Bastion Security

Bastion Security Group is an official Malware Free Networks Partner for New Zealand’s National Cyber Security Centre

Bastion will help expand the reach and effectiveness of MFN
Talk to an expert

Bastion Security Group is proud to announce that it has been formally recognised as an official Malware Free Networks (MFN) partner of the National Cyber Security Centre (NCSC), reinforcing our commitment to strengthening the nation’s cyber resilience and safeguarding organisations from emerging and persistent threats.

Through this partnership, Bastion will help expand the reach and effectiveness of MFN - New Zealand’s premier capability for providing high-quality, actionable threat intelligence directly to organisations, enabling them to disrupt malicious activity before harm occurs.

Bastion’s Cassini CTI Service Surpasses 1 Billion Disruptions, Marking Major Milestone in Threat Mitigation

Simultaneously, Bastion is pleased to celebrate a major achievement for its flagship cyber threat intelligence service, Cassini CTI, which has now surpassed 1 billion threat disruptions. This milestone reflects years of engineering, innovation, continuous refinement, and deep commitment to protecting New Zealand’s digital ecosystem.

“Becoming an official MFN partner is significant for Bastion,” said James Fitzsimons, Head of Threat Detection and Response. “MFN plays a critical role in defending New Zealand organisations, and we’ve always been 100% committed in our support of that mission. Reaching 1 billion disruptions with our Cassini CTI service demonstrates the scale and effectiveness of our threat intelligence capability. Our intention is to continue to innovate and drive uptake of this important service to protect even more New Zealanders.”

The Cassini CTI platform continues to expand its detection coverage, automation capabilities, and intelligence partnerships. Bastion remains dedicated to evolving both the Cassini CTI product and the MFN integration, so customers receive broader, faster, and more accurate protection against threat actors operating across New Zealand and globally.

“Our goal is simple: stay ahead of threats and maximise the positive impact of our intelligence services. We are constantly working to improve the speed, reach, and operational value of the Cassini CTI service, and our collaboration with the NCSC through MFN significantly enhances that mission.” - James Fitzsimons, Head of Threat Detection and Response

As cyber threats continue to grow in sophistication, Bastion will remain committed to innovation, collaboration, and delivering world-class protections to New Zealand businesses, government agencies, and communities.


Events

Latest events

Join Bastion experts for networking events, technical briefings, and hands-on workshops hosted throughout the year.
View all events
No items found.
Cyber security news

Latest advisories

Stay ahead of emerging threats with our expert blog posts, research, and industry updates.
Access Token Exposure in URL Parameters in GridTime™ 3000 GNSS Time Server - (CVE-2026-12620)
During a security engagement, Leo Diamat discovered that the GridTime 3000 GNSS Time Server web application transmitted session access tokens via URL query string parameters on multiple endpoints.
Cross-Site Scripting (XSS) Vulnerability on Several Endpoints by Utilising Cross-Site Request Forgery (CSRF) in GridTime™ 3000 GNSS Time Server - (CVE-2026-12619)
During a security engagement, Leo Diamat discovered that multiple endpoints in the GridTime 3000 GNSS Time Server web application were vulnerable to reflected Cross-Site Scripting (XSS) via an unsanitised token parameter.
PHP-FPM (PHP Source) - Stored Cross-Site Scripting (XSS) (CVE-2026-6735)
During a security engagement, Conrad Draper discovered a stored XSS vulnerability in the PHP-FPM status endpoint which was due to a lack of input sanitisation of the request URI. This affects the request URI when displaying stored content.