Cyber Security Redefined
Why Partner with CyberWhite?
24 hours a day and seven days a week, we support clients irrespective of sector, size, or location.
We deliver information security advisory services, risk mitigation strategies and technical solutions to protect information within organisations.
We deliver innovative services, tailored to suit specific organisational requirements and risk profiles. We then map these against the appetite to address identified risks, providing a fully managed support network to ensure a successful project outcome.
Our Latest Resources
Here we discuss everything from cyber security news and knowledge updates to the latest technology and events.
Check Point VPN Flaw Exploited
Check Point VPN Flaw: Passwords Optional, Apparently Check Point warned that CVE-2026-50751, a critical flaw affecting Remote Access VPN and Mobile Access deployments using deprecated IKEv1, is being actively exploited. The logic flaw in certificate validation allows unauthenticated attackers to bypass password requirements and establish VPN sessions under specific configurations. Exploitation requires remote access or […]
One-Character Linux Kernel Flaw
Linux Kernel Bug: One Character, Root Access, Big Headache Researchers published working exploit details for CVE-2026-23111, a Linux kernel use-after-free in nf_tables that can let an unprivileged local user escalate to root and escape containers. The flaw was patched upstream in February 2026 and resulted from a one-character logic error. Exploits have been demonstrated across […]
LiteLLM Exploited
LiteLLM Flaw Turns AI Gateway Into an Attack Gateway CISA added LiteLLM CVE-2026-42271 to its Known Exploited Vulnerabilities catalogue after evidence of active exploitation. The flaw is a command injection vulnerability affecting LiteLLM versions 1.74.2 through before 1.83.7, allowing authenticated users to execute arbitrary commands on the host. Researchers also showed it could be chained […]
Chrome V8 Zero-Day
Chrome Zero-Day: Update Before Your Browser Gets Ideas Google released Chrome security updates fixing 74 vulnerabilities, including CVE-2026-11645, a high-severity V8 zero-day exploited in the wild. The issue is an out-of-bounds memory access flaw in Chrome’s JavaScript and WebAssembly engine that could allow remote code execution inside the browser sandbox via a crafted HTML page. […]
Veeam Backup & Replication RCE
Veeam RCE: Because Attackers Love Backups Too Veeam patched a critical remote code execution vulnerability in Backup & Replication, tracked as CVE-2026-44963 with a CVSS score of 9.4. The flaw allows an authenticated domain user to execute remote code on the backup server. It affects Veeam Backup & Replication 12.3.2.4465 and earlier version 12 builds, […]
Microsoft Patches Record 206 Flaws
Microsoft Patch Tuesday Breaks Records, and Probably Some Weekend Plans Microsoft’s June 2026 Patch Tuesday fixed a record 206 vulnerabilities, including 39 critical issues and three publicly disclosed zero-days. The updates cover privilege escalation, remote code execution, information disclosure, spoofing, security bypass and denial-of-service flaws. Major issues include a Windows Kernel remote code execution vulnerability, […]
Ivanti Fortinet SAP Critical Patches
Ivanti, Fortinet and SAP Critical Patches Ivanti, Fortinet and SAP released fixes for multiple critical vulnerabilities affecting enterprise products. Fortinet patched a FortiSandbox command injection flaw. Ivanti fixed two critical Ivanti Sentry issues, including unauthenticated root-level remote code execution and authentication bypass allowing arbitrary admin account creation. SAP also addressed critical flaws across NetWeaver, ABAP […]
Cisco Secure Workload CVSS 10.0 Vulnerability
Cisco Secure Workload Gets the Full CVSS 10.0 Treatment Cisco has patched a critical CVSS 10.0 vulnerability affecting Secure Workload environments. The flaw could allow unauthenticated remote attackers to compromise affected systems completely. Cisco confirmed the issue impacts certain management components and urged organisations to apply updates immediately. The vulnerability highlights the continued risks associated […]
Drupal Core SQL Injection Vulnerability
Drupal SQL Injection Bug Reminds Everyone It’s Still 2008 Somewhere An actively exploited SQL injection vulnerability has been identified in Drupal Core. The flaw could allow attackers to execute malicious database queries, potentially resulting in data exposure, authentication bypass, or remote code execution under certain conditions. Researchers have confirmed exploitation attempts in the wild, and […]
LiteSpeed cPanel Plugin Vulnerability
LiteSpeed Plugin Flaw Gives Hosting Admins Another Headache A critical vulnerability (CVE-2026-48172) has been identified in a LiteSpeed cPanel plugin, potentially allowing attackers to compromise hosting environments remotely. The flaw impacts systems running vulnerable plugin versions and could lead to unauthorised access or server compromise. Hosting providers and administrators are strongly advised to apply patches […]
Trapdoor Supply Chain Attack
“Trapdoor” Shows Why Trusted Software Isn’t Always Trustworthy Researchers have uncovered a supply chain malware campaign named “Trapdoor”, where attackers compromised trusted software distribution channels to deliver malicious payloads to downstream users. The attack leveraged legitimate update mechanisms and trusted software packages, making detection significantly more difficult. Once installed, the malware enabled remote access, persistence, […]
Lazarus Goes Fileless Again
Lazarus Deploys RemotePE Malware North Korean threat group Lazarus has deployed a memory-only malware framework named RemotePE in recent campaigns. The malware executes payloads directly in memory, reducing forensic visibility and bypassing traditional security controls. Researchers believe the campaign targets organisations for espionage and credential theft. The use of fileless malware techniques continues to increase […]
Linux Kernel Copy Fail Vulnerability
Linux’s “Copy Fail” Shows Old Bugs Never Truly Die Researchers disclosed a nine-year-old Linux kernel vulnerability nicknamed “Copy Fail” (CVE-2026-31431), enabling local privilege escalation to root. The flaw impacts the Linux kernel cryptographic subsystem and has already been observed in active exploitation. Several major Linux distributions are affected, including Ubuntu, RHEL, and Amazon Linux. Public […]
Microsoft SharePoint RCE Vulnerability
SharePoint Servers Once Again Having a Rough Week Microsoft has patched a remote code execution vulnerability affecting SharePoint Server. The flaw could allow attackers to execute arbitrary code remotely under certain conditions, potentially leading to server compromise. The issue primarily affects on-premise SharePoint deployments and highlights continued risks facing legacy collaboration infrastructure. Microsoft has released […]
Microsoft Defender Gets Defended Against Itself
Microsoft Warns of Two Actively Exploited Defender Vulnerabilities Microsoft has disclosed two actively exploited vulnerabilities affecting Microsoft Defender components. The flaws include a privilege escalation vulnerability (CVE-2026-41091) and a denial-of-service issue (CVE-2026-45498). Attackers could potentially gain SYSTEM-level privileges or disrupt Defender operations. Both vulnerabilities affect older versions of the Malware Protection Engine and Defender Antimalware […]
Bitwarden CLI Supply Chain Attack
Bitwarden CLI Compromised – Supply Chain Strikes Again The Bitwarden CLI has been compromised in an ongoing supply chain attack, allowing attackers to distribute malicious versions of the tool. The compromised versions could expose sensitive credentials managed through the CLI. The issue highlights risks associated with software distribution channels and dependency management. Bitwarden has responded […]
UNC6692 Helpdesk Impersonation
Fake IT Helpdesk? Don’t Fall for It Threat group UNC6692 is conducting phishing campaigns by impersonating IT helpdesk staff. Attackers use convincing social engineering techniques, including emails and calls, to trick victims into revealing credentials or installing remote access tools. The campaign targets organisations globally and leverages trust in internal IT teams. Researchers warn that […]
Microsoft Entra ID Role Flaw
Entra ID Slip-Up Could Hand Over the Keys Microsoft has patched a vulnerability in Entra ID that could allow privilege escalation through improper role assignment handling. The flaw enabled attackers to potentially gain elevated permissions by exploiting inconsistencies in role validation. While no widespread exploitation has been reported, the issue posed a significant risk in […]
LiteLLM SQL Injection
AI Tool Trips Over Classic SQL Injection A SQL injection vulnerability (CVE-2026-42208) has been identified in LiteLLM, an AI model gateway. The flaw allows attackers to manipulate database queries via unsanitised inputs, potentially leading to data exposure or modification. The vulnerability affects deployments that expose certain endpoints without proper validation. Researchers warn that exploitation could […]
cPanel Authentication Vulnerability
cPanel Flaw Opens the Door – No Password Required (Almost) A critical authentication vulnerability has been discovered in cPanel that could allow attackers to bypass login protections under certain conditions. The flaw impacts systems using specific authentication configurations and may enable unauthorised access without valid credentials. Security researchers highlighted that exploitation could lead to full […]
Our Services
What Our Clients Say
“CyberWhite have been a pleasure to deal with by repeatedly demonstrating their professionalism and technical knowledge throughout the procurement process and execution of our project. From initially exploring our goals to a consultant working with us on-site and remotely, we’ve enjoyed a positive experience that has ultimately benefited our organisation and helped to improve our Cyber Security posture.”
“I would like to say a thousand “thank you’s” to CyberWhite after rescuing us from the commercial disaster we faced after being subjected to a very sophisticated fraud. Without the timely involvement and expertise from CyberWhite, we would undoubtedly have faced catastrophic consequences including a significant financial loss and possibly a forced closure of the business. We will always remember the kindness and professional approach taken by the CyberWhite team. They were able to successfully recover the critical data which was the life blood of our business. This expertise has allowed us to continue trading and provided us with the additional benefits of ensuring that we are more cyber risk aware and we now have a security partner to support us.”
“As an Operator of Essential Services, PX Group comply with advice provided by recognised security bodies such as NCSC. The advice is relevant to all organisations who provide infrastructure or support to the UK’s critical national infrastructure. PX Group engaged CyberWhite to undertake Third Party Security Audits (aligned to ISO28000:2007) against key suppliers who had access to information assets within the PX Group domain. CyberWhite created a comprehensive audit document set and supported this with interviews and visits in order to validate responses. The output from CyberWhite was comprehensive and provided security assurance to PX Groups stakeholders and interested parties that the key suppliers had a focus on security and understood and could demonstrate best practices in relation to the handling of PX Groups information assets. This process has been invaluable in validating what we believed and providing a platform from which we will continue to assess, review and benchmark all parties in our information supply chain.”
Do you know how secure your systems are?
We have a wide range of industry leading cyber security tools at our disposal. But first we will identify any vulnerabilities, specify our recommended solutions, then help you prioritise an effective schedule to greatly reduce your cyber risk exposure.
Meet the CyberWhite Team
CyberWhite News
Malware Takes Aim at Healthcare Industry
ResolverRat Malware Takes Aim at Healthcare Industry A malicious campaign using ResolverRat malware has been targeting healthcare providers globally, taking advantage of open RDP connections and phishing scams. The malware provides remote access to compromised systems, enabling attackers to exfiltrate medical data and potentially disrupt patient services. Security researchers warn that ResolverRat’s operators appear to […]
CyberWhite’s Path to Net Zero
At CyberWhite, we are determined to achieve net-zero carbon emissions by 2030. The video below showcases our efforts to reduce our carbon footprint significantly: Embracing Renewable Energy: We aim to minimise reliance on fossil fuels by investing in solar power. Green Transportation Solutions: Shifting to electric vehicles and encouraging remote work to cut down commuting […]
David Horn speaks on recent data breach at top UK organisations
At the end of May, 8 of the biggest organisations in the UK were hit with a cyber-attack exposing thousands of employees’ bank and personal data through their payroll system. So far only 3 of the companies have been named in the data breach: British Airways, Boots, and the BBC, with no official confirmation on […]
Partnership with Vianet Group PLC
CyberWhite Ltd announces partnerships with Vianet Group PLC and px Group for 3-year agreement’s to provide cyber security advice and support. David Horn and Matthew Hewison of CyberWhite met with px’s Mark Willis and Vianet’s Thom Menzies, to discuss how working closely together over the coming months and years will not only benefit businesses in […]
CyberWhite Open New HQ
CyberWhite are pleased to annouce the opening of their new HQ in Sunderland.
Meet the neighbours – Northern Spire Ltd
We were delighted this week to appear in Wear Business as they ran a featured article Northern Spire ltd, welcoming CyberWhite as business neighbours in Defender Court. Northern Spire specialise in providing a wide range of financial services and operate as a senior partner practice of St James’s Place Wealth Management. CyberWhite’s relationship with Northern […]
CEO Sleepout – Fundraising Total
CEO SLEEPOUT – FUNDRAISING UPDATE You may remember earlier in the year that our Director, Matt Hewison took part in the CEO Sleepout event in Middlesbrough city centre. We can now inform you that the event raised a phenomenal c£21,800.00!!! Over 40 people bedded down at Middlesbrough Town Hall in the pouring rain, to raise […]
Weekly Round Up 19th – 23rd July
Welcome CyberWhite followers to our latest week in review. We’d like to first of all thank all of our current and new followers. It means a great deal to us that our security advice is able to reach you. It would be fantastic if you could lend us a helping hand simply by liking our […]
New Middlesbrough office for cyber security firm
Middlesbrough Mayor, Andy Preston with CyberWhite directors Matt Hewison and David Horn CyberWhite, an established provider of cyber security and cyber risk mitigation solutions for business, has opened a new office in Middlesbrough’s Boho Zone. The technology solutions provider is proud to be at the centre of a number of key local developments for the […]
CyberWhite’s Week in Review – 17 May to 21 May
We’d like to take a moment of your time and share with you what CyberWhite have been up to during the last week in case you’ve missed any of our activities. Please click the button below to download our week in review. We hope you enjoy it. Any questions, please get in touch. Click here […]
Businesses urge local authorities to take action
A group of North East businesses has written to the newly elected police and crime commissioner for Cleveland to call on him to put tackling fraud at the heart of his agenda as increasing numbers of people and businesses are targeted. Active Chartered Financial Planners, a Stockton-based finance specialist, Cyberwhite, a cyber security specialist with […]
Budget 2021
We’re sure you’ve all been keeping up to date with the 2021 Budget unveiled by Chancellor Rishi Sunak in the House of Commons. As we look ahead to life on the other side of the pandemic, the Chancellor released several initiatives that look to have a hugely positive impact on the North East, and in particular, the Tees valley region. As a growing business […]
CyberWhite Newsletter Summer 2020
Summer is officially here and so is our much anticipated Summer 2020 Newsletter This edition contains a fantastic interview with industry veteran Bruce Hockin, Channel Sales Director from Arcserve plus interviews with our very own Jemma Cavana-Cole and Charlotte Topping. You can also find out more about what we’ve been up to during lockdown including […]
Finalist in the ‘Small Business of the Year’
We are delighted to announce that CyberWhite Ltd has been named as a finalist in the ‘Small Business of the Year’ category in the upcoming UK Social Mobility Awards. CyberWhite Ltd is committed to making a difference and we are incredibly humbled to have our efforts recognised in these flagship awards.
CyberWhite Sponsors Young Teesside Cricketers
CyberWhite, a cybersecurity firm based in Seaham, is sponsoring Saltburn Cricket Club Under 13s following a disturbed start to the season due to COVID 19. Matt Hewison, chief operating officer of the firm, has been coach and manager of the team for the past two seasons, and wanted to increase his support of the club […]