What are the opening hours?

Monday 9am - 5pm Tuesday 9am - 5pm Wednesday 9am - 5pm Thursday 9am - 5pm Friday 9am - 5pm

SecureTeam Ltd, Kemp House, 152 City Road, London (2026)

20/10/2025

F5 has disclosed that a nation-state threat actor gained unauthorised access to parts of its internal environment, prompting a coordinated incident response that the company says prevented impact to customer-facing systems and day-to-day operations. The disclosure, made public on Wednesday 15 October 2025, arrived alongside government warnings about potential follow-on risk to organisations that deploy F5 technologies at scale. According to contemporaneous reporting, investigators concluded that the intruder extracted a limited set of files, including a portion of source code and information about product vulnerabilities, raising concerns that the knowledge could be operationalised against exposed devices. The episode places a core internet infrastructure vendor in the spotlight at a time when state-sponsored groups are prioritising access to suppliers that can deliver reach across many downstream networks.

F5 has disclosed that a nation-state threat actor gained unauthorised access to parts of its internal environment, prompting a coordinated incident response tha

17/10/2025

OpenAI has revealed that it disrupted three coordinated operations by state-linked actors from Russia, North Korea and China who attempted to exploit ChatGPT to assist in developing malware, conducting phishing campaigns and supporting online influence activity. The announcement offers an unusually detailed look at how nation-state adversaries are beginning to incorporate large language models (LLMs) into cyber operations, and how the AI industry is adapting to limit those risks.

Russian Threat Actor Activity

OpenAI identified a Russian-language cluster that used ChatGPT to prototype parts of a remote access trojan and a credential stealer. The group avoided content filters by splitting tasks into smaller, benign requests such as clipboard monitoring or basic encryption, then reassembling those snippets into working code outside the chat environment.

OpenAI has revealed that it disrupted three coordinated operations by state-linked actors from Russia, North Korea and China who attempted to exploit ChatGPT to

16/10/2025

Jaguar Land Rover suffered a severe cyberattack at the end of August 2025 that forced the company to shut down parts of its global network, suspend vehicle production and triage a complex recovery across the United Kingdom, Europe, India, China and Brazil. The incident was detected on 31 August when unusual activity appeared in internal monitoring, prompting a controlled shutdown and a staged restart plan. Production in the UK began returning in phases during early October as plants passed safety and systems checks, with overseas facilities following a similar sequence. The disruption exposed how tightly coupled manufacturing, identity systems and supplier logistics have become, and it offered a clear view of the modern cyber risk profile facing complex industrial enterprises.

How The Attack Unfolded

According to public updates and contemporary reporting, the company’s internal teams responded quickly once anomalous activity was identified.

Jaguar Land Rover suffered a severe cyberattack at the end of August 2025 that forced the company to shut down parts of its global network, suspend vehicle prod

06/03/2025

One of the biggest challenges that organisation's face when applying cybersecurity measures effectively is ensuring that senior board members understand the real-world risks that are present. In many cases, there is a large disconnect between the IT & cyber security teams and non-technical board members. This is often due to a lack of technical knowledge from board members, when it comes to the potential risks their organisations face and the resulting operational and financial impacts if a cyber security breach were to occur.

We are in an era where cyber threats are becoming increasingly sophisticated and far more regular across all industry sectors. In the aviation industry, so much of the infrastructure is open and potentially susceptible to attacks; therefore ensuring all organisational levels are working towards strengthening cyber resilience is critical - from safeguarding passenger data to ensuring the security of flight operations, right down to the fuelling of the aircraft.

One of the biggest challenges that organisation's face when applying cybersecurity measures effectively is ensuring that senior board members understand the rea

05/02/2025

In January 2025, the cybersecurity community was alerted to a significant data exposure involving DeepSeek, a prominent Chinese artificial intelligence (AI) startup. Researchers from Wiz, a cloud security firm, discovered that DeepSeek had inadvertently left a critical database accessible on the internet without any authentication measures. This lapse exposed over a million records, including system logs, user prompts, API tokens, and other sensitive information.

Discovery of the Exposure

Wiz's research team identified the unsecured database within minutes of initiating their assessment of DeepSeek's external security posture. The database, hosted on subdomains such as oauth2callback.deepseek.com:9000 and dev.deepseek.com:9000, was a ClickHouse database—a columnar database management system designed for handling large volumes of data.

In January 2025, the cybersecurity community was alerted to a significant data exposure involving DeepSeek, a prominent Chinese artificial intelligence (AI) sta

30/01/2025

The OWASP Software Assurance Maturity Model (SAMM) was first introduced in 2009 by Pravir Chandra as a practical guide to developing secure software. Since its inception, SAMM has evolved to keep pace with emerging technologies, threats, and industry standards. The most recent iteration of SAMM (Version 2.0), refines its structure and expands its applicability to modern development methodologies, including Agile and DevOps.

The OWASP Software Assurance Maturity Model (SAMM) is more than just a framework; it’s a roadmap for building secure, resilient software. By providing structured guidance tailored to an organisation’s unique needs, SAMM empowers development teams to address vulnerabilities proactively, align security with business goals, and adapt to an ever-changing threat landscape. Whether you’re starting your security journey or seeking to refine existing practices, SAMM offers the tools and insights needed to succeed in the face of modern cybersecurity challenges.

The OWASP Software Assurance Maturity Model (SAMM) was first introduced in 2009 by Pravir Chandra as a practical guide to developing secure software. Since its

27/01/2025

The Cybersecurity and Infrastructure Security Agency (CISA) released six advisories this month addressing vulnerabilities in Industrial Control Systems (ICS). These advisories highlight critical flaws that could be exploited to compromise critical infrastructure, disrupt operations, and potentially endanger public safety.

Our research team have summarised each of the following vulnerabilities in the sections below, with mitigation advice on how you can reduce the risk and mitigate these vulnerabilities:

mySCADA myPRO Manager (ICSA-25-023-01)

Affected Product(s):

- myPRO Manager: Versions prior to 1.3

- myPRO Runtime: Versions prior to 9.2.1

Vulnerability Overview: The mySCADA myPRO Manager is susceptible to an authentication bypass vulnerability. An attacker could exploit this flaw to gain unauthorised access to the system without valid credentials.

The Cybersecurity and Infrastructure Security Agency (CISA) released six advisories this month addressing vulnerabilities in Industrial Control Systems (ICS). T

23/01/2025

Recently, cybersecurity researchers uncovered a severe vulnerability within the Unified Extensible Firmware Interface (UEFI) Secure Boot system, tracked as CVE-2024-7344. This flaw allows attackers to bypass Secure Boot protections, enabling them to execute unauthorised code during the boot process. This type of vulnerability poses a significant threat, as it can lead to the deployment of persistent bootkits that compromise the integrity of a system.

What is UEFI Secure Boot?

The Unified Extensible Firmware Interface (UEFI) is a modern firmware standard that manages the initialisation of hardware and transfers control to the operating system (OS) during start-up. Secure Boot is a critical feature of UEFI designed to ensure that only trusted software signed by original equipment manufacturers (OEMs) is executed during the boot process. By verifying the digital signatures of bootloaders and other components, Secure Boot prevents unauthorised or malicious software from loading.

Recently, cybersecurity researchers uncovered a severe vulnerability within the Unified Extensible Firmware Interface (UEFI) Secure Boot system, tracked as CVE-

20/01/2025

In early January 2025, cybersecurity researchers uncovered a sophisticated cyber espionage campaign targeting Internet Service Providers (ISPs) and government entities in the Middle East. At the centre of this campaign lies an advanced malware framework known as EagerBee, which has been significantly upgraded with new capabilities to facilitate stealthy and persistent access to compromised systems.

Understanding the EagerBee Malware Framework

EagerBee is a backdoor malware designed to grant attackers unauthorised access to infected systems, enabling a range of malicious activities, such as deploying additional payloads, exploring file systems, and executing remote commands. The latest variant of EagerBee introduces several advanced features, including the Service Injector and Undocumented Plugins, which are pivotal to its success.

In early January 2025, cybersecurity researchers uncovered a sophisticated cyber espionage campaign targeting Internet Service Providers (ISPs) and government e

16/01/2025

Business Email Compromise (BEC) is a sophisticated form of cybercrime where attackers impersonate trusted individuals or organisations to manipulate victims into transferring money, sharing sensitive information, or taking other actions that benefit the attacker. BEC attacks often involve social engineering techniques, such as email spoofing, spear phishing, or even infiltrating legitimate email accounts.

Unlike traditional phishing attacks, BEC campaigns are highly targeted and rely on exploiting trust rather than malicious links or attachments. Attackers may impersonate a company executive, a supplier, or even a client, convincing employees to authorise fraudulent payments or disclose confidential data. The financial and reputational damage caused by successful BEC attacks can be devastating for organisations.

Business Email Compromise (BEC) is a sophisticated form of cybercrime where attackers impersonate trusted individuals or organisations to manipulate victims int

SecureTeam Ltd

20/10/2025

17/10/2025

16/10/2025

06/03/2025

05/02/2025

30/01/2025

27/01/2025

23/01/2025

20/01/2025

16/01/2025

Address

Opening Hours

Telephone

Website

Alerts

Shortcuts

Share

Category

Monday	9am - 5pm
Tuesday	9am - 5pm
Wednesday	9am - 5pm
Thursday	9am - 5pm
Friday	9am - 5pm