Critical vulnerability in Microsoft Windows Server
Wormable Remote Code Execution (RCE) vulnerability CVE-2020-1350 allows an unauthenticated remote attacker to gain system privileges over Windows DNS infrastructure.
16 Jun 2020Active ransomware campaign leveraging remote access technologies
We are aware of attackers accessing organisations’ networks through remote access systems such as remote desktop protocol (RDP) and virtual private networks (VPN), as a way to create ransomware attack opportunities. They are gaining access through weak passwords, organisations not using multi-factor authentication as an extra layer of security, or a remote access system that isn’t patched.
24 Mar 2020Targeted attacks exploiting vulnerabilities in Microsoft Windows
The vulnerability being exploited allows remote code execution (RCE) in all supported versions of Windows and Windows Server operating systems and Windows 7.
13 Mar 2020Critical remote unauthenticated vulnerability in SMBv3
SMBv3.1.1 contains a wormable remote unauthenticated code execution vulnerability.
10 Mar 2020Vulnerability in Exchange Server actively exploited
Attackers are exploiting a vulnerability in the Exchange Control Panel allowing them to execute commands on the Exchange Server.
21 Jan 2020Updated: Exploitation of critical Citrix vulnerability
Citrix ADC, Gateway, and certain versions of SD-WAN WANOP appliances are vulnerable to a critical remote execution exploit, which is being actively targeted.