Three Security Priorities You Can’t Ignore this year!

From Backup to Recovery: How Fast Can You Resume Operations?

Many organisations measure backup success by whether the job completes. But in a real incident, the critical question is how quickly you can restore systems, data, and services and return to normal operations.

Without a tested recovery strategy, backups alone won’t prevent costly disruption.

Stolen Session Tokens: The MFA Bypass You Don’t See

Multi-factor authentication is one of the most effective ways to protect user identities. However, attackers are increasingly finding ways to bypass it, not by breaking MFA, but by stealing active session tokens after a user has successfully signed in.

These tokens allow attackers to access Microsoft 365 and other cloud services without needing a password or MFA prompt, making the activity much harder to detect.

Stay Operational Through Any Disruption

Ensure your organisation stays resilient in the face of disruption. Symetri’s Business Continuity & Disaster Recovery solutions help you plan ahead, protect critical systems, and recover quickly — minimising downtime and keeping your operations running.

Vulnerabilities & Further End-of-Life Notifications

Staying aware of newly disclosed vulnerabilities and active threats is essential for reducing exposure and prioritising patching.

• Notepad++ Hijacked by State-Sponsored Hackers – Upgrade to v8.9.1
  Attackers compromised the Notepad++ update mechanism to distribute malicious payloads. Organisations using Notepad++ should immediately upgrade to the latest version and verify software sources.

• Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center
  A privilege escalation flaw in Windows Admin Center could allow attackers to gain elevated access to managed systems. Applying the latest security updates is critical.

• Password Managers Share a Hidden Weakness
  New research highlights how certain implementation and configuration issues could expose credentials despite the use of password managers, reinforcing the need for MFA and strong endpoint protection.

• Apple Patches Decade-Old iOS Zero-Day Exploited in the Wild
  Apple has fixed a long-standing vulnerability reportedly used by commercial spyware. Users should update devices to the latest iOS version to remain protected.

• New Chrome Zero-Day (CVE-2026-2441) Under Active Attack
  Google has released an emergency patch for a Chrome zero-day vulnerability being actively exploited. Immediate browser updates are recommended across all endpoints.

• State-Backed Hackers Using Gemini AI for Reconnaissance
  Threat actors are leveraging AI tools to support reconnaissance and attack preparation, highlighting the growing role of AI in the cyber threat landscape.

• Fortinet Patches Critical SQL Injection Enabling Unauthenticated Code Execution
  A critical Fortinet vulnerability could allow remote attackers to execute code without authentication. Organisations should prioritise patching affected systems.

• Fake AI Assistants in Chrome Web Store Steal Passwords and Spy on Emails
  Malicious browser extensions posing as AI tools are being used to harvest credentials and access sensitive data. Review and restrict extension usage where possible.

• Microsoft Under Pressure to Strengthen Defences Against BYOVD Attacks
  Bring-Your-Own-Vulnerable-Driver techniques continue to be used to disable security controls, reinforcing the need for device control, EDR, and application control policies.

Agentic AI and the Future of Smart Buildings

How do you design workplaces that are intelligent, sustainable, and built for hybrid work? In our latest Smarter Building Podcast, Cisco’s Bob Cicero shares practical insights on using AI, data, and converged infrastructure to transform the built environment.