Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Vect is a newly observed RaaS operation that emerged in December of 2025, with affiliate recruitment and victim postings following shortly after in January 2026. Following the 19th of March 2026 Trivy/LiteLLM supply chain attack conducted by TeamPCP, in which ~340 GB uncompressed data was stolen, Vect announced on the dark web forum “Breached” that they would be partnering with TeamPCP.

This report documents a direct operational link between the exposed infrastructure of Iranian threat actor MuddyWater and TAG-150 CastleRAT malware – a modular malware-as-a-service (MaaS) platform developed by Russian-speaking cybercriminals.

ALBIRIOX is an Android-focused Remote Access Trojan (RAT) with the potential to impact organisations operating cloud/SaaS environments where employees access corporate resources and files from personal mobile devices.

The cost of hiring an outsourced cyber security company can start from as little as £500 per month, or £10,000 or higher for large companies. For global multi nationals, it wouldn’t be unreasonable to spend millions on cyber security and to protect yourself against an attack of data breach. Companies have the option to use ongoing monthly services to detect potential threats, or the opportunity to do one-off tests to check for vulnerabilities such as penetration testing or red teaming.

AI attacks pose real risks for companies because of their ability to scale and automate attacks like brute force attacks, smarter malware, deep fakes and advanced phishing. Attacks that were once slow, manual and easy to spot are now becoming faster, more sophisticated and harder to detect. UK government research shows that 32% of UK businesses have experienced a cyber attack in the last year, and experts warn that AI could make this number rise significantly.

Outsourcing cyber security is becoming increasingly common for UK organisations of all sizes. With cyber threats growing every year, many businesses simply do not have the in-house resources, staff, or specialist skills to stay protected. Recent UK government data shows that 48% of small businesses experienced a cyber breach in the last 12 months, and over 70% of companies say they lack the internal expertise needed to manage cyber risks effectively.

As Jaguar Land Rover (JLR) announces a return to operations after a six-week disruption, a lengthier, less publicised UK-based cyber-attack recovery remains unresolved. Perhaps the relative quiet is because Colt Technology Services, a critical connectivity and trading network serving major banks and stock exchanges in ~30 countries, is not a household name like JLR, Co-Op, or M&S. Or perhaps it’s because the narrative doesn’t fit the now-expected Scattered Spider storyline.

The UK will ban public bodies from paying ransoms and introduce new reporting rules for ransomware incidents. Public sector organisations must prepare to recover without paying. Private firms must notify the government if they plan to pay. Attackers may shift focus to private targets and use data leaks over encryption. Organisations need better visibility, response readiness, and tested recovery plans. Payment is no longer a fallback.

In many organisations, the security operations centre (SOC) is overwhelmed. The volume of alerts coming from tools like Sentinel, Defender for Endpoint, and Cloud Apps is high—and growing. Spending more time triaging noise than they are stopping real threats, does this sound familiar? This isn’t about analyst headcount or tool choice. It’s about architecture.

Cyber teams are busy. Tools are deployed. Alerts are flowing. Dashboards light up with scores, heatmaps, and recommendations. But when I ask one simple question — “What does this mean for the business?” – I often get technical jargon or vague reassurances. That’s a problem. When cyber risk isn’t expressed in terms the business understands — continuity, customer trust, regulatory exposure, and revenue impact — it becomes abstract.