30 Oct 2020

Oracle WebLogic Server vulnerability being exploited

Researchers have discovered a critical vulnerability in the web services component of Oracle WebLogic Server which is being actively exploited by attackers.

Oracle has released a patch to mitigate this issue.

29 Oct 2020

Increase in Ryuk ransomware attacks

A ransomware group, known as Ryuk, has encrypted the systems of medical facilities and hospitals predominantly in the United States.

24 Sep 2020

Critical Windows Authentication Vulnerability in Netlogon

A weakness in Windows’ authentication protocols Netlogon, allows an unprivileged attacker with network connectivity to gain Domain Administration level access to the Domain Controller.

07 Sep 2020

Emotet Malware being spread via email

Emotet malware is currently being spread via phishing emails containing macro-enabled documents.

15 Jul 2020

Critical vulnerability in Microsoft Windows Server

Wormable Remote Code Execution (RCE) vulnerability CVE-2020-1350 allows an unauthenticated remote attacker to gain system privileges over Windows DNS infrastructure.

16 Jun 2020

Active ransomware campaign leveraging remote access technologies

We are aware of attackers accessing organisations’ networks through remote access systems such as remote desktop protocol (RDP) and virtual private networks (VPN), as a way to create ransomware attack opportunities. They are gaining access through weak passwords, organisations not using multi-factor authentication as an extra layer of security, or a remote access system that isn’t patched.