Threats and Risks

Iran-linked APT 'Charming Kitten' adds new impersonation tactics to trick potential victims

The group, also known as APT35, is thought to have recently targeted the US presidential primary elections

Threats and Risks
14 October 2019

Transport, shipping and utilities targeted in two new malware campaigns

One campaign involves an alleged state-sponsored threat group that has compromised at least 17 US utilities in the past five months

Threats and Risks
24 September 2019

Microsoft president Brad Smith calls for international convention to tackle 'unstoppable' rise of killer robots

US, Russia, China, Israel, and South Korea are all working on autonomous weapons systems

Threats and Risks
23 September 2019

Emotet returns, spreading via spam emails and stolen credentials

Emotet was originally developed as a banking Trojan, but was re-written to work as a malware loader

Threats and Risks
20 September 2019

Massive ticket fraud scheme targeting Groupon and Ticketmaster uncovered with discovery of unsecured database

Unsecured database containing 17 million email addresses was found to be part of fraud targeting Groupon, Ticketmaster and other online ticket vendors

Threats and Risks
13 September 2019

NetCAT side-channel vulnerability affecting Intel's server-grade chips could allow attackers to sniff sensitive data over the network

NetCAT side-channel flaw affecting Intel server CPUs could enable attackers to sniff sensitive network data

The weakness affects all Intel chips supporting the RDMA and DDIO features

Threats and Risks
11 September 2019

Warning over new Win32/StealthFalcon malware that uses Windows BITS service to transfer stolen data to attackers

Warning over Win32/StealthFalcon malware that uses Windows update system to steal data

The BITS system is used by Microsoft to send Windows updates to its users and is generally ignored by firewalls

Threats and Risks
10 September 2019

Critical vulnerabilities in Telestar IoT radio devices could enable attackers to remotely capture systems

Hackers can also transmit audio as commands and force a play stream using the security bugs

Threats and Risks
09 September 2019

Apple criticises Google for creating 'false impression' about the scale of iPhone hack

Apple claims that the attack on iPhones was not "a broad-based exploit of iPhones" as described by Google Project Zero

Threats and Risks
09 September 2019

Google Project Zero discovers malicious websites that have been hacking iPhones for at least two years

Successful attacks enabled hackers to access passwords, messages and photos from iPhones and iPads

Threats and Risks
30 August 2019

Google patches high-severity Chrome browser engine security flaw

The flaw could enable attackers to carry out remote code-execution or denial-of-service attacks

Threats and Risks
29 August 2019

Apple patches security flaw that allowed iPhone jailbreak

The bug was fixed in iOS 12.3 but accidentally unpatched with the release of iOS 12.4

Threats and Risks
27 August 2019

Russian hacking group Silence APT now aggressively targeting banks across Asia-Pacific

Financial damage linked to Silence APT has increased about five times over the past year

Threats and Risks
22 August 2019

Vulnerabilities in Google Nest Cam IQ Indoor camera could allow attackers to take over a device

Denial of service, code execution and information disclosure bugs found in Google's Nest Cam IQ indoor camera system

Threats and Risks
21 August 2019

US Cyber Command releases malware samples linked to North Korean hackers

One sample appears to be the same piece of malware which the US agencies warned about in May

Threats and Risks
16 August 2019

Serious security flaws discovered in six widely used enterprise printers

Some of the security flaws date back 30-40 years - but probably didn't matter in pre-internet days

Threats and Risks
14 August 2019

High-severity Windows security flaw enables attackers to hijack any Windows app

High-severity Windows security flaw enables attackers to hijack any application

Bug affects all versions of Microsoft Windows, back from Windows XP to Windows 10

Threats and Risks
14 August 2019

Valve updates Steam over escalation of privilege security flaw - but accused of ignoring other vulnerabilities

Gaping holes still exist in popular Steam app used by more than 90 million PC users every day, warn security researchers

Threats and Risks
13 August 2019

Vulnerabilities found in more than 40 Windows device drivers that could be exploited to compromise PCs and servers

The drivers belong to 20 Microsoft-certified hardware and BIOS vendors, including Intel and Huawei

Threats and Risks
12 August 2019

Russia's new cyber laws will fuel online crime, claims report

Russia's Sovereign Internet law looks to re-model the country's self-contained internet system on China's

Threats and Risks
09 August 2019

Steam client zero-day vulnerability enables arbitrary code to be run with LocalSystem privileges

The vulnerability was reported to Valve Software but was rejected for being 'out of scope'

Threats and Risks
08 August 2019

'Critical' security flaws identified in Cisco 220 Series Smart Switches

Cisco urges users of its Small Business 220 series of switches to update ASAP or risk corporate network compromise

Threats and Risks
07 August 2019

Russian hackers targeting IoT devices to penetrate corporate networks, warns Microsoft

IoT devices the 'soft underbelly' of corporate networks by Russia's Fancy Bear hackers, targeting VoIP phones and printers

Threats and Risks
06 August 2019

Warning over GermanWiper ransomware that erases victim's data but still asks for ransom

Victims have been advised not to pay ransom that that won't help them recover their files

Threats and Risks
05 August 2019

12 3

UK IT Industry Awards

Extracting Insight and Value from the Data Mountain with Augmented Analytics

Computing Cyber Security Live 2019

Security Excellence Awards 2019

Cloud ERP Spotlight