Reducing Risk Through Strong Foundations
Strong cybersecurity isn't built through a single tool or technology. It's created through layers of good practice that work together to reduce risk and improve resilience.
Whether it's securing home offices, addressing ageing technology, or ensuring core security controls are consistently applied, the foundations of a secure environment remain as important as ever.
Clean Desk Policy: Securing Your Home Office From Physical Data Leaks
A modern clean desk policy is about more than keeping your workspace tidy. In hybrid and remote environments, it helps prevent physical-to-digital shortcuts that can expose sensitive information and business systems.
From unlocked screens to shared devices and unsupported home networking equipment, seemingly small oversights can create opportunities for data loss or unauthorised access.
Why It’s a Risk:
Home routers and personal devices may not receive the same security oversight as corporate equipment
Shared devices and poor physical security increase the risk of data leakage
What You Can Do:
Lock your screen every time you step away and configure a short auto-lock timer
Avoid sharing work devices with family members or guests
Keep home routers supported, patched, and securely configured
Store laptops securely when not in use
Use strong sign-ins and MFA wherever possible
Ensure endpoints are regularly updated and restarted when prompted
The Oldest Risks to Find First – Legacy Debt
Legacy debt rarely appears as a single catastrophic issue. Instead, it builds gradually through outdated systems, unsupported devices, delayed updates, and exceptions that become accepted as normal.
Over time, these risks accumulate until they create security vulnerabilities, operational disruption, or costly recovery efforts.
Why It’s a Risk:
Unsupported devices and software no longer receive security updates
Delayed patching increases exposure to known vulnerabilities
Older systems often lack modern security controls and monitoring
Untested backups and recovery plans can fail when they're needed most
What You Can Do:
Identify end-of-support firewalls, routers, VPN gateways, and internet-facing systems
Prioritise replacement of unsupported products
Review servers for patching gaps, unnecessary services, and weak administrative controls
Test backup and recovery processes regularly
Isolate systems that cannot yet be replaced
Key Security Layers Your Business Should Consider
Effective cybersecurity relies on multiple layers working together. While individual controls are important, real resilience comes from ensuring each layer supports and reinforces the others.
A weakness in any one area can create opportunities for attackers to bypass otherwise strong security measures.
Why It’s a Risk:
Security controls are often implemented inconsistently across the business
Gaps between security layers can leave organisations exposed
Over-reliance on a single control creates unnecessary risk
What You Can Do:
Enforce phishing-resistant authentication and MFA
Define device trust and compliance requirements
Strengthen email security and user risk controls
Implement continuous vulnerability scanning and patch management
Test detection, response, and recovery procedures regularly
Establish clear governance, ownership, and security standards
Vulnerabilities & Further End-of-Life Notifications
Staying aware of newly disclosed vulnerabilities and active threats remains essential for reducing exposure and prioritising remediation.
Active Vulnerabilities & Security Advisories
- Massive Password-Stealing Attack Hits 75,000 Fortinet Firewalls
Security researchers have uncovered a large-scale campaign targeting Fortinet firewalls, with attackers attempting to steal credentials from vulnerable devices. Organisations using Fortinet appliances should review configurations, apply the latest security updates, and monitor for signs of compromise. - CISA Warns Fortinet Customers as FortiBleed Impacts 86,644 FortiGate Devices
CISA has issued guidance following continued exploitation of the FortiBleed vulnerability affecting thousands of FortiGate devices. Customers should ensure affected systems are patched and follow Fortinet's recommended mitigation steps. - Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
A critical vulnerability in Veeam Backup & Replication could allow authenticated domain users to execute remote code on backup servers. Organisations should prioritise patching to protect backup infrastructure from compromise. - Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild – Patch Immediately
Google has released an emergency update for a Chrome zero-day vulnerability that is being actively exploited. Users should update Chrome immediately to reduce the risk of compromise. - Microsoft Patches Exchange Server Zero-Day Exploited in Attacks
Microsoft has addressed a zero-day vulnerability affecting Exchange Server that was being actively exploited. Organisations running on-premises Exchange environments should apply the latest security updates without delay.
End-of-Life Reminders
- Cisco Meraki MR33 Access Points Reach End of Support – 21 July 2026
Cisco Meraki MR33 access points reach End of Support (EOS) on 21 July 2026. After this date, Cisco will no longer provide technical support, firmware updates, security patches, or hardware replacements for faulty units. Organisations should begin planning replacement or upgrade projects to maintain support and security. - Reminder: Windows Server 2016 Reaches End of Life – 12 January 2027
Windows Server 2016 reaches its final End of Life (EOL) on 12 January 2027, when extended support ends. After this date, Microsoft will no longer provide security updates, bug fixes, or technical support, significantly increasing cyber risk. We recommend planning an upgrade to Windows Server 2022 or Windows Server 2025, depending on hardware and application compatibility, or considering a move to a cloud-based environment. If migration isn't possible before the deadline, Microsoft will offer Extended Security Updates (ESU) for a limited period, although these will be chargeable and are expected to increase in cost each year.
How AI Is Transforming Daily Work in Service Teams
Reduce downtime and improve service efficiency with AI-powered troubleshooting. Learn how service teams use ilean to solve problems faster and capture knowledge.
Visibility, Awareness and Control
Cybersecurity risks are not always caused by sophisticated attacks or major system failures. In many cases, risk builds quietly through everyday habits, overlooked processes, and limited visibility into where data is stored or how users interact with systems.
Bluebeam Max: The Superpower Taking Revu Into the AI Era
The construction industry is entering a new era, and Bluebeam is once again leading the way. In 2026, Bluebeam Max will launch as a new premium subscription that combines the power of Revu with advanced AI technology. This blog highlights just some of features you will expect to see within Bluebeam Max.