Sypha Security Threat Feed 
- Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks
- A Special Diamond Is the Key to a Fully Open Source Quantum Sensor
- Researchers Uncover GPT-5 Jailbreak and Zero-Click AI Agent Attacks Exposing Cloud and IoT Systems
- #DEFCON: AI Cyber Challenge Winners Revealed in DARPA’s $4M Cybersecurity Showdown
- The US Court Records System Has Been Hacked
- CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials
- Friday Squid Blogging: New Vulnerability in Squid HTTP Proxy Server
- Ex-NSA Chief Paul Nakasone Has a Warning for the Tech World
- 60 RubyGems Packages Steal Data From Annoying Spammers
- Hackers Went Looking for a Backdoor in High-Security Safes—and Now Can Open Them in Seconds
- GITEX GLOBAL 2025
- A Misconfiguration That Haunts Corporate Streaming Platforms Could Expose Sensitive Data
- BigID Launches Shadow AI Discovery to Uncover Rogue Models and Risky AI Data
- PwC Announces Addition of Morgan Adamski to Leadership of Cyber, Data & Technology Risk Platform
- Ransomware Attacks Fall by Almost Half in Q2
- AI Tools Fuel Brazilian Phishing Scam While Efimer Trojan Steals Crypto from 5,000 Victims
- #BHUSA: CISA Execs ‘Hopeful’ for Extension of Cybersecurity Information Sharing Act
- Microsoft Edge security advisory (AV25-492)
- Australian Regulator Sues Optus Over 2022 Data Breach
- Juniper Networks security advisory (AV25-491)
- Google Project Zero Changes Its Disclosure Policy
- Leaked Credentials Up 160%: What Attackers Are Doing With Them
- US Federal Judiciary Tightens Security Following Escalated Cyber-Attacks
- TeaOnHer copies everything from Tea – including the data breaches
- Bouygues Telecom Data Breach Exposes 6.4 Million Customer Records
- A Vulnerability in SonicWall SonicOS management access and SSLVPN Could Allow for Unauthorized Access
- CVE-2025-53786: Frequently Asked Questions About Microsoft Exchange Server Hybrid Deployment Elevation of Privilege Vulnerability
- SSL VPN vulnerability impacting Gen 7 SonicWall Firewalls (CVE-2024-40766) – Update 1
- Unveiling a New Variant of the DarkCloud Campaign
- Microsoft Exchange security advisory (AV25-490)
- China Accuses Nvidia of Putting Backdoors into Their Chips
- New Infection Chain and ConfuserEx-Based Obfuscation for DarkCloud Stealer
- Muddled Libra: Why Are We So Obsessed With You?
- Splunk security advisory (AV25-489)
- Ransomware plunges insurance company into bankruptcy
- CVE-2025-54987, CVE-2025-54948: Trend Micro Apex One Command Injection Zero-Days Exploited In The Wild
- Ukraine claims to have hacked secrets from Russia’s newest nuclear submarine
- Hospital fined after patient data found in street food wrappers
- When Good Accounts Go Bad: Exploiting Delegated Managed Service Accounts in Active Directory
- The Semiconductor Industry and Regulatory Compliance
- Project AK47: Uncovering a Link to the SharePoint Vulnerability Attacks
- CVE-2025-54135, CVE-2025-54136: Frequently Asked Questions About Vulnerabilities in Cursor IDE (CurXecute and MCPoison)
- Frequently Asked Questions About SonicWall Gen 7 Firewall Ransomware Activity
25th October 2023
Sherwood Applied Business Security Architecture
SABSA is a proven methodology for developing business-driven, risk and opportunity focused Security Architectures at both enterprise and solutions level that traceably support business objectives.
It is also widely used for Information Assurance Architectures, Risk Management Frameworks, and to align and seamlessly integrate security and risk management into IT Architecture methods and frameworks.
The SABSA framework and methodology is used successfully around the globe to meet a wide variety of Enterprise needs including Risk Management, Information Assurance, Governance, and Continuity Management. SABSA has evolved since 1995 to be the ‘approach of choice’ for organisations in 50 countries and in sectors as diverse as Banking, Homeless Management, Nuclear Power, Information Services, Communications Technology, Manufacturing and Government.
Sypha Security became a SABSA member on the 25th October 2023.
Visit SABSA
1st June 2021
Australian Government Security Vetting Agency
The Australian Government Security Vetting Agency (AGSVA) is the central vetting agency for the Australian Government and conducts security clearance assessments for federal, state and territory agencies.
Sypha Security employees must pass federal government security clearance vetting before an offer of employment is provided. This is a mandated requirement for most Federal Government Agencies but also provides additional reassurance to our clients that our employees have had an extensive background check completed and are deemed suitable to work within the information security industry.
Visit AGSVA Assessment
1st November 2020
Information Systems Audit and Control Association (ISACA) Membership
ISACA was founded in 1967 as a centralised source of information for computer systems audit control. It has since evolved into an international organisation providing education, certification training, Risk IT Framework, COBIT (Control Objective for the Information and related Technologies) Framework to help organisations elevate their cybersecurity maturity, with their primary purpose to “help business technology professionals and their enterprises around the world realize the positive potential of technology”.
Sypha Security employees are sponsored professional members of ISACA and actively work towards ISACA cybersecurity certifications, which showcase our expertise and commitment to providing international best practice cybersecurity defence strategies and solutions to our clients.
Visit isaca.org
23rd October 2020
Australian Information Security Association (AISA) Membership
To gain an overall perspective of cybersecurity across the Australian business landscape we need partnerships with organisations that represent all Australians across all sectors: private, public, government and individuals.
The AISA is a not for profit entity committed to ” … the development of a robust information security sector by building the capacity of professionals in Australia and advancing the cyber security and safety of the Australian public as well as businesses and governments in Australia.”
This is why Sypha Security is a member of AISA, so we can leverage their knowledge, network and resources to balance the needs of the public, private and government sectors when it comes to planning the appropriate strategies and developing the controls needed to mitigate the risk of a cybersecurity incident for all Australian organisations and businesses.
22nd July 2020
Australian Cyber Security Centre (ACSC) Partnership
Part of our ongoing commitment to our clients is to ensure that we are well informed and can provide accurate and timely cybersecurity information that will help executive management teams make the right decisions when assessing risk. Helping management determine where to invest time and money in order to protect critical assets is at the forefront of everything we do. Having the right partnerships with the most well-informed organisations is critical in being able to provide this advice.
We are pleased to announce a partnership with the Australian Cyber Security Centre where we will be working with them to ensure that Australian businesses are adequately protected from the latest sophisticated cyber threats.