Who We Are
UNDERSTAND YOUR BASELINE SECURITY
DETECT THREATS BEFORE DAMAGE IS DONE
SECURE YOUR REPUTATION AND DATA
Our Services
Penetration Testing
Our Penetration Tests help IT managers and Information Security officers in your business who want to gain an objective and detailed insight into their organisation’s vulnerabilities.
Vulnerability Assessments
Our Vulnerability Assessments help Network and Security Managers who want to identify vulnerabilities in their systems and/or applications by scanning their infrastructure or application security.
Phishing Campaign
Our Phishing Campaigns help Network Managers and Chief Information Security officers who want to identify weaknesses in IT security and staff awareness. The Cybx team do this by simulating generic to sophisticated phishing campaign to deceive employees.
CYBER ESSENTIALS
Our expert consultants have helped a range of businesses achieve this certification. We will guide you through the whole process to make achieving this certification as easy as possible. Gaining Cyber Essentials certification enables organisations to showcase their credentials as trustworthy and secure when it comes to cyber security.
What our customers say
Download our White Paper
Book a Consultation
Call the CYBX Team - 01905 590069
Blog Posts
The latest cyber resilience related blogs by the CYBX team
New Critical Security Flaws Expose Exim Mail Servers to Remote Attacks
Multiple security vulnerabilities have been disclosed in the Exim mail transfer agent that, if successfully exploited, could result in information disclosure and remote code execution. The list of flaws, which were reported anonymously way back in June 2022, is as follows – CVE-2023-42114 (CVSS score: 3.7) – Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability […]
New Method Of Phishing Attack – QR Code
When it comes to business, employees often receive emails from websites enforcing 2FA from the system administrator. Some employees may not think anything about this, and simply comply to make sure they don’t get future emails from IT and their manager reminding them to follow up on an email that is now 100 emails down[…]
Critical Security Flaws Expose Exim Mail Servers to Remote Attacks
Multiple security vulnerabilities have been disclosed in the Exim mail transfer agent that, if successfully exploited, could result in information disclosure and remote code execution. The list of flaws, which were reported anonymously way back in June 2022, is as follows – CVE-2023-42114 (CVSS score: 3.7) – Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability[…]
Apple Sets New Rules for Developers to Prevent Fingerprinting and Data Misuse
Apple has announced plans to require developers to submit reasons to use certain APIs in their apps starting later this year with the release of iOS 17, iPadOS 17, macOS Sonoma, tvOS 17, and watchOS 10 to prevent their abuse for data collection. “This will help ensure that apps only use these APIs for their[…]
Apple Threatens to Pull iMessage and FaceTime from U.K. Amid Surveillance Demands
Apple has warned that it would rather stop offering iMessage and FaceTime services in the U.K. than bowing down to government pressure in response to new proposals that seek to expand digital surveillance powers available to state intelligence agencies. The development, first reported by BBC News, makes the iPhone maker the latest to join the chorus of[…]
WormGPT Allowing Malicious Users To Perform Far More Advanced Attacks
With generative artificial intelligence (AI) becoming all the rage these days, it’s perhaps not surprising that the technology has been repurposed by malicious actors to their own advantage, enabling avenues for accelerated cybercrime. According to findings from SlashNext, a new generative AI cybercrime tool called WormGPT has been advertised on underground forums as a way[…]
Secret Admin Accounts Being Made by Hackers Through Exploiting an Unpatched WordPress Plugin Flaw
As many as 200,000 WordPress websites are at risk of ongoing attacks exploiting a critical unpatched security vulnerability in the Ultimate Member plugin. The flaw, tracked as CVE-2023-3460 (CVSS score: 9.8), impacts all versions of the Ultimate Member plugin, including the latest version (2.6.6) that was released on June 29, 2023. Ultimate Member is a[…]
Beware Crypto Scams on Twitter!
UK Hacker Gets Time in Prison for a $120,000 Crypto Scam on Twitter After almost 3 years, a UK citizen who took part in a Crypto currency scam in July of 2020 faces 5 years in prison. 24-year-old, Joseph James O’Connor (aka PlugwalkJoe), was awarded the sentence on Friday, the 23rd of June in the[…]
OSINT – How do you protect your identity and your business?
Your digital footprint is becoming incredibly sought after. With a combination of Facebook, LinkedIn, Instagram, forums and more, it is now easier than ever to build a portfolio of an individual or business. Your information is used to register for every online service imaginable. This information is valuable and sharing of this can be quite[…]
Our top 10 cyber tips
As cyber threats are ever increasing in complexity, intensity and frequency, we have compiled below our top 10 tips that every business can follow to help improve your cyber resilience. Passwords should be different for each account in order to avoid one cracked password compromising all accounts. Consider using a password management programme such as[…]