Oracle WebLogic Server vulnerability being exploited
Researchers have discovered a critical vulnerability in the web services component of Oracle WebLogic Server which is being actively exploited by attackers.
Oracle has released a patch to mitigate this issue.
Increase in Ryuk ransomware attacks
A ransomware group, known as Ryuk, has encrypted the systems of medical facilities and hospitals predominantly in the United States.24 Sep 2020
Critical Windows Authentication Vulnerability in Netlogon
A weakness in Windows’ authentication protocols Netlogon, allows an unprivileged attacker with network connectivity to gain Domain Administration level access to the Domain Controller.07 Sep 2020
Emotet Malware being spread via email
Emotet malware is currently being spread via phishing emails containing macro-enabled documents.15 Jul 2020
Critical vulnerability in Microsoft Windows Server
Wormable Remote Code Execution (RCE) vulnerability CVE-2020-1350 allows an unauthenticated remote attacker to gain system privileges over Windows DNS infrastructure.16 Jun 2020
Active ransomware campaign leveraging remote access technologies
We are aware of attackers accessing organisations’ networks through remote access systems such as remote desktop protocol (RDP) and virtual private networks (VPN), as a way to create ransomware attack opportunities. They are gaining access through weak passwords, organisations not using multi-factor authentication as an extra layer of security, or a remote access system that isn’t patched.