Our list of the top 10 million websites available for you to freely download

Understanding Ruby on Rails vulnerability CVE-2022-3704 and what it means for future-proofing code

How to hack (& protect) smart devices. We share common findings from our smart building pentests.

We recently featured on ITV News explaining the Hackney Council cyber attack and the threat facing UK councils. Catch up on the videos.

What every ethical hacker wishes developers knew about cyber security.

How we discovered two Wordpress plugin vulnerabilities: CVE-2021-43334 and CVE-2021-44692.

During a recent pentest for a client we discovered a number of devices on their network that looked interesting, after 25 years of...

A step-by-step guide to building your own Log4Shell demo, with video overview.

Vulnerabilities are discovered everyday. While some can be serious, most are not so scary that they get everyone in a (justifiable)...

FC takes a look at a proof of concept for CVE-2021-29203 (HP Edgeline Manager).

The NSA and FBI have today released an advisory (pdf) about the previously undisclosed malware called Drovorub, that has been attributed...

Many of you will remember our blog post about RIDL, FALLOUT and ZombieLoad back in 2019, hot on the heels of Spectre and Meltdown from...

2020 starts with a shift in cybersecurity and the level of transparency that we usually see from the alphabet agencies. Tuesday the 14th...

So three(3) new hardware based vulnerabilities were released and whilst we all remember Spectre or Meltdown from last year these ones,...

The Iranian hacking group known as APT34/Oilrig/HelixKitten have had a breach of their own: a dump of the breach has now been made...