Dossier
breaches
Coverage of breaches in the Nexus archive.
- The Top 10 Attack Surface Exposures in 2026
The article highlights that breaches often originate from non-zero-day vulnerabilities, such as brute-forced admin panels and reused credentials. It specifically mentions the MongoBleed vulnerability, which allows attackers to extract credentials and session tokens from server memory without authentication, emphasizing the risks to internet-facing systems.
- Nearly half of UK businesses pwned last year as phishing keeps doing the job like it's 2005
Nearly half of UK businesses were breached last year due to phishing attacks, with employees often falling for fake login pages disguised as IT support emails. The article highlights human error, not AI, as the primary vulnerability.