Cyber Essentials Plus changes 2026: The Danzell Update
Cyber Essentials Plus has changed: What the Danzell Update means in 2026 A practical breakdown of the v3.3 requirements, the new auto-fail rules and why a certification that passed last year may not pass now. Last updated June 2026.

What are the OWASP Top 10 vulnerabilities?
The OWASP Top 10 is the most widely referenced framework for web application security risk. Published by the Open Worldwide Application Security Project (OWASP), a non-profit foundation dedicated to improving software security, it identifies the ten vulnerability categories that cause the most real- …

Prompt Injection - the attack that turns your AI against uou
Why OWASP's #1 LLM vulnerability is already inside your organisation, and what to do about it. There's a category of attack that doesn't need a CVE to work. It doesn't exploit a memory overflow or a misconfigured firewall. It exploits the thing that makes AI useful in the first place: the fact that …

The dangers of vibe coding
Vibe Coding is Shipping Vulnerabilities to Production. Here's the Proof. A penetration tester's breakdown of what AI-generated code actually looks like under a scanner. I've been doing offensive security for a long time. I've broken into banks, hospitals, government networks and SaaS platforms. I've …

What a penetration test actually finds
A penetration test reveals vulnerabilities that provide access to systems, applications, accounts, or data. Basic testing results in a list of technical issues, while thorough testing identifies which weaknesses can be exploited, how they are interconnected, and the potential risks they pose to the …
