Threats and Risks
NCSC advises online shoppers to be careful over Black Friday
The festive period is a potentially rewarding period for cyber criminals
Amazon patents a novel technique to identify content pirates on Prime
New method will identify subscribers who make duplicates of Amazon's copyrighted content
DDoS attacks increased 300 per cent in the third quarter of 2020 compared to Q1
Q3 DDoS attacks accounted for 56 per cent of all attacks seen so far this year
Millions of Bumblers' personal information exposed in dating app security flaw
Attackers could steal names, pictures and even information on the kind of partner a Bumble user was seeking
UK firms are paying some of the highest ransoms globally
British companies see Russia as a bigger threat than China
Fraudsters are targeting Christmas shoppers
More people are at risk of being cheated this year, according to UK Finance
Forum on Information and Democracy releases damning report on social media platforms
Adding "friction" to online sharing could help to prevent the fast spread of fake news
Patch Tuesday: Microsoft addresses Windows zero-day vulnerability and 111 others
Patches include one for a zero-day flaw disclosed by Google's researchers last month
Criminal gangs are using fake Microsoft Teams updates to infect networks with Cobalt Strike
Hackers are specifically targeting the education sector where use of collaboration tools is high, according to Microsoft
Credential-related attacks lead to the biggest financial losses, says report
Extreme loss events could cost victims 100 times their annual revenue or more, says the Cyentia Institute
GCHQ begins operation against Russian disinformation on COVID-19 vaccine
GCHQ is using tools that were originally developed to tackle ISIS recruitment in its fight against disinformation
Scammers are exploiting a legitimate Google Drive feature to spread malware
The notifications themselves come from Google, lending some credibility to the attack
Google researchers disclose high-severity vulnerability affecting GitHub
The bug makes GitHub Action's workflow commands vulnerable to injection attacks, according to researchers
A quarter of cyber security incidents are Covid-related, NCSC
Security agency reports a 20 per cent increase in the total number of incidents compared with the annual average
Google reveals details of Windows zero-day vulnerability
Hackers are exploiting the vulnerability, in combination with a separate Chrome bug, to launch attacks
Russian cyber actors are targeting national parliaments and ministries of foreign affairs, US agencies warn
Hackers used ComRAT and Zebrocy malware in these attacks
Cyber actors are attempting to exploit Windows Zerologon and Oracle security flaws, researchers warn
The vulnerabilities have already been addressed but many systems remain unpatched
US hospitals under 'imminent threat' of ransomware attack, say CISA and the FBI
'Brazen, heartless and disruptive threat actors' deliberately targeting health facilities during the pandemic
US federal agencies warn organisations of global hacking campaign by North Korean Kimsuky group
The group is specifically interested in gaining intelligence on issues related to the Korean peninsula
US blacklists Russian research institute over dangerous Triton malware
The malware was used to target a petrochemical facility in the Saudi Arabia in 2017
Russian APT group 'Energetic Bear' attacking state and local networks
There's no evidence to suggest that the group has been able to compromise the integrity of elections data
Iran is sending emails to intimidate voters, US officials claim
The message warns recipients with consequences if they don't vote for Trump in 2020 Presidential Election
NSA details top 25 vulnerabilities to patch immediately
The NSA says Chinese state-sponsored hackers are actively exploiting these bugs in the wild
Microsoft addresses RCE bugs in Windows Codecs Library and Visual Studio Code
CISA is advising users and admins to patch their systems as soon as possible
Most read
