CISA Red Team report

This is interesting. 'Exclusive' article on Fortune today explaining how researchers discovered a zero-click attack on MS Copilot which starts with sending an email with hidden instructions (prompt injection). Microsoft have definitely fixed it though (https://fortune.com/2025/06/11/microsoft-copilot-vulnerability-ai-agents-echoleak-hacking/) BUT, because I have a memory

I like Okta. It can get a bit pricey but it’s not bad. But if you’re going to start making it a habit of doing vulnerability notifications late on Friday evenings? I’m going to take ten mins on a Saturday to call it out. It’s a

This is a good thing to bookmark and read Sophos have released a report covering their five year research into Chinese groups attempting to hack their devices. Sophos’ Pacific Rim: Defense Against Nation-state HackersDiscover Sophos’ Pacific Rim defense against nation-state / Chinese hackers Volt Typhoon, APT31, and APT41 targeting critical infrastructure.