Third-Party Risk Red Teaming: Attacking Through Vendors and Partners
While many organizations are placing high levels of effort into securing their own perimeter, attackers are increasingly finding new ways to bypass perimet...
Expert analysis, threat intelligence, and practical guidance from Red Secure Tech's security specialists — covering penetration testing, vulnerability assessment, incident response, and secure development for UK businesses.
While many organizations are placing high levels of effort into securing their own perimeter, attackers are increasingly finding new ways to bypass perimeter defenses by targeting third parties / vend...
Read Full ArticleWhile many organizations are placing high levels of effort into securing their own perimeter, attackers are increasingly finding new ways to bypass perimet...
New malware called STX RAT was discovered as the first RAT to be able to use invisibility techniques and perform a variety of operations. This was first se...
A privilege escalation vulnerability has been identified in NetBT e-Fatura, a widely used electronic invoicing solution in Turkey. Tracked as CVE-2025-140...
Every year fraud can lead to losses from Business Email Compromise, bogus invoices, diversion of settlements, Smishing, and internal theft of tens of thous...
Google has officially made available Device Bound Session Credentials (DBSC) for all Windows users using Chrome v146! This is a significant development in...
In 2026, malware developers are becoming interested in Zig due to its use as a modern day replacement for C as a systems programming language. Whereas legi...
CEO-targeted scams, or Business Email Compromise (BEC) or CEO Fraud as they are more commonly referred to, are one of the top financial cyber threats of 20...
The Microsoft Defender Security Research Team has made public a serious vulnerability in the EngageLab SDK, which is a third-party Android SDK for Push Not...
Our blog insights are backed by hands-on service delivery. Whether you need a penetration test, vulnerability assessment, emergency website recovery, or secure web development — our UK cybersecurity specialists are ready to help.
Emergency malware removal, backdoor elimination, blacklist delisting, and full post-incident hardening for compromised websites.
Authorised simulated attacks exposing real vulnerabilities in your web applications, networks, and infrastructure before attackers do.
Systematic identification and prioritisation of security weaknesses across your digital estate — with actionable remediation guidance.
OWASP-aligned web application development with security engineered in from architecture through to penetration-tested deployment.
Advanced adversary simulation testing your organisation's detection and response capabilities against real-world threat actor behaviour.
Actionable intelligence on threat actors, attack vectors, and emerging risks targeting your sector — enabling proactive defensive decisions.
© 2016 – 2026 Red Secure Tech Ltd. Registered in England and Wales — Company No: 15581067