Syntacks Consulting

12/03/2026

🌐 Ransomware stops businesses but Huntress keeps them going. From phishing to exposed remote access we cover every entrance. Trust Huntress to detect shady activity and evict hackers before they lock up your business. Stay protected stay productive.

31/12/2025

Happy new year

19/12/2025

As the year draws to a close, we would like to thank our clients, partners and community for your trust and continued support throughout the year.

We appreciate the opportunity to work with you and to help strengthen your technology, security and operations. Your collaboration and confidence in our team drive everything we do.

We wish you a safe and enjoyable Christmas and a well-earned break over the holiday period. We look forward to continuing our work together in the new year.

25/10/2025

Microsoft has identified the following vulnerability in the Microsoft Windows Server Update Service:

CVE-2025-59287: This vulnerability involves deserialisation of untrusted data in WSUS, which could enable an unauthenticated actor to achieve remote code ex*****on with system privileges. The ASD’s ACSC recommends that organisations take immediate action to address affected products.
The vulnerability impacts Microsoft Windows Server Update Service in Windows Server (2012, 2016, 2019, 2022 and 2025).

15/10/2025

We are now ISO Certified.

28/07/2025

Hyper-realistic AI-generated news videos are rapidly spreading across social media, blurring the line between fact and fiction. Experts warn that the technology is evolving so fast that false information can go viral before it’s verified, fueling growing concerns about the reliability of what we watch online.

11/04/2025

Fortinet has released information regarding their observation of active exploitation of previously known vulnerabilities affecting Fortinet devices, including:
FG-IR-24-015: Out-of-bound Write in sslvpnd
FG-IR-23-097: Heap buffer overflow in sslvpn pre-authentication
FG-IR-22-398: Heap-based buffer overflow in sslvpnd.
Fortinet have previously released patches for these vulnerabilities
The observed post exploitation activity relates to either unpatched devices or those that were compromised prior to patching.

Fortinet diligently balances our commitment to the security of our customers and our culture of responsible transparency and commits to sharing information with that goal in mind. While efforts by …

10/04/2025

There is a new advisory about malicious cyber actors using spyware to specifically target individuals connected to topics including Taiwan, Tibet, Xinjiang Uyghur Autonomous Region, democracy movements and the Falun Gong.

The advisory includes two case studies highlighting the BADBAZAAR and MOONSHINE spyware used by the malicious actors to target data on mobile devices. It also includes mitigation measures to help protect your devices and data.

Read this advisory on the website:

This advisory is jointly produced by government agencies from the UK, Australia, Canada, Germany, the Netherlands, New Zealand, the Republic of Korea and the US and is supported by members of the NCSC’s Cyber League. Its purpose is to raise awareness about the growing threat that malicious cyber a...

13/12/2024

A critical file upload vulnerability (CVE-2024-53677) has been identified in the Apache Struts2 Framework that could allow path traversal, malicious file upload and lead to remote code ex*****on.

Reach out to Syntacks support by raising a ticket to get help or email [email protected].

www.syntacks.com.au/contact

Send a message to learn more