Cyber Security Redefined
Why Partner with CyberWhite?
24 hours a day and seven days a week, we support clients irrespective of sector, size, or location.
We deliver information security advisory services, risk mitigation strategies and technical solutions to protect information within organisations.
We deliver innovative services, tailored to suit specific organisational requirements and risk profiles. We then map these against the appetite to address identified risks, providing a fully managed support network to ensure a successful project outcome.
Our Latest Resources
Here we discuss everything from cyber security news and knowledge updates to the latest technology and events.
Cisco Secure Workload CVSS 10.0 Vulnerability
Cisco Secure Workload Gets the Full CVSS 10.0 Treatment Cisco has patched a critical CVSS 10.0 vulnerability affecting Secure Workload environments. The flaw could allow unauthenticated remote attackers to compromise affected systems completely. Cisco confirmed the issue impacts certain management components and urged organisations to apply updates immediately. The vulnerability highlights the continued risks associated […]
Drupal Core SQL Injection Vulnerability
Drupal SQL Injection Bug Reminds Everyone It’s Still 2008 Somewhere An actively exploited SQL injection vulnerability has been identified in Drupal Core. The flaw could allow attackers to execute malicious database queries, potentially resulting in data exposure, authentication bypass, or remote code execution under certain conditions. Researchers have confirmed exploitation attempts in the wild, and […]
LiteSpeed cPanel Plugin Vulnerability
LiteSpeed Plugin Flaw Gives Hosting Admins Another Headache A critical vulnerability (CVE-2026-48172) has been identified in a LiteSpeed cPanel plugin, potentially allowing attackers to compromise hosting environments remotely. The flaw impacts systems running vulnerable plugin versions and could lead to unauthorised access or server compromise. Hosting providers and administrators are strongly advised to apply patches […]
Trapdoor Supply Chain Attack
“Trapdoor” Shows Why Trusted Software Isn’t Always Trustworthy Researchers have uncovered a supply chain malware campaign named “Trapdoor”, where attackers compromised trusted software distribution channels to deliver malicious payloads to downstream users. The attack leveraged legitimate update mechanisms and trusted software packages, making detection significantly more difficult. Once installed, the malware enabled remote access, persistence, […]
Lazarus Goes Fileless Again
Lazarus Deploys RemotePE Malware North Korean threat group Lazarus has deployed a memory-only malware framework named RemotePE in recent campaigns. The malware executes payloads directly in memory, reducing forensic visibility and bypassing traditional security controls. Researchers believe the campaign targets organisations for espionage and credential theft. The use of fileless malware techniques continues to increase […]
Linux Kernel Copy Fail Vulnerability
Linux’s “Copy Fail” Shows Old Bugs Never Truly Die Researchers disclosed a nine-year-old Linux kernel vulnerability nicknamed “Copy Fail” (CVE-2026-31431), enabling local privilege escalation to root. The flaw impacts the Linux kernel cryptographic subsystem and has already been observed in active exploitation. Several major Linux distributions are affected, including Ubuntu, RHEL, and Amazon Linux. Public […]
Microsoft SharePoint RCE Vulnerability
SharePoint Servers Once Again Having a Rough Week Microsoft has patched a remote code execution vulnerability affecting SharePoint Server. The flaw could allow attackers to execute arbitrary code remotely under certain conditions, potentially leading to server compromise. The issue primarily affects on-premise SharePoint deployments and highlights continued risks facing legacy collaboration infrastructure. Microsoft has released […]
Microsoft Defender Gets Defended Against Itself
Microsoft Warns of Two Actively Exploited Defender Vulnerabilities Microsoft has disclosed two actively exploited vulnerabilities affecting Microsoft Defender components. The flaws include a privilege escalation vulnerability (CVE-2026-41091) and a denial-of-service issue (CVE-2026-45498). Attackers could potentially gain SYSTEM-level privileges or disrupt Defender operations. Both vulnerabilities affect older versions of the Malware Protection Engine and Defender Antimalware […]
Bitwarden CLI Supply Chain Attack
Bitwarden CLI Compromised – Supply Chain Strikes Again The Bitwarden CLI has been compromised in an ongoing supply chain attack, allowing attackers to distribute malicious versions of the tool. The compromised versions could expose sensitive credentials managed through the CLI. The issue highlights risks associated with software distribution channels and dependency management. Bitwarden has responded […]
UNC6692 Helpdesk Impersonation
Fake IT Helpdesk? Don’t Fall for It Threat group UNC6692 is conducting phishing campaigns by impersonating IT helpdesk staff. Attackers use convincing social engineering techniques, including emails and calls, to trick victims into revealing credentials or installing remote access tools. The campaign targets organisations globally and leverages trust in internal IT teams. Researchers warn that […]
Microsoft Entra ID Role Flaw
Entra ID Slip-Up Could Hand Over the Keys Microsoft has patched a vulnerability in Entra ID that could allow privilege escalation through improper role assignment handling. The flaw enabled attackers to potentially gain elevated permissions by exploiting inconsistencies in role validation. While no widespread exploitation has been reported, the issue posed a significant risk in […]
LiteLLM SQL Injection
AI Tool Trips Over Classic SQL Injection A SQL injection vulnerability (CVE-2026-42208) has been identified in LiteLLM, an AI model gateway. The flaw allows attackers to manipulate database queries via unsanitised inputs, potentially leading to data exposure or modification. The vulnerability affects deployments that expose certain endpoints without proper validation. Researchers warn that exploitation could […]
cPanel Authentication Vulnerability
cPanel Flaw Opens the Door – No Password Required (Almost) A critical authentication vulnerability has been discovered in cPanel that could allow attackers to bypass login protections under certain conditions. The flaw impacts systems using specific authentication configurations and may enable unauthorised access without valid credentials. Security researchers highlighted that exploitation could lead to full […]
DPRK AI-Powered Attacks
North Korea Goes AI: Phishing Just Got Smarter North Korean threat actors are increasingly leveraging AI tools to enhance cyberattacks. These include phishing campaigns, malware development, and social engineering efforts. AI enables more convincing lures and automated attack scaling. Researchers observed improved impersonation tactics and faster adaptation to defences. This marks a shift towards more […]
Google Fixes CVSS 10 Gemini CLI RCE
Gemini CLI Bug: A Perfect 10 (and Not in a Good Way) Google has patched a critical vulnerability (CVSS 10) in its Gemini CLI tool that allowed remote code execution in CI/CD environments. The flaw could be exploited via malicious inputs during automated workflows, enabling attackers to execute arbitrary commands. Given the widespread use of […]
Linux Copy Fail Vulnerability
Linux “Copy Fail” Bug: When Copy & Paste Goes Rogue A newly disclosed Linux vulnerability dubbed “Copy Fail” affects core file-copying mechanisms, potentially allowing attackers to escalate privileges or corrupt data. The flaw stems from improper handling of memory during file operations, particularly when copying between privileged and non-privileged contexts. Exploitation could lead to local […]
ChatGPT Patch
ChatGPT Patch Fixes Data Exposure Glitch (Yes, That’s Slightly Awkward) OpenAI has addressed a security flaw in ChatGPT that could allow limited exposure of user data under specific conditions. The issue stemmed from a vulnerability that could enable users to view fragments of other users’ conversations or sensitive information due to caching or processing anomalies. […]
Axios Supply Chain Attack
When Your Dependencies Betray You: The Axios Supply Chain Attack A supply chain attack targeting the popular JavaScript library Axios has been identified, where attackers injected malicious code into compromised packages. The tampered versions enabled cross-site scripting (XSS) style attacks, potentially allowing credential theft, session hijacking, and data exfiltration from affected applications. The malicious packages […]
Russian CTRL Toolkit Campaign
CTRL Toolkit: Not the Shortcut You Want A campaign distributing the Russian-linked CTRL toolkit has been identified, using deceptive delivery methods such as phishing or malicious downloads. The toolkit enables attackers to maintain persistence, execute commands, and exfiltrate data from compromised systems. Its modular design allows flexible deployment depending on attacker objectives. Researchers note increasing […]
Oracle Critical Patch
Oracle Issues Patch (And You Should Probably Install It) Oracle has released a critical patch addressing CVE-2026-21992, a severe vulnerability affecting its software products. The flaw could allow attackers to execute arbitrary code or compromise systems if left unpatched. Oracle’s update is part of its regular Critical Patch Update cycle, which includes fixes for multiple […]
Our Services
What Our Clients Say
“CyberWhite have been a pleasure to deal with by repeatedly demonstrating their professionalism and technical knowledge throughout the procurement process and execution of our project. From initially exploring our goals to a consultant working with us on-site and remotely, we’ve enjoyed a positive experience that has ultimately benefited our organisation and helped to improve our Cyber Security posture.”
“I would like to say a thousand “thank you’s” to CyberWhite after rescuing us from the commercial disaster we faced after being subjected to a very sophisticated fraud. Without the timely involvement and expertise from CyberWhite, we would undoubtedly have faced catastrophic consequences including a significant financial loss and possibly a forced closure of the business. We will always remember the kindness and professional approach taken by the CyberWhite team. They were able to successfully recover the critical data which was the life blood of our business. This expertise has allowed us to continue trading and provided us with the additional benefits of ensuring that we are more cyber risk aware and we now have a security partner to support us.”
“As an Operator of Essential Services, PX Group comply with advice provided by recognised security bodies such as NCSC. The advice is relevant to all organisations who provide infrastructure or support to the UK’s critical national infrastructure. PX Group engaged CyberWhite to undertake Third Party Security Audits (aligned to ISO28000:2007) against key suppliers who had access to information assets within the PX Group domain. CyberWhite created a comprehensive audit document set and supported this with interviews and visits in order to validate responses. The output from CyberWhite was comprehensive and provided security assurance to PX Groups stakeholders and interested parties that the key suppliers had a focus on security and understood and could demonstrate best practices in relation to the handling of PX Groups information assets. This process has been invaluable in validating what we believed and providing a platform from which we will continue to assess, review and benchmark all parties in our information supply chain.”
Do you know how secure your systems are?
We have a wide range of industry leading cyber security tools at our disposal. But first we will identify any vulnerabilities, specify our recommended solutions, then help you prioritise an effective schedule to greatly reduce your cyber risk exposure.
Meet the CyberWhite Team
CyberWhite News
Malware Takes Aim at Healthcare Industry
ResolverRat Malware Takes Aim at Healthcare Industry A malicious campaign using ResolverRat malware has been targeting healthcare providers globally, taking advantage of open RDP connections and phishing scams. The malware provides remote access to compromised systems, enabling attackers to exfiltrate medical data and potentially disrupt patient services. Security researchers warn that ResolverRat’s operators appear to […]
CyberWhite’s Path to Net Zero
At CyberWhite, we are determined to achieve net-zero carbon emissions by 2030. The video below showcases our efforts to reduce our carbon footprint significantly: Embracing Renewable Energy: We aim to minimise reliance on fossil fuels by investing in solar power. Green Transportation Solutions: Shifting to electric vehicles and encouraging remote work to cut down commuting […]
David Horn speaks on recent data breach at top UK organisations
At the end of May, 8 of the biggest organisations in the UK were hit with a cyber-attack exposing thousands of employees’ bank and personal data through their payroll system. So far only 3 of the companies have been named in the data breach: British Airways, Boots, and the BBC, with no official confirmation on […]
Partnership with Vianet Group PLC
CyberWhite Ltd announces partnerships with Vianet Group PLC and px Group for 3-year agreement’s to provide cyber security advice and support. David Horn and Matthew Hewison of CyberWhite met with px’s Mark Willis and Vianet’s Thom Menzies, to discuss how working closely together over the coming months and years will not only benefit businesses in […]
CyberWhite Open New HQ
CyberWhite are pleased to annouce the opening of their new HQ in Sunderland.
Meet the neighbours – Northern Spire Ltd
We were delighted this week to appear in Wear Business as they ran a featured article Northern Spire ltd, welcoming CyberWhite as business neighbours in Defender Court. Northern Spire specialise in providing a wide range of financial services and operate as a senior partner practice of St James’s Place Wealth Management. CyberWhite’s relationship with Northern […]
CEO Sleepout – Fundraising Total
CEO SLEEPOUT – FUNDRAISING UPDATE You may remember earlier in the year that our Director, Matt Hewison took part in the CEO Sleepout event in Middlesbrough city centre. We can now inform you that the event raised a phenomenal c£21,800.00!!! Over 40 people bedded down at Middlesbrough Town Hall in the pouring rain, to raise […]
Weekly Round Up 19th – 23rd July
Welcome CyberWhite followers to our latest week in review. We’d like to first of all thank all of our current and new followers. It means a great deal to us that our security advice is able to reach you. It would be fantastic if you could lend us a helping hand simply by liking our […]
New Middlesbrough office for cyber security firm
Middlesbrough Mayor, Andy Preston with CyberWhite directors Matt Hewison and David Horn CyberWhite, an established provider of cyber security and cyber risk mitigation solutions for business, has opened a new office in Middlesbrough’s Boho Zone. The technology solutions provider is proud to be at the centre of a number of key local developments for the […]
CyberWhite’s Week in Review – 17 May to 21 May
We’d like to take a moment of your time and share with you what CyberWhite have been up to during the last week in case you’ve missed any of our activities. Please click the button below to download our week in review. We hope you enjoy it. Any questions, please get in touch. Click here […]
Businesses urge local authorities to take action
A group of North East businesses has written to the newly elected police and crime commissioner for Cleveland to call on him to put tackling fraud at the heart of his agenda as increasing numbers of people and businesses are targeted. Active Chartered Financial Planners, a Stockton-based finance specialist, Cyberwhite, a cyber security specialist with […]
Budget 2021
We’re sure you’ve all been keeping up to date with the 2021 Budget unveiled by Chancellor Rishi Sunak in the House of Commons. As we look ahead to life on the other side of the pandemic, the Chancellor released several initiatives that look to have a hugely positive impact on the North East, and in particular, the Tees valley region. As a growing business […]
CyberWhite Newsletter Summer 2020
Summer is officially here and so is our much anticipated Summer 2020 Newsletter This edition contains a fantastic interview with industry veteran Bruce Hockin, Channel Sales Director from Arcserve plus interviews with our very own Jemma Cavana-Cole and Charlotte Topping. You can also find out more about what we’ve been up to during lockdown including […]
Finalist in the ‘Small Business of the Year’
We are delighted to announce that CyberWhite Ltd has been named as a finalist in the ‘Small Business of the Year’ category in the upcoming UK Social Mobility Awards. CyberWhite Ltd is committed to making a difference and we are incredibly humbled to have our efforts recognised in these flagship awards.
CyberWhite Sponsors Young Teesside Cricketers
CyberWhite, a cybersecurity firm based in Seaham, is sponsoring Saltburn Cricket Club Under 13s following a disturbed start to the season due to COVID 19. Matt Hewison, chief operating officer of the firm, has been coach and manager of the team for the past two seasons, and wanted to increase his support of the club […]