Threats and Risks

Citrix to release 'thoroughly tested' fixes for CVE-2019-19781 security flaw by the end of January

More than 2,000 servers in teh UK vulnerable to Citrix remote access security flaw

• Threats and Risks
• 13 January 2020

TrickBot group exploiting PowerShell-based backdoor to target high-value organisations

New TrickBot backdoor is designed for persistence, stealth, and reconnaissance on compromised machines

• Threats and Risks
• 10 January 2020

Warning over LockerGoga and MegaCortex ransomware attacks targeting private industry in western countries

The actors behind the two ransomware were found using stolen login credentials, SQL injections, phishing attacks, and several other techniques to gain entry into a corporate network

• Threats and Risks
• 24 December 2019

Encryption weaknesses in RSA certificates leave IoT devices vulnerable to attack

Researchers find one-in-172 RSA certificates using a common factor to generate keys

• Threats and Risks
• 17 December 2019

Warning over Zeppelin ransomware targeting healthcare and tech firms across Europe and US

Analysis of Zeppelin's code suggests that it was first compiled last month

• Threats and Risks
• 12 December 2019

Warning over Fullz House Magecart threat group using phishing and web skimming to compromise web payments

Fullz House Magecart threat group has branched out from selling 'Fullz' - full packages of information - on underground trading sites

• Threats and Risks
• 27 November 2019

Vulnerability in Qualcomm's Secure Execution Environment could allow hackers to steal sensitive data from Android devices

QSEE is an implementation of Trusted Execution Environment based on ARM TrustZone technology

• Threats and Risks
• 15 November 2019

Warning over new Bluetooth security vulnerability

Devices become vulnerable when they are initially paired to a mobile app

• Threats and Risks
• 15 November 2019

Magecart group 5 is linked to Carbanak and Dridex banking Trojan

The 'modus operandi' of Magecart 5 is very different from other, similar threat groups, according to Malwarebytes

• Threats and Risks
• 23 October 2019

Iran-linked APT 'Charming Kitten' adds new impersonation tactics to trick potential victims

The group, also known as APT35, is thought to have recently targeted the US presidential primary elections

• Threats and Risks
• 14 October 2019

Transport, shipping and utilities targeted in two new malware campaigns

One campaign involves an alleged state-sponsored threat group that has compromised at least 17 US utilities in the past five months

• Threats and Risks
• 24 September 2019

Microsoft president Brad Smith calls for international convention to tackle 'unstoppable' rise of killer robots

US, Russia, China, Israel, and South Korea are all working on autonomous weapons systems

• Threats and Risks
• 23 September 2019

Emotet returns, spreading via spam emails and stolen credentials

Emotet was originally developed as a banking Trojan, but was re-written to work as a malware loader

• Threats and Risks
• 20 September 2019

Massive ticket fraud scheme targeting Groupon and Ticketmaster uncovered with discovery of unsecured database

Unsecured database containing 17 million email addresses was found to be part of fraud targeting Groupon, Ticketmaster and other online ticket vendors

• Threats and Risks
• 13 September 2019

NetCAT side-channel flaw affecting Intel server CPUs could enable attackers to sniff sensitive network data

The weakness affects all Intel chips supporting the RDMA and DDIO features

• Threats and Risks
• 11 September 2019

Warning over Win32/StealthFalcon malware that uses Windows update system to steal data

The BITS system is used by Microsoft to send Windows updates to its users and is generally ignored by firewalls

• Threats and Risks
• 10 September 2019

Critical vulnerabilities in Telestar IoT radio devices could enable attackers to remotely capture systems

Hackers can also transmit audio as commands and force a play stream using the security bugs

• Threats and Risks
• 09 September 2019

Apple criticises Google for creating 'false impression' about the scale of iPhone hack

Apple claims that the attack on iPhones was not "a broad-based exploit of iPhones" as described by Google Project Zero

• Threats and Risks
• 09 September 2019

Google Project Zero discovers malicious websites that have been hacking iPhones for at least two years

Successful attacks enabled hackers to access passwords, messages and photos from iPhones and iPads

• Threats and Risks
• 30 August 2019

Google patches high-severity Chrome browser engine security flaw

The flaw could enable attackers to carry out remote code-execution or denial-of-service attacks

• Threats and Risks
• 29 August 2019

Apple patches security flaw that allowed iPhone jailbreak

The bug was fixed in iOS 12.3 but accidentally unpatched with the release of iOS 12.4

• Threats and Risks
• 27 August 2019

Russian hacking group Silence APT now aggressively targeting banks across Asia-Pacific

Financial damage linked to Silence APT has increased about five times over the past year

• Threats and Risks
• 22 August 2019

Vulnerabilities in Google Nest Cam IQ Indoor camera could allow attackers to take over a device

Denial of service, code execution and information disclosure bugs found in Google's Nest Cam IQ indoor camera system

• Threats and Risks
• 21 August 2019

US Cyber Command releases malware samples linked to North Korean hackers

One sample appears to be the same piece of malware which the US agencies warned about in May

• Threats and Risks
• 16 August 2019