Page Header

sendmachine-wp-smtp-auth-bypass

Adam Cooke

CVE-2026-6235 in Sendmachine for WordPress allows unauthenticated attackers to overwrite SMTP settings and intercept password reset emails; immediate patching, SMTP audit and access hardening are essential.

News & Article

Unauthenticated holes in Gotac police statistics system could let attackers read, upload and rewrite data — a wake‑up call for information security

Adam Cooke

If an unauthenticated route exists into a system holding sensitive records, assume it will be found and abused — inventory, isolate, patch and harden today.

Breakfast Foods Amendment Regulations (Northern Ireland) 2026: clarity for UK health and safety law and practical steps for business continuity

Adam Cooke

NI Breakfast Foods Amendment Regulations 2026 implement the Breakfast Directive for honey, fruit juices, jams and preserved milk, with important implications for product safety and compliance.

Grafana /apis/dashboard.grafana.app/* permission bypass (CVE-2026-0713): When your dashboards stop obeying the rules

Adam Cooke

Treat dashboards as critical assets: immediately restrict access, audit editors and tokens, and apply vendor guidance while aligning controls to ISO 27001 and ISO 22301 to prevent dashboard‑level chaos.

Food Safety Act 1990 Amendment (Scotland) Regulations 2026: implications for Scottish food businesses and UK health and safety law

Adam Cooke

Scotland restates assimilated EU law under the Retained EU Law Act 2023 to preserve EU-derived food safety duties within UK health and safety law.

Cal.com authentication bypass (CVE-2026-23478) — patch, rotate, and treat scheduling as critical

Adam Cooke

A critical authentication bypass in Cal.com (CVE-2026-23478) lets attackers assume any user account; organisations should patch to 6.0.7 immediately, rotate secrets, enforce MFA and review supplier risk under ISO 27001 principles.

A78 Sharphill Roundabout 40mph speed limit and the impact on UK health and safety law for businesses

Adam Cooke

Explains the business implications of the new 40mph limit at Sharphill Roundabout and what organisations should do

Appointment

Schedule to visit

Donec ullamcorper nulla non metus auctor fringilla. Cras justo odio, dapibus ac facilisis in, egestas eget

Page Header

sendmachine-wp-smtp-auth-bypass

News & Article

Unauthenticated holes in Gotac police statistics system could let attackers read, upload and rewrite data — a wake‑up call for information security

Breakfast Foods Amendment Regulations (Northern Ireland) 2026: clarity for UK health and safety law and practical steps for business continuity

Grafana /apis/dashboard.grafana.app/* permission bypass (CVE-2026-0713): When your dashboards stop obeying the rules

Food Safety Act 1990 Amendment (Scotland) Regulations 2026: implications for Scottish food businesses and UK health and safety law

Cal.com authentication bypass (CVE-2026-23478) — patch, rotate, and treat scheduling as critical

A78 Sharphill Roundabout 40mph speed limit and the impact on UK health and safety law for businesses

Schedule to visit

Unit 18, Office T1, Brooke’s Mill Office Park, Armitage Bridge, Huddersfield, HD4 7NR, England.
Registered in England and Wales. Company Number: 8892510
Privacy Notice

Subscribe to our newsletter

Subscribe to our newsletter

Subscribe to our newsletter