Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

SAP NetWeaver Visual Composer Metadata Uploader High Risk Vulnerability (CVE-2025-31324)

This vulnerability affects the platform’s visual composer, it lets a remote and unauthenticated attacker upload malicious files directly to the system without authorisation.

Read More
Cyber SecurityNews

M&S stop taking online and phone order after major cyber attack

Marks & Spencer (M&S) has announced that it has suspended online orders as it works to recover from a cyber attack. Customers first reported issues over the weekend, and by Tuesday, the retailer confirmed it was dealing with a “cyber incident.”

Read More
Cyber SecurityNews

UK law firm fined £60,000 following cyber attack

In June 2022, Merseyside-based DPP Law Ltd (DPP) suffered a cyber attack which affected access to the firm’s IT systems for over a week. A third-party consulting firm established that a brute force attempt gained access to an administrator account that was used to access a legacy case management system.

Read More
NewsSecurity Vulnerabilities

SonicWALL Connect Tunnel Link Following Denial-of-Service Vulnerability (CVE-2025-32817)

CVE-2025-32817 – This vulnerability allows local attackers to create a denial-of-service condition on affected installations of SonicWALL Connect Tunnel.

Read More
Cyber SecurityInternetTech Tips

Uncovering Your Business’s Hidden Cybersecurity Vulnerabilities

By now, most organizations have a pretty good understanding of the importance of cybersecurity. Each coming year  introduces a completely new list of threats to look out for and updated strategies on how to avoid them, it is constantly evolving.

Read More
NewsSecurity Vulnerabilities

Cisco Webex App Client-Side Remote Code Execution Vulnerability (CVE-2025-20236)

A vulnerability in the custom URL parser of Cisco Webex App could allow an unauthenticated, remote attacker to persuade a user to download arbitrary files, which could allow the attacker to execute arbitrary commands on the host of the targeted user.

Read More
NewsSecurity Vulnerabilities

SonicWall Authenticated SMA100 Arbitrary Command Injection Vulnerability Is Been Exploited (CVE-2021-20035)

CVE number – CVE-2021-20035 Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to

Read More
NewsSecurity Vulnerabilities

Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability (CVE-2025-24054)

CVE number = CVE-2025-24054 This is a spoofing vulnerability involving the Windows New Technology LAN Manager (NTLM) hash, which Microsoft

Read More
Cyber SecurityNews

CISA Extends Funding to Support MITRE’s Critical CVE Program

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has announced the continuation of government funding for the Common Vulnerabilities and Exposures (CVE) program, securing its ongoing operations.

Read More
Cyber SecurityNews

MITRE Issues Warning: CVE Program Funding Runs Out Today

MITRE Vice President Yosry Barsoum has issued a warning that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs is set to expire today—an event that could significantly disrupt the global cybersecurity landscape.

Read More