Threats and Risks
Threat actors behind Smaug ransomware are advertising their RasS platform on the Dark Web forum
Smaug RaaS makes it easy for threat actors to use ransomware to achieve their objectives
Huawei Data Centre in Papua New Guinea exposes government's secret data to spying, report warns
Huawei used outdated software in the centre, it claims
Bugs in Qualcomm chips expose millions of Android handsets
Attackers could use the bugs to listen to audio in a device's surroundings, monitor a user's location and exfiltrate sensitive information
Insecure satellite-based internet poses threat to transport safety
Satellite internet service providers are still vulnerable to attack methods discovered nearly 15 years ago
Researchers identify vulnerabilities in critical industrial equipment
Protocol gateways are critical to enabling Industry 4.0, and Trend Micro has found critical weaknesses in how they operate
FBI warns organisations of increased security risks due to devices running Windows 7
An actively supported OS provide the best way to mitigate the risks arising due to newly discovered security bugs, it says
Mirai botnet is targeting RCE vulnerability in F5 BIG-IP software
The bug could enable an attacker to create or delete files, intercept information and otherwise compromise the system
US agencies publicly link Taidoor malware to Chinese government
The warning comes in the midst of rising tensions between the USA and China
Cisco fixes critical flaws impacting DCNM and SD-WAN
The bug could allow unauthenticated attackers to steal sensitive information from vulnerable devices
VHD ransomware is owned and operated by Lazarus group, researchers find
The first reports of VHD ransomware had appeared in March this year
Biden campaign tells staff to delete TikTok
Chinese app seen as a potential security risk
Exposed MongoDB database draws attacks within hours
Experimental honeypot set up by researchers reveals locations where most of the attacks come from
Emotet is back and installing TrickBot trojan, researcher warns
The latest Emotet spam campaign is targeting people in the UK and the US
'Patch critical SAP RECON vulnerability immediately', urges CISA
The bug could enable a remote, unauthenticated attacker to gain control of SAP applications and steal data
Cisco issues security patches for critical vulnerabilities affecting its router and firewall products
The flaws could enable hackers to take full control of the target device
Microsoft issues patch for wormable SIGRed RCE flaw impacting Windows DNS Server
Researchers are putting it in the same risk category as BlueKeep and EternalBlue
Microsoft patches 123 vulnerabilities in July 2020 Patch Tuesday update
Eighteen of them are listed as 'Critical'
Zero-day flaw in Zoom could allow hackers to execute arbitrary code, researchers warn
0patch has released a free patch for older Windows machines
Critical security vulnerabilities impacted Bullguard's Antivirus and Secure Browser software, researcher claims
A major issue was found in the protection against malicious websites
Huawei targeted influential Britons to back its role in UK's 5G infrastructure, controversial dossier claims
The 86-page report is commissioned by a US film producer Andrew Duncan
Android devices are being increasingly targeted by undeletable adware, researchers warn
The adware plants itself in the system partition, making it hard to delete
Alina POS malware now using DNS tunnelling to steal payment cards data
Alina POS malware is back in circulation, now using DNS tunnelling to steal card details from unsuspecting victims
US Cyber Command warns organisations of critical vulnerability in Palo Alto Networks products
Foreign APTs will likely attempt to exploit the bug soon, it says
Campaigners urge Johnson to reform Computer Misuse Act to make it fit for modern digital era
The law currently hinders cyber security research in Britain, campaigners argue in an open letter to the PM
Most read
