Month: March 2021

School's our before summer

School’s out before summer

It’s not all about making zee monies (whilst providing excellent customer service, value and security outcome, obvs) at Tiberium HQ. As it happens, ‘What’s that coming over the hill’ was written and performed by ‘The Automatic’ who are from Cardiff, so in their case, what might be coming over the hill is something to be … Read more

Let me in blog post image

Let Me In

Let Me In This week, Facebook announced the extension of support for ‘physical security keys’, previously only supported on desktops, to Android and iOS devices We have been reading about the rise and rise of hardware tokens for years, ever since they took a back seat in the enterprise in favour of software tokens (a … Read more


DearCry Automated Action

Follow on from our last blog post, where we covered off proof of concept code for the HAFNIUM linked Exchange server intrusions. We are now diving deeper into DearCry, a new strain of ransomware that several threat actor groups are deploying.

frost automation title

Send Me a Letter

In last week’s blog, we talked about the bad news for those running in-house Exchange servers being exploited by an unpatched (aka Zero Day) Remote Code Execution issue, initial being exploited by nation-state type hackers. Exploitations of un-patched shizzle grow very much like bacteria on agar jelly. See this terrifying video to understand the similarities. … Read more



Announcing Tiberium FROST and MYTHIC, two new MSSP services from the Tiberium Cyber Defence Centre. Our services are built to deliver cyber security outcomes. To get you up and running we have created an onboarding bot to guide you through the process, it is fast. At the end of the first day using our service, … Read more


Look Out

This week it is bad news for people running in-house, Internet facing Exchange servers, which are being actively exploited by nation-state actors to facilitate the theft of intellectual property and other data from seemingly specific verticals, including infectious disease researchers, higher education institutions, defence contractors, policy