Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability (CVE-2025-24054)
CVE-2025-24054 is a vulnerability involving NTLM hash disclosure through spoofing, triggered by specially crafted .library-ms files.
Read MoreNews
The latest technology news story’s from SystemTek
New National Quantum Hub to be Based at UMD’s Applied Research Laboratory for Intelligence and Security
Wes Moore joined leaders from the University of Maryland (UMD) and the Defense Advanced Research Projects Agency (DARPA) to celebrate the creation of the Capital Quantum Benchmarking Hub, a cooperative effort dedicated to testing and evaluating quantum computing prototypes and systems for national security and commercial applications.
Read More
Path traversal vulnerability in Commvault Command Center Innovation Release (CVE-2025-34028)
A critical security vulnerability has been identified in the Commvault Command Center installation, allowing remote attackers to execute arbitrary code without authentication.
Read More
Game changing AI to help NHS doctors to speed up appointments
NHS clinicians in the UK will be supported to use ground-breaking artificial intelligence tools that bulldoze bureaucracy and take notes to free up staff time and deliver better care to patients thanks to guidance published yesterday.
Read More
SAP NetWeaver Visual Composer Metadata Uploader High Risk Vulnerability (CVE-2025-31324)
This vulnerability affects the platform’s visual composer, it lets a remote and unauthenticated attacker upload malicious files directly to the system without authorisation.
Read More
M&S stop taking online and phone order after major cyber attack
Marks & Spencer (M&S) has announced that it has suspended online orders as it works to recover from a cyber attack. Customers first reported issues over the weekend, and by Tuesday, the retailer confirmed it was dealing with a “cyber incident.”
Read More
UK law firm fined £60,000 following cyber attack
In June 2022, Merseyside-based DPP Law Ltd (DPP) suffered a cyber attack which affected access to the firm’s IT systems for over a week. A third-party consulting firm established that a brute force attempt gained access to an administrator account that was used to access a legacy case management system.
Read MoreSonicWALL Connect Tunnel Link Following Denial-of-Service Vulnerability (CVE-2025-32817)
CVE-2025-32817 – This vulnerability allows local attackers to create a denial-of-service condition on affected installations of SonicWALL Connect Tunnel.
Read More
Major step for fraud prevention in the UK with landmark ban on SIM farms
The UK will become the first country in Europe to ban the possession and supply of SIM farms – technical devices used to defraud the public.
Read More
Ofcom takes world-leading action to crack down on exploitation of mobile networks by criminals
Ofcom are closing a technical loophole that could pose a risk to mobile users’ privacy and security, by banning the leasing of special types of phone numbers known as ‘Global Titles’.
Read More