News & Insights
Practical IT, cyber security and AI guidance from the Foresight team — helping Greater Manchester businesses stay secure, productive and ahead.
ShinyHunters Breaches Kodak: What It Means for Your Business
Imaging and printing company Kodak has confirmed a data breach after the ShinyHunters group claimed to have stolen millions of records. Here's what happened — and the practical lessons for Greater Manchester businesses.
Read article →Ransomware Watch: Construction and Media Firms in the Crosshairs
Two more mid-size businesses — an Irish contractor and a US media group — have been named on ransomware leak sites. A reminder that attackers don't only chase big names.
Read article →Pupil Photos and AI Blackmail: What Schools Should Do Now
Experts are warning schools about criminals misusing pupil photos from websites and social media. Here's practical, safeguarding-led guidance on image security and how to respond.
Read article →FortiBleed: 86,000 Fortinet Credentials Compromised
A database of working credentials for tens of thousands of internet-facing Fortinet firewalls and VPNs has surfaced. If you run Fortinet at the edge, here's what to do now.
Read article →The Salesforce/Klue Attack: When a Connected App Becomes the Way In
Attackers stole data from Salesforce customers without a single password — by compromising a connected app. A look at the Klue incident and the connected-app risk every business shares.
Read article →Critical Fortinet FortiSandbox Flaws Are Being Exploited — Patch Now
Attackers are actively targeting three critical, unauthenticated vulnerabilities in Fortinet's FortiSandbox security appliance. If you run Fortinet, here's what to do.
Read article →That Odd Recycle Bin Bug in June's Windows Update — Explained
June's Windows update made the Recycle Bin show strange filenames when you delete files. Here's what's going on, and the reassuring news: your files are fine.
Read article →Windows Server 2016 Update Failures: Fixed — But a Reminder to Patch in Order
June's security update was failing to install on some Windows Server 2016 systems. Microsoft has resolved it — and it's a useful reminder about update prerequisites.
Read article →Your Suppliers Are Part of Your Attack Surface: NCSC Supply-Chain Guidance
A run of supplier breaches has put supply-chain security back in the spotlight. The NCSC's guidance is a sensible, practical starting point — here's how to apply it as an SME.
Read article →Welcome to Foresight News
Our new home for practical IT, cyber security and AI guidance for Greater Manchester businesses — and what to expect from us here.
Read article →Microsoft 365 Isn't Backing Up Your Data — At Least Not How You Think
Many businesses assume Microsoft 365 protects their data. Under Microsoft's own shared-responsibility model, that's your job — not theirs.
Read article →The NCSC Is Handling Four Major Cyber Attacks a Week
The UK's cyber agency reports a record number of nationally significant incidents — and warns the threat is escalating. What it means for ordinary businesses.
Read article →Yes, Attackers Can Bypass MFA — Here's How to Stay Ahead
Multi-factor authentication is essential, but it isn't bulletproof. Understanding how attackers get around it is the key to making yours genuinely resilient.
Read article →Why Conflict Abroad Can Mean More Cyber Risk at Home
The NCSC has urged UK organisations to review their security posture in light of Middle East tensions. Even if you've no ties to the region, here's why it matters — and what to do.
Read article →New Data Complaints Duty: Every UK Organisation, No Exemptions
From 19 June, every UK organisation must acknowledge data-protection complaints within 30 days and investigate them properly. A quick guide to the new duty under the Data (Use and Access) Act 2025.
Read article →One Click, Many Secrets: The Microsoft 365 Copilot SearchLeak Flaw
Researchers showed how a single click on a genuine Microsoft link could have quietly leaked emails, files and MFA codes from Copilot. Microsoft has fixed it — but the lesson about AI tools remains.
Read article →UK Cyber Rules Are Tightening — and MSPs Are Now in Scope
The Cyber Security and Resilience Bill will expand the UK's cyber regulations, bringing managed service providers and supply chains into scope. Here's what businesses should do now.
Read article →When a Government Switches Off an AI Model: The Business Lesson
The US government's order to suspend Anthropic's Fable 5 and Mythos 5 models is a striking reminder that the cloud AI you depend on can be withdrawn overnight. Here's how to build resilience.
Read article →You Can't Improvise a Cyber Response Under Fire — Plan It Now
The NCSC is urging leaders to prepare for severe cyber attacks before they happen. The core lesson for every business: rehearse your response while there's no pressure.
Read article →The NCSC's Message to Business Leaders: It's Time to Act
The NCSC's latest Annual Review makes one thing clear: cyber resilience is now a boardroom responsibility, not just an IT task. Here's the leadership takeaway.
Read article →Nearly Half of UK Businesses Hit by a Cyber Breach — How Not to Be Next
The Government's latest survey shows 43% of UK businesses suffered a breach or attack in the past year. The pattern barely changes — but the fixes are well known.
Read article →Microsoft's Biggest Ever Patch Tuesday: 200 Fixes — Here's What to Prioritise
Microsoft's June 2026 update is the largest in its history — around 200 vulnerabilities, including an Exchange flaw already under attack. Here's what businesses should patch first.
Read article →Awareness Is Up, Resilience Isn't: The UK's Stuck Cyber Picture
A new survey shows UK breach preparedness has barely improved despite years of warnings. The issue isn't awareness — it's turning it into evidence and governance.
Read article →University of Nottingham Breach: 450,000 Email Addresses Leaked
The University of Nottingham has confirmed a breach after the ShinyHunters group leaked stolen data. Here's what happened and what every organisation should take from it.
Read article →You Can't Defend What You Can't See: Why Visibility Matters
The NCSC says better 'observability' and threat hunting are essential to cyber resilience. In plain terms: if you can't see what's happening across your systems, you can't catch an intruder.
Read article →When a Supplier Goes Down: The Stryker Attack and NHS Equipment Supply
A cyber attack on medical-device maker Stryker halted production and disrupted NHS equipment supply — without the NHS itself being breached. A textbook lesson in supply-chain dependency.
Read article →Eighteen Months On: The Long Shadow of the Synnovis Ransomware Attack
A 2024 ransomware attack on NHS pathology provider Synnovis is still disrupting care in London well over a year later — a sobering lesson in how long recovery can really take.
Read article →NHS Software Supplier DXS International Hit by Cyber Attack
NHS software supplier DXS International has confirmed a cyber attack on its internal systems. Front-line care was unaffected — but it's another reminder that your suppliers' security is your security.
Read article →UK to Ban Public-Sector Ransom Payments — and Change the Rules for Everyone Else
The government plans to ban the NHS, schools and councils from paying ransoms, and to require other businesses to notify before paying. What the proposals mean in practice.
Read article →NRS Healthcare Attack: When a Cyber Incident Reaches the Most Vulnerable
A cyber attack on community-equipment provider NRS Healthcare disrupted vital supplies to vulnerable people and exposed personal data through councils and the NHS. A hard look at supply-chain risk in care.
Read article →