{"id":25476,"date":"2025-11-07T07:00:12","date_gmt":"2025-11-07T06:00:12","guid":{"rendered":"https:\/\/cyberinsights.iainfraser.net\/?p=25476"},"modified":"2025-11-13T16:05:20","modified_gmt":"2025-11-13T15:05:20","slug":"critical-android-threats","status":"publish","type":"post","link":"https:\/\/smecyberinsights.co.uk\/index.php\/2025\/11\/07\/critical-android-threats\/","title":{"rendered":"Critical New Android Vulnerabilities & The Essential\u00a0Security Steps Every SME Must Take Now\u00a0"},"content":{"rendered":"\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t<\/a>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t\t\t
\"Partners1_NordVPN\"<\/figure><\/div>
\"Partners3_R3\"<\/figure><\/div>
\"Partners2_Zoho\"<\/figure><\/div>
\"Partners4_Plesk\"<\/figure><\/div>
\"Partners4_Ensurety\"<\/figure><\/div>
\"Partners7_Passware\"<\/figure><\/div>
\"Red_Button_Slider\"<\/figure><\/div>
\"ogo2\"<\/figure><\/div>\t\t\t<\/div>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"Critical\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t
Image Credit: Prayad Kosasaeng from Pixabay <\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

Helping Keep Small Business CYBERSafe!
\n<\/strong>Gibraltar: Friday 07 November 2025 at 08:00 CET<\/p>\n

Critical New Android Vulnerabilities & The Essential <\/span>S<\/span>ecurity Steps Every S<\/span>ME<\/span>\u00a0Must Take Now<\/span><\/span>\u00a0<\/span><\/strong><\/b>
\nBy: Iain Fraser<\/a> – Cybersecurity Journalist<\/a>
\nPublished in Collaboration with: Nord VPN<\/a>
\nSMECyberInsights.co.uk<\/a> –\u00a0<\/a>First for SME Cybersecurity
\n<\/a>Google Indexed on 071125 at 09:03 CET<\/a>
\n#SMECyberInsights\u00a0 #SMECyberAwareness\u00a0 #CyberSafe #SME #SmallBusiness\u00a0 #Android #ThreatIntel #CyberRisk<\/em><\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"Nord\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

Critical New Android Vulnerabilities & The Essential\u00a0<\/span>S<\/span>ecurity Steps Every S<\/span>ME<\/span>\u00a0Must Take Now<\/span><\/span>\u00a0<\/span><\/strong><\/p>\n

Overlooked Risk:<\/span><\/b>\u00a0The Critical New Android Vulnerabilities & The Essential\u00a0<\/span>Cybersecurity<\/span><\/b>\u00a0Steps Every\u00a0<\/span>Small & Medium Enterprise<\/span><\/b>\u00a0Must Take Now<\/span>\u00a0<\/span><\/p>\n

For\u00a0<\/span>Small & Medium Enterprises<\/span><\/b>\u00a0(SMEs),\u00a0<\/span>Android<\/span><\/b>\u00a0devices\u00a0represent\u00a0a crucial operational tool; however, they are also an increasingly sophisticated\u00a0<\/span>Cyber<\/span><\/b>\u00a0vulnerability. The pervasive use of personal and corporate Android phones for email, banking, and sensitive client communication means the security of these devices is inextricably linked to the survival of your\u00a0<\/span>SME<\/span><\/b>\u00a0itself. The emergence of zero-permission attacks, such as the alarming\u00a0<\/span>Pixnapping<\/span><\/b>\u00a0exploit, makes immediate, authoritative action essential to protect your company’s data, reputation, and operational continuity now.<\/span>\u00a0<\/span><\/p>\n

Why This Matters: The New Reality of ‘Pixnapping’<\/span><\/b>\u00a0<\/span><\/p>\n

Pixnapping<\/span><\/b> is a sophisticated side-channel attack that enables a malicious app, once installed, to snoop on the screen of an Android device without requiring explicit permissions, effectively bypassing core <\/span>Cybersecurity<\/span><\/b>\u00a0protections. This vulnerability, tracked as\u00a0<\/span>CVE-2025-48561<\/span><\/b>,\u00a0leverages\u00a0subtle timing differences in how the phone\u2019s Graphics Processing Unit (GPU)\u00a0renders\u00a0pixels when a transparent overlay is placed over a target app; it does not rely on screenshots or common permissions.<\/span>\u00a0<\/span><\/p>\n

The risks associated with this type of attack are profound for any\u00a0<\/span>Small & Medium Enterprise<\/span><\/a>\u00a0that handles sensitive data:<\/span>\u00a0<\/span><\/p>\n

*\u00a02FA Code Theft;<\/span><\/b>\u00a0Attackers can steal temporary two-factor authentication (2FA) codes from apps like Google Authenticator in under 30 seconds.<\/span>
\n<\/span>*\u00a0Private Data Interception;<\/span><\/b>\u00a0Messages from corporate emails, banking transactions, and private chats (e.g., from Signal or Gmail) can be read in real-time.<\/span>
\n<\/span>*\u00a0Location Surveillance;<\/span><\/b>\u00a0The attack can intercept location data and timelines from mapping applications, revealing sensitive business movements.<\/span>
\n<\/span>*\u00a0Zero-Permission Requirement;<\/span><\/b>\u00a0The malicious app does not need intrusive permissions, making it\u00a0virtually undetectable\u00a0by users and traditional security checks.<\/span>\u00a0<\/span><\/p>\n

Authoritative Cyber Insight: From RCE to Ransomware<\/span><\/b>\u00a0<\/span><\/p>\n

The overall\u00a0<\/span>Cyber<\/span><\/b>\u00a0threat environment for mobile devices is escalating, according to authoritative sources. The\u00a0<\/span>NCSC<\/span><\/b>\u00a0(<\/span>National Cyber Security Centre<\/span><\/a>) has highlighted that ransomware\u00a0remains\u00a0the most significant threat to UK businesses; their 2024 data\u00a0indicates\u00a0a troubling reality:\u00a0<\/span>42% of small businesses reported a Cyber breach or attack in the preceding year<\/span><\/b>.<\/span>\u00a0<\/span><\/p>\n

Beyond novel side-channel attacks like\u00a0<\/span>Pixnapping<\/span><\/b>, ongoing vulnerabilities in the core\u00a0<\/span>Android<\/span><\/b>\u00a0Operating System pose critical risks:<\/span>\u00a0<\/span><\/p>\n

*\u00a0Remote Code Execution (RCE)<\/span><\/b>: This refers to vulnerabilities,\u00a0frequently\u00a0found in the core System or Framework components, that allow an attacker to remotely run malicious code on a device without needing any\u00a0additional\u00a0execution privileges or user interaction. Recent security bulletins from late 2024 and 2025 have repeatedly\u00a0contained\u00a0high-severity\u00a0<\/span>RCE<\/span><\/b>\u00a0flaws.<\/span>
\n<\/span>*\u00a0Elevation of Privilege (EoP)<\/span><\/b>: This allows a less-privileged attacker (such as a standard installed app) to gain higher-level permissions, enabling them to bypass security controls and steal or\u00a0delete\u00a0data.<\/span>
\n<\/span>*\u00a0Persistent Malware Threats<\/span><\/b>: Trojan families such as\u00a0<\/span>BianLian<\/span><\/b>\u00a0and\u00a0<\/span>BancaMarStealer<\/span><\/b>\u00a0continue to target banking credentials using screen overlays; simultaneously, spyware like\u00a0<\/span>IdShark<\/span><\/b>\u00a0and\u00a0<\/span>Triada<\/span><\/b>\u00a0actively exfiltrate contact lists, financial information, and location data, often disguised as legitimate apps.<\/span>\u00a0<\/span><\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t
\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\"Critical\t\t\t\t\t\t\t\t\t\t\t
Image Credit: Prayad Kosasaeng from Pixabay <\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

SME-Specific Impact: Why\u00a0Your\u00a0<\/span><\/b>Small & Medium Enterprise<\/span><\/b><\/a>\u00a0is a Target<\/span><\/b>\u00a0<\/span><\/p>\n

Small & Medium Enterprises<\/span><\/b>\u00a0are particularly vulnerable to these\u00a0<\/span>Android<\/span><\/b>\u00a0threats due to operational characteristics that differ from large corporations:<\/span>\u00a0<\/span><\/p>\n

*\u00a0Bring Your Own Device (BYOD) Exposure<\/span><\/b>; Employees often use personal, non-managed Android devices for work, leading to a critical gap between personal app habits and corporate\u00a0<\/span>Cybersecurity<\/span><\/b>\u00a0standards.<\/span>
\n<\/span>*\u00a0Delayed Patching Cycles<\/span><\/b>; Due to hardware diversity and lack of centralised IT management, many\u00a0<\/span>SMEs<\/span><\/b>\u00a0suffer from out-of-date Operating System (OS) versions and Android Security Patch Levels (ASPLs), leaving known vulnerabilities open to exploitation.<\/span>
\n<\/span>*\u00a0High-Value, Low-Defended Targets<\/span><\/b>; Attackers view\u00a0<\/span>SMEs<\/span><\/b>\u00a0as a less-defended gateway to high-value data, including access to larger supply chains or the financial information needed for\u00a0<\/span>GDPR<\/span><\/b>\u00a0(<\/span>General Data Protection Regulation<\/span><\/a>) violation fines.<\/span>
\n<\/span>*\u00a0Lack of Proactive Monitoring<\/span><\/b>; Without dedicated\u00a0<\/span>Cyber<\/span><\/b>\u00a0Intel and Endpoint Detection and Response (EDR) solutions, subtle attacks like\u00a0<\/span>Pixnapping<\/span><\/b>\u00a0or hidden Trojans go unnoticed until a catastrophic event occurs.<\/span>\u00a0<\/span><\/p>\n

Quick Action Steps: Fortifying Your Android Fleet<\/span><\/b>\u00a0<\/span><\/p>\n

Implementing a proactive, mobile-centric\u00a0<\/span>Cyber<\/span><\/b>\u00a0strategy offers a strategic advantage and provides operational improvements by reducing the cost and downtime associated with breaches.<\/span>\u00a0<\/span><\/p>\n

1. Update<\/span><\/b>\u00a0All Devices; Immediately enforce all over-the-air (OTA) system and app updates to patch critical flaws like\u00a0<\/span>Pixnapping<\/span><\/b>\u00a0(CVE-2025-48561).<\/span>\u00a0<\/span><\/p>\n

2. Enforce<\/span><\/b>\u00a0Multi-Factor Authentication (MFA); Deploy hardware keys or authenticator apps (like Microsoft\/Google Authenticator) across all corporate accounts and services.<\/span>\u00a0<\/span><\/p>\n

3. Install<\/span><\/b>\u00a0Apps Only from Trusted Sources; Restrict users to only install applications directly from the official Google Play Store, avoiding ‘sideloading’ unknown APK files.<\/span>\u00a0<\/span><\/p>\n

4. Review<\/span><\/b>\u00a0App Permissions Rigorously; Audit existing applications; if an app\u2019s permissions (e.g., location, contacts, or drawing over other apps) seem excessive for its function, uninstall it\u00a0immediately.<\/span>\u00a0<\/span><\/p>\n

5. Mandate<\/span><\/b>\u00a0Strong Device Locks; Ensure all company-related devices use strong PINs, biometrics, or passwords and have aggressive screen-lock time-outs (e.g., 30 seconds).<\/span>\u00a0<\/span><\/p>\n

6. Implement<\/span><\/b>\u00a0Mobile Endpoint Detection and Response (MEDR); Deploy a solution that actively\u00a0monitors\u00a0app behaviour and system activity, providing\u00a0<\/span>Cyber<\/span><\/b>\u00a0visibility beyond basic antivirus checks.<\/span>\u00a0<\/span><\/p>\n

7 .Train<\/span><\/b>\u00a0Staff on\u00a0<\/span>Cyber<\/span><\/b>\u00a0Awareness; Regularly educate employees on phishing, social engineering, and the dangers of clicking on links or installing apps from untrusted sources; people\u00a0remain\u00a0your strongest or weakest link.<\/span>\u00a0<\/span><\/p>\n

Looking Ahead<\/span><\/b>\u00a0<\/span><\/p>\n

The future of mobile\u00a0<\/span>Cybersecurity<\/span><\/b>\u00a0for the\u00a0<\/span>Small & Medium Enterprise<\/span><\/a>\u00a0will be defined by resilience against zero-day and side-channel exploits, driven by increasing attacker sophistication via Artificial Intelligence (AI). By embracing foundational frameworks like the\u00a0<\/span>NCSC<\/span><\/b>\u2019s\u00a0<\/span>Cyber Essentials<\/span><\/b>\u00a0(<\/span>https:\/\/www.ncsc.gov.uk\/<\/span><\/a>) and prioritising fast patching,\u00a0<\/span>SME<\/span><\/b>\u00a0owners can transform mobile vulnerability into a defensible competitive advantage, ensuring business continuity in a highly volatile\u00a0<\/span>Cyber<\/span><\/b>\u00a0landscape.<\/span>\u00a0<\/span><\/p>\n

For a deeper dive into sophisticated Android attacks that bypass traditional security models, this video explores a similar type of zero-permission vulnerability that manipulates user interaction using animations.\u00a0<\/span>USENIX Security ’25 – TapTrap: Animation-Driven Tapjacking on Android<\/span><\/a>\u00a0<\/span><\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"Nord\"\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t
<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

What is a VPN & Does my SME Need one?<\/strong> A VPN<\/strong><\/a> is a Virtual Private Network a method of securing your communications credentials. When it comes to SMEs<\/strong><\/a>, the choice of VPNs<\/strong><\/a> can significantly impact the security and efficiency of their operations. NordVPN<\/b> secures your Internet data with military-grade encryption, ensures your activity remains private and helps bypass geographic content restrictions online.\u00a0 \u00a0Join\u00a0NordVPN\u00a0Today and\u00a0Save\u00a0up to\u00a073%\u00a0and Get 3 months\u00a0Extra Free<\/a> – Rude Not to \u2026!<\/strong><\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\tLearn More \/...<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t\t\t
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"Data<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>
\"CI_Feature<\/figure><\/div>\t\t\t<\/div>\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t<\/path><\/svg>\t\t\t\t\t<\/div>\n\t\t\t\t\t
\n\t\t\t\t\t\t<\/path><\/svg>\t\t\t\t\t<\/div>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t
<\/div>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

Image Credit: Prayad Kosasaeng from Pixabay Image Credit: Prayad Kosasaeng from Pixabay Learn More \/…<\/p>\n","protected":false},"author":1,"featured_media":25477,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"cybocfi_hide_featured_image":"yes","footnotes":""},"categories":[440],"tags":[779],"ppma_author":[505],"class_list":["post-25476","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyberthreat-intel","tag-androidrisks"],"featured_image_urls":{"full":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280.jpg",1280,853,false],"thumbnail":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280-150x150.jpg",150,150,true],"medium":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280-300x200.jpg",300,200,true],"medium_large":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280-768x512.jpg",640,427,true],"large":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280-1024x682.jpg",640,426,true],"1536x1536":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280.jpg",1280,853,false],"2048x2048":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280.jpg",1280,853,false],"covernews-featured":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280-1024x682.jpg",1024,682,true],"covernews-medium":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2025\/11\/android-1814556_1280-540x340.jpg",540,340,true]},"author_info":{"display_name":"Cybersecurity Journalist Iain Fraser","author_link":false},"category_info":"SME CYBER\/THREAT INTEL<\/a>","tag_info":"SME CYBER\/THREAT INTEL","comment_count":"0","authors":[{"term_id":505,"user_id":1,"is_guest":0,"slug":"admin_yjdstq4n","display_name":"Cybersecurity Journalist Iain Fraser","avatar_url":{"url":"https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/10\/index_image440-removebg-preview.png","url2x":"https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/10\/index_image440-removebg-preview.png"},"author_category":"1","user_url":"http:\/\/smecyberinsights.co.uk","last_name":"Cybersecurity Journalist","first_name":"Iain Fraser","job_title":"","description":""}],"_links":{"self":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/25476","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/comments?post=25476"}],"version-history":[{"count":7,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/25476\/revisions"}],"predecessor-version":[{"id":25585,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/25476\/revisions\/25585"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/media\/25477"}],"wp:attachment":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/media?parent=25476"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/categories?post=25476"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/tags?post=25476"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/ppma_author?post=25476"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}