"2025’s exploited vendors followed the same pattern we observed last year, with big tech experiencing the most zero-day exploitation and security vendors following directly behind.

"2025’s exploited vendors followed the same pattern we observed last year, with big tech experiencing the most zero-day exploitation and security vendors following directly behind.
...
#Cisco and #Fortinet remain commonly targeted networking and security vendors, while #Ivanti and #VMware continue to see exploitation that reflects the high value threat actors place on VPNs and virtualization platforms."

Look What You Made Us Patch: 2025 Zero-Days in Review | Google Cloud Blog

Our analysis of 90 zero-day vulnerabilities tracked in 2025, focusing on techniques and how AI will accelerate the vulnerability landscape.

Google Cloud Blog (cloud.google.com)

Meanwhile in the UK:

"The government’s previous shared services strategies failed to deliver their intended cost savings and other benefits. Its new Shared Services Strategy is highly ambitious..."

#gcdigital #sharedservices

Government Shared Services - NAO report

The Government has made progress delivering its latest strategy to share back-office services across Whitehall departments in the past year, but remaining barriers will need to be addressed for it to deliver its plans by 2028 and achieve value for money, according to the National Audit Office.

National Audit Office (NAO) (www.nao.org.uk)

Austrailia's early 2000s experiment with a #SharedServices organization is super interesting.

Super impressed that they actually checked that their #centralization effort was delivering on it's claims.... and it wasn't.

The original business case was "fundamentally flawed" and has "resulted in a total cost to the State of $473 million" instead of the expected savings of $68 million/year.

* 91 per cent of sampled agencies comment that service delivery has deteriorated upon transitioning to shared
services.
* Over 80 per cent of the sampled agencies reported that processing timeframes have worsened
* rolling-in to the DTFSSC has had a detrimental impact on the operations of the majority of rolled-in agencies

"The Authority concludes that the current structure of the DTFSSC is problematic. It is a monopoly provider, with a mandated client base and a lack of meaningful service level agreements. This means that there are minimal incentives for DTFSSC to improve service delivery and few ways in which client agencies can hold DTFSSC accountable"

#gcdigital

https://www.erawa.com.au/sites/default/files/Final%20Report%20-%20Inquiry%20into%20the%20Benefits%20and%20Costs%20Associated%20with%20the%20Provision%20of%20Shared%20Corporate%20Services%20in%20the%20Public%20Sector%20-%2010%20June%202011.PDF