Increase in Ryuk ransomware attacks
A ransomware group, known as Ryuk, has encrypted the systems of medical facilities and hospitals predominantly in the United States.
24 Sep 2020Critical Windows Authentication Vulnerability in Netlogon
A weakness in Windows’ authentication protocols Netlogon, allows an unprivileged attacker with network connectivity to gain Domain Administration level access to the Domain Controller.
07 Sep 2020Emotet Malware being spread via email
Emotet malware is currently being spread via phishing emails containing macro-enabled documents.
15 Jul 2020Critical vulnerability in Microsoft Windows Server
Wormable Remote Code Execution (RCE) vulnerability CVE-2020-1350 allows an unauthenticated remote attacker to gain system privileges over Windows DNS infrastructure.
16 Jun 2020Active ransomware campaign leveraging remote access technologies
We are aware of attackers accessing organisations’ networks through remote access systems such as remote desktop protocol (RDP) and virtual private networks (VPN), as a way to create ransomware attack opportunities. They are gaining access through weak passwords, organisations not using multi-factor authentication as an extra layer of security, or a remote access system that isn’t patched.
24 Mar 2020Targeted attacks exploiting vulnerabilities in Microsoft Windows
The vulnerability being exploited allows remote code execution (RCE) in all supported versions of Windows and Windows Server operating systems and Windows 7.