Insights from the team

Adversary-in-the-Middle Attacks: How Phishing Sites Steal Your Active Login

05 Jun 2026

You click a link, sign in, approve the MFA prompt, and get on with your day. Completely unaware that someone else just logged into your …

Read on our blog

The Empty Seats

04 Jun 2026

How Australia’s performance venues — and the companies that play in them — can welcome the audience that stopped coming back Continue reading The Empty …

Read on our blog

The “Session Cookie” Hijack: Why MFA Can’t Always Save You

30 May 2026

MFA is a strong front-door lock. But it’s not the only thing that decides whether someone can get in. After you sign in, your browser …

Read on our blog

“Make No Mistakes” and Other Things That Don’t Work

30 May 2026

There’s a running joke online that the trick to getting good work out of ChatGPT or Claude is to tell it to “make no mistakes.” …

Read on our blog

The “Legacy Debt” Audit: Identifying the 3 Oldest Risks in Your Server Room

25 May 2026

The most dangerous thing in a server room is often the phrase, “Don’t touch that.” It’s usually said with a half-joke and a grimace. It …

Read on our blog

The “Backup Exit” Strategy: Can You Move Your Data Without the Vendor’s Help?

20 May 2026

When you first sign up for a software-as-a-service (SaaS) platform, everything is designed to feel effortless.  The problem is that the first real test of …

Read on our blog

Micro-SaaS Vetting: The 5-Minute Security Check for Browser Add-ons

15 May 2026

Browser add-ons have a funny reputation. They feel “small”. A quick install. A tiny productivity boost. A harmless little helper that lives in your toolbar. …

Read on our blog

Microsoft 365 phishing is spreading through church organisations. Here’s how to spot it.

14 May 2026

Over the past week we’ve watched a phishing campaign tear through Sydney’s Christian church networks. It’s clever, it’s working, and your email filter won’t stop …

Read on our blog

LinkedIn “Social Engineering”: Protecting Your Staff from Fake Recruitment Scams

10 May 2026

A fake recruiter message is one of the cleanest social engineering tricks around because it doesn’t look like a trick. That’s why LinkedIn recruitment scams …

Read on our blog

Securing your business in the AI Era

06 May 2026

Join Andrew Yager and Phil Meyer from Catalyst 345 as they talk about how to use the Microsoft Ecosystem to deliver Secure AI in your …

Read on our blog

“Clean Desk” 2.0: Securing Your Home Office from Physical Data Leaks

05 May 2026

In the traditional office, a “Clean Desk” policy was a simple habit: shred the sensitive stuff, lock it away, and don’t leave passwords where someone …

Read on our blog

The Essential Checklist for Securing Company Laptops at Home

30 Apr 2026

At home, security incidents don’t look like dramatic movie hacks. They look like stepping away from your laptop during a delivery, or leaving it unlocked …

Read on our blog