0, which is the highest possible rating. This flaw lets hackers take full control of your servers without needing a password. It affects the popular tools React and Next.js.

React2Shell: A CISO’s Guide to CVE-2025-55182

Weekly Vuln Deep Dive

Australian Cyber Threat Intelligence: Weekly Vulnerability Deep Dive (8–15 March 2026)

Australian Cyber Threat Intelligence: Weekly Vulnerability Deep Dive (8–15 March 2026)

As a senior penetration tester actively analysing adversary behaviour and responding to frontline incidents, I am tracking a highly volatile threat landscape across Australia. Over the past seven days, our telemetry and incident response data reveal that the window between vulnerability disclosure and active exploitation has collapsed to mere days. Threat actors are rapidly weaponising artificial intelligence, exploiting misconfigured cloud environments, and capitalising on critical web application and API vulnerabilities.

Australian Cyber Threat Landscape: Weekly Vulnerability Deep Dive (08 March 2026)

Australian Cyber Threat Landscape: Weekly Vulnerability Deep Dive (08 March 2026)

The Australian cybersecurity landscape has experienced unprecedented volatility over the last seven days. From devastating SaaS supply chain breaches to CVSS 10.0 zero-day exploits and newly enforced IoT security legislation, the threat environment demands immediate vigilance. As a senior penetration tester, I am observing threat actors aggressively target misconfigurations in cloud environments, weaponise AI for social engineering, and exploit critical infrastructure flaws to bypass traditional perimeter defences.

Contact us for a quote