Cybersecurity teams today are dealing with a challenge that is difficult to overstate. Billions of log events are generated every single day. Attackers are moving faster than ever, and in many cases, they are using artificial intelligence themselves to find and exploit weaknesses before any human analyst gets the chance to respond. Traditional security tools […]
Most organisations today are not short on security tools. They have endpoint protection, email filtering, firewall monitoring, cloud security, and more. But here is the uncomfortable reality: having more tools does not mean being more secure. When those tools operate in silos and do not share information with each other, attackers only need to find […]
Cyber threats in Malaysia are no longer just the work of opportunistic hackers. Today, attacks are AI-assisted, automated, and built to slip past the defences that most organisations rely on. In 2025, Simply Data Security Operations Centre analysed over 120 billion security logs across more than ten industries. What we found confirmed what many security […]
A cybersecurity incident is inevitable — the question is whether your team is ready. Step-by-step incident response plan guide for Malaysian organisations in 2026, aligned with NACSA and RMiT requirements.
CVE-2026-35616 is a critical (CVSS 9.1) pre-authentication remote code execution zero-day in Fortinet FortiClient EMS — the management server that pushes endpoint-security policy to every FortiClient-managed device in an organisation. An unauthenticated attacker who reaches the EMS API can bypass all authentication and authorisation controls, execute arbitrary code on the server, and take command over […]
What Is a DFIR Report? A DFIR report is the final deliverable from a Digital Forensics and Incident Response engagement. Unlike a standard IT incident report, a DFIR report is structured as forensic evidence — meaning every finding is tied to a specific artefact, every conclusion is supported by documented evidence, and every gap in […]
What actually happens during IoT penetration testing? Our team physically tested 7 enterprise IoT devices — CCTV, NVR, intercoms, facial recognition — and found real vulnerabilities including a live firmware extraction proof-of-concept.
In today’s interconnected world, businesses are under constant threat from cybercriminals looking to exploit vulnerabilities in digital infrastructure. To stay ahead, organizations must invest in real-time security intelligence, a critical aspect of a Security Operations Center (SOC). Simply Data Threat Intelligence Database, specifically built for Malaysia, offers actionable insights to help businesses detect, prevent, and […]
Penetration testing in Malaysia is now a regulatory requirement for financial institutions and a best practice for all businesses. Learn what VAPT covers, what NACSA and BNM RMiT require, and how to choose a CREST-certified provider.
Malaysia’s PDPA Amendment Act 2024 introduces mandatory 72-hour breach notifications, fines up to RM1 million, and expanded data subject rights. Here’s what your business must do to stay compliant in 2025 and beyond.
