LEMON BLOG

Critical SAP Vulnerabilities Put Enterprise Systems Under Pressure

Cybersecurity | 14 May 2026

SAP has released a new round of security patches addressing multiple vulnerabilities across several of its enterprise software products. For organisations that rely on SAP systems to run finance, operations, commerce, reporting, planning, or business...

Google Says It Stopped The First Confirmed AI-Assisted Zero-Day Cyberattack Attempt

Cybersecurity | 12 May 2026

Artificial intelligence is no longer just a tool being used by businesses, developers, researchers, and security teams. According to Google's Threat Intelligence Group, it is now also becoming part of the attacker's toolkit in a much more serious way...

AI Tool Poisoning Shows Why Enterprise Agent Security Needs A Serious Rethink

Cybersecurity | 11 May 2026

AI agents are becoming more powerful because they can choose and use external tools on their own. Instead of waiting for a human to manually select every action, an agent can look through a tool registry, read the descriptions, decide which tool is s...

OCBC And UOB Malaysia Deny Alleged Data Breach Claims After Online Speculation

Cybersecurity | 06 May 2026

Malaysia's banking sector found itself in the spotlight recently after online claims suggested that customer data linked to OCBC Malaysia and UOB Malaysia had allegedly appeared on a cybercrime forum. The claims quickly gained attention because anyth...

When “Support” Messages Are Not Really Support: A Simple Reminder About Verification

Cybersecurity | 06 May 2026

Most of us are used to receiving messages from different people during the workday. It could be from IT Support, Finance, HR, management, a vendor, a bank, a courier company, or even someone claiming to represent an external service provider. In a no...

Trellix Confirms Data Breach After Attackers Access Part Of Its Source Code Repository

Cybersecurity | 05 May 2026

Trellix has confirmed that it recently experienced a data breach after attackers gained unauthorised access to part of its source code repository. For a cybersecurity company, this kind of incident naturally attracts attention because source code is...

CISA Warns That The ‘Copy Fail’ Linux Flaw Is Now Being Exploited To Gain Root Access

Cybersecurity | 05 May 2026

Linux administrators have another serious vulnerability to deal with, and this one deserves quick attention. The U.S. Cybersecurity and Infrastructure Security Agency, better known as CISA, has warned that attackers are now actively exploiting a Linu...

Hackers Are Mass-Exploiting A Critical cPanel Bug, And Website Owners Should Not Ignore It

Cybersecurity | 05 May 2026

A serious security issue affecting cPanel and WebHost Manager is now being actively exploited, with hackers reportedly compromising thousands of websites that still rely on vulnerable versions of the software. For website owners, hosting providers, d...

Google Chrome Security Update Fixes Multiple Serious Vulnerabilities

Cybersecurity | 04 May 2026

Google Chrome users should take the latest browser update seriously, especially if Chrome is used daily for work, online banking, email, web applications, cloud systems, or general browsing. A recent security advisory highlighted multiple vulnerabili...

When a Donation Scam Quietly Slips Into Your WhatsApp Group

Cybersecurity | 28 April 2026

It was just another normal day, checking messages in my children's school WhatsApp group. Nothing unusual — just the usual updates, reminders, and occasional chatter between parents. Then suddenly, a new number appeared in the group. No introduction,...

Multiple Windows Defender Zero-Day Exploits Detected — What You Need to Know

Cybersecurity | 28 April 2026

The cybersecurity landscape just got a bit more tense. A recent advisory highlights that multiple zero-day vulnerabilities in Microsoft Windows Defender are now being actively exploited in the wild. And while the situation hasn't resulted in widespre...

MINDEF Steps Up Cyber Defence With New PSEP Command

Cybersecurity | 24 April 2026

Malaysia is taking a more serious stance on cybersecurity, especially as threats in today's world are no longer limited to physical battlefields. In a move that reflects how warfare is evolving, the Ministry of Defence (MINDEF) has announced the form...

Anna’s Archive Hit With US$322 Million Judgment Over Spotify Data Scrape

Cybersecurity | 20 April 2026

The controversy surrounding Anna's Archive has taken a major legal turn, and the outcome is as one-sided as many expected. After previously claiming to have scraped Spotify's entire music library, the shadow library search engine quickly drew attenti...

Malaysia Moves Forward With Social Media Age Limit Proposal: What It Means For Users

Cybersecurity | 20 April 2026

Malaysia's plan to introduce a minimum age requirement for social media is gaining clearer direction, with the government reaffirming its intention to move ahead while still gathering public input. Fahmi Fadzil recently reiterated that the proposal t...

Critical Google Chrome Vulnerabilities Discovered — Why You Should Update Immediately

Cybersecurity | 14 April 2026

A recent security advisory has highlighted a series of serious vulnerabilities affecting Google Chrome, and this is one of those updates that really should not be ignored. According to the report, multiple flaws have been identified across different...

Designing Business Websites With Security in Mind

Cybersecurity | 13 April 2026

A business website can look modern, polished, and professionally branded, yet still leave visitors feeling oddly uncertain. Sometimes it is not one big problem. It is a collection of small signals. A form asks for too much information too early. A ch...

Fake CAPTCHA, Real Malware: How a Simple Website Tried to Trick Me Into Running a Dangerous Command

Cybersecurity | 13 April 2026

Sometimes the most effective online threats are not the ones that rely on complex hacking techniques, but the ones that simply trick people into trusting the wrong thing. That was exactly the feeling I got after visiting a website that, at first glan...

AI in Healthcare Is Promising, But Hospitals Cannot Ignore the Security Risks

Cybersecurity | 11 April 2026

Artificial intelligence is becoming one of the biggest talking points in healthcare, and it is not hard to see why. Hospitals and health systems are under constant pressure to do more with limited staff, rising patient expectations, tighter budgets,...

SC and MCMC Join Forces to Step Up the Fight Against Online Investment Scams

Cybersecurity | 04 April 2026

Malaysia's fight against online investment scams is getting a stronger push, with the Securities Commission Malaysia and the Malaysian Communications and Multimedia Commission formally joining forces through a new memorandum of understanding. The mov...

Bank Rakyat Hit With RM1 Million Fine Over Cybersecurity and Data Protection Failures

Cybersecurity | 02 April 2026

Cybersecurity failures in the banking sector are never a small matter, and this latest action by Bank Negara Malaysia sends a very clear message. Bank Kerjasama Rakyat Malaysia Bhd, better known as Bank Rakyat, has been fined RM1 million after the ce...