15 Jul 2020

Critical vulnerability in Microsoft Windows Server

Wormable Remote Code Execution (RCE) vulnerability CVE-2020-1350 allows an unauthenticated remote attacker to gain system privileges over Windows DNS infrastructure.

16 Jun 2020

Active ransomware campaign leveraging remote access technologies

We are aware of attackers accessing organisations’ networks through remote access systems such as remote desktop protocol (RDP) and virtual private networks (VPN), as a way to create ransomware attack opportunities. They are gaining access through weak passwords, organisations not using multi-factor authentication as an extra layer of security, or a remote access system that isn’t patched.

24 Mar 2020

Targeted attacks exploiting vulnerabilities in Microsoft Windows

The vulnerability being exploited allows remote code execution (RCE) in all supported versions of Windows and Windows Server operating systems and Windows 7.

13 Mar 2020

Critical remote unauthenticated vulnerability in SMBv3

SMBv3.1.1 contains a wormable remote unauthenticated code execution vulnerability.

10 Mar 2020

Vulnerability in Exchange Server actively exploited

Attackers are exploiting a vulnerability in the Exchange Control Panel allowing them to execute commands on the Exchange Server.

21 Jan 2020

Updated: Exploitation of critical Citrix vulnerability

Citrix ADC, Gateway, and certain versions of SD-WAN WANOP appliances are vulnerable to a critical remote execution exploit, which is being actively targeted.