Threats and Risks
Ancient Linux bug gives unprivileged users root access
The bug was introduced seven years ago and only fixed last week
Google releases urgent Chrome update to address zero-day bug under active attack
Thirteen other bugs were also fixed in the new update
Microsoft patches seven zero-days in Patch Tuesday update
Six zero-days have been observed in active attacks
Siloscape malware targets Windows containers to access Kubernetes clusters
The malware's aim is to open a backdoor into Kubernetes clusters to run malicious containers
New 'Epsilon Red' ransomware is hunting for unpatched Microsoft Exchange servers, researchers warn
It relies on several Powershell scripts before encrypting machines
Give the ransomware threat the same priority as terrorism, says US official guidance
US launches a coordinated effort to track down cyber gangs using the same model deployed against terrorist groups
SolarWinds hackers Nobelium targeting government agencies, NGOs and think tanks
About 3,000 email accounts at more than 150 different organisations were targeted in the latest attacks from Nobelium
BravoMovies: Scammers use fake movie streaming service to trick people into downloading BazaLoader backdoor
The scam starts with an email telling people they can watch millions of movies and TV shows on BravoMovies
Cyber gang behind Irish health system attack also hit more than a dozen US healthcare organisations
Conti group has attacked more than 400 entities worldwide including law enforcement agencies, municipalities, emergency medical services and 911 dispatch centres
App developers exposed millions of Android users' data
Some of the compromised apps have more than 10 million downloads
Scammer jailed for sending fake NHS text messages to people waiting for Covid-19 vaccination
Messages told recipients that their details were needed to determine if they qualified for the vaccination
Insurer AXA hit by ransomware and DDoS attacks
Branches in Malaysia, Thailand, Hong Kong and the Philippines attacked by Avaddon group
Scammers are stealing funds from crypto-newbs
Researchers found nearly 170 fake finance apps using similar designs, servers and language
Irish health service suffers 'significant' ransomware attack
The incident is having a major impact on all local and national systems involved in core services
Microsoft patches three zero-days in May 2021 Patch Tuesday update
Security update includes patches for Windows, Internet Explorer, Exchange Server, Office, .NET Core, Visual Studio, SharePoint Server, Hyper-V, Skype for Business and Lync
Water regulator has handled more than 20,000 malicious emails in 2021
Malicious emails peaked in March
NameCheap hosted nearly a third of government-themed phishing sites last year
NameCheap overtook GoDaddy as the top host of gov.UK phishing sites
NCSC records 15-fold increase in online scam removal
More than 700,500 online scams were taken down by the agency last year
Qualcomm vulnerability affects nearly one-third of all phones
Samsung, LG, Google and Xiaomi are among the major manufacturers using Qualcomm's chips
Millions of UK households vulnerable to hacking through older broadband routers
Without firmware and security updates, there's no guarantee that security issues will be fixed, says consumer group Which?
Facebook and Google are failing to take action against fake adverts
Two in five victims of online scam adverts do not report the scam to hosting platforms
We're entering 'a very dark and dangerous era' of offensive cyber, says BAM's Ian Hill
Will the next war start with a bang – or are we already living with it?
Six tips for better data risk negotiations from Chief Risk Officer Michelle Griffey
Choosing a collaborative approach rather than box-ticking and backside covering will be a win-win, says Communisis CRO
Most read
