CybaVerse Connect

As we kick off the new year, it's that time where we share the latest cyber security insights, updates, and news from CybaVerse with you. In this January edition, we’ll cover everything from the rising threat of malicious LNK files to celebrating our achievements and unveiling exciting new features. It’s packed with valuable tips and updates to help you stay secure and ready for whatever 2025 brings.

Shortcut to Chaos: How LNK Files Are Exploited by Malware

CTO Juliette Hudson and SOC Analyst Mahesh kanna have uncovered the growing threat of malicious LNK files. These shortcut files are being weaponised by attackers to bypass security measures and deploy malware, posing significant risks to businesses.

In their latest blog, they delve into the tactics used by attackers, share real-world examples of recent attacks, and provide practical advice to help your organisation stay secure.

Read the full report here

Microsoft’s December Patch Tuesday

Missed it? Last month’s Patch Tuesday update addresses 71 vulnerabilities, including one actively exploited zero-day. Patch management is increasingly critical for maintaining a strong cyber security posture, as unpatched vulnerabilities are one of the most common entry points for cyberattacks, exposing businesses to risks like ransomware, data breaches, and system disruptions.

Read more about the disclosed vulnerabilities here

End-of-Quarter Catch-Up

In December, the CybaVerse team came together for the final time in 2024 to reflect on what has been an extraordinary year. From launching CybaVerse AI to winning industry awards and onboarding fantastic new talent, it’s been a year filled with milestones.

This quarter, we proudly celebrated the outstanding achievements of our team members who embody our core values.

Emma Mouncey , our Cyber Security Analyst, was recognised as the Employee of the Quarter for her unwavering dedication to our clients and her remarkable contributions to the compliance team. Emma also received the Charismatic Engagement award for her exceptional approach to collaboration and communication.

Joe Valverde , our Head of Service Delivery and Operations, was honoured with the Consistently Dependable award, recognising his reliability and steadfast commitment to delivering excellence.

Tilly Haestier , our Sales and Marketing Administrator, was recognised with two awards: Beyond Excellence and Paving New Pathways, celebrating her efforts in exceeding expectations and contributing innovative ideas to various projects.

Congratulations to Emma, Joe, and Tilly - three exceptional team members who bring our core values to life through their outstanding work!

New Website for 2025!

Our redesigned website is here! It’s not just a new look—it’s a fresh start for our exciting journey ahead. We’ve streamlined the experience to make it easier for you to explore how we’re revolutionising cyber security for MSPs and SMEs.

With a shift in focus on CybaVerse AI, our new website allows users to learn more about current features and navigate through our professional service offerings with a more user-friendly look and feel.?

Take a look at the new site here.

Monitor Your Supply Chain Risks

The cyber security of your third-party vendors and suppliers can directly impact your organisation's security. Cybercriminals often target smaller, less secure vendors to gain access to larger organisations. This is why monitoring and managing supply chain risks is critical to maintaining a strong security posture.

Here are a few steps to kickstart your supply chain risk management in 2025:

• Assess Vendor Security: Regularly evaluate vendors' cybersecurity practices. Check if they’re Cyber Essentials-certified, conduct penetration tests, or have incident response plans.
• Restrict Access: Apply least-privilege access controls so vendors only have access to systems and data they truly need.
• Include Security in Contracts: Ensure supplier agreements include clauses requiring adherence to your cyber security standards, such as encryption and prompt breach notifications.
• Monitor Continuously: Use tools to track vendors’ security posture over time and identify changes that could pose risks.

By proactively managing supply chain risks, you’ll not only strengthen your cyber security but also build trust with your customers and partners, ensuring your business relationships remain secure.

Pro Tip: If you’re unsure where to begin, ask your suppliers if they’re Cyber Essentials certified—it’s an excellent starting point for gauging their cyber security maturity. If they aren’t, consider recommending it as a step to align their security with your expectations.

As we step into 2025, we remain committed to educating and informing businesses as much as we can on the world of cyber security and ways in which to ensure cyber security assets are as protected as possible.?

Stay tuned for more updates, and as always, don’t forget to subscribe to our newsletter if you haven't already. Here’s to a secure and successful year ahead from the whole CybaVerse team!