Cyooda, Digital Forensics and Cybersecurity

Stay Ahead of Cyber Threats with Expert Insights

Practical cybersecurity guidance, incident response expertise, and industry intelligence for Australian law firms and businesses.

Get the 'Cybersecurity Loop' newsletter delivered to your inbox:

CYOODA - Newsletter

Thoughts and articles by Cyooda

All

All
Cybersecurity
Detection Engineering
How To Guides
Ransomware Insights
Security Insights

Penetration Testing for Law Firms: What to Expect and Why It Matters

February 9, 2026

"We got into your trust account in 2 hours." The managing partner's face shifted through several expressions - disbelief, concern, and finally something like relief that this was a test...

Mobile Forensics for Litigation: What’s Actually Recoverable From a Smartphone

February 2, 2026

The Message That Won the Case "The matter hinged on a single text message." A family law colleague described a property settlement that turned on proving when one party knew...

Why Every Law Firm Needs a Tabletop Exercise

January 28, 2026

It's 9:47am on a Tuesday. Your practice manager call to say that staff can't access the document management system. Then the ransom note appears. Who makes the call on whether...

Digital Forensics for Law Firms: What It Actually Involves (And Why It Matters)

January 26, 2026

The Question That Changes Everything "We need to know what they took." In fifteen years of digital forensics work, I've heard this question hundreds of times. It usually comes 24-48...

Cybersecurity news from around the world

[Aggregator] Downloaded image for imported item #73879

GRU-Linked BlueDelta Evolves Credential Harvesting

January 7, 2026

The analysis cut-off date for this report was September 11, 2025 Executive Summary Between February and September 2025, Recorded Future's Insikt Group identified multiple credential-harvesting campaigns conducted by BlueDelta, a...

[Aggregator] Downloaded image for imported item #73388

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

December 13, 2025

Apple on Friday released security updates for iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and its Safari web browser to address two security flaws that it said have been exploited in...

[Aggregator] Downloaded image for imported item #73315

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work

December 12, 2025

The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to GenAI‑powered extensions and agentic browsers like ChatGPT Atlas. Employees are leveraging the...

[Aggregator] Downloaded image for imported item #73287

MITRE shares 2025’s top 25 most dangerous software weaknesses

December 12, 2025

MITRE has shared this year's top 25 list of the most dangerous software weaknesses behind over 39,000 security vulnerabilities disclosed between June 2024 and June 2025. The list was released...

[Aggregator] Downloaded image for imported item #69964

UK fines LastPass over 2022 data breach impacting 1.6 million users

December 12, 2025

The UK Information Commissioner's Office (ICO) fined the LastPass password management firm £1.2 million for failing to implement security measures that allowed an attacker to steal personal information and encrypted...

[Aggregator] Downloaded image for imported item #72462

MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants

November 28, 2025

Cybersecurity researchers have shed light on a cross-tenant blind spot that allows attackers to bypass Microsoft Defender for Office 365 protections via the guest access feature in Teams. "When users...

[Aggregator] Downloaded image for imported item #72460

OpenAI discloses API customer data breach via Mixpanel vendor hack

November 27, 2025

OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that OpenAI uses to...

[Aggregator] Downloaded image for imported item #72220

ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access

November 24, 2025

A recently patched security flaw in Microsoft Windows Server Update Services (WSUS) has been exploited by threat actors to distribute malware known as ShadowPad. "The attacker targeted Windows Servers with...