29 Oct 2020

Increase in Ryuk ransomware attacks

A ransomware group, known as Ryuk, has encrypted the systems of medical facilities and hospitals predominantly in the United States.

24 Sep 2020

Critical Windows Authentication Vulnerability in Netlogon

A weakness in Windows’ authentication protocols Netlogon, allows an unprivileged attacker with network connectivity to gain Domain Administration level access to the Domain Controller.

07 Sep 2020

Emotet Malware being spread via email

Emotet malware is currently being spread via phishing emails containing macro-enabled documents.

15 Jul 2020

Critical vulnerability in Microsoft Windows Server

Wormable Remote Code Execution (RCE) vulnerability CVE-2020-1350 allows an unauthenticated remote attacker to gain system privileges over Windows DNS infrastructure.

16 Jun 2020

Active ransomware campaign leveraging remote access technologies

We are aware of attackers accessing organisations’ networks through remote access systems such as remote desktop protocol (RDP) and virtual private networks (VPN), as a way to create ransomware attack opportunities. They are gaining access through weak passwords, organisations not using multi-factor authentication as an extra layer of security, or a remote access system that isn’t patched.

24 Mar 2020

Targeted attacks exploiting vulnerabilities in Microsoft Windows

The vulnerability being exploited allows remote code execution (RCE) in all supported versions of Windows and Windows Server operating systems and Windows 7.