Threats and Risks

Russia is spreading Covid-19 disinformation to create panic in Western countries, EU report warns

EU's External Action Service claims to have nearly 80 examples of Russia-linked disinformation since 22nd January

Threats and Risks
19 March 2020

Some commercial password managers can be fooled into disclosing user passwords, researchers warn

Such password managers use weak criteria to find out whether an app is genuine or not

Threats and Risks
19 March 2020

Eighty-five per cent of Microsoft Exchange Servers vulnerable to remote-code execution security flaw patched last month

Organisations warned to patch protect against CVE-2020-0688 as state-backed APTs start targeting vulnerable Exchange Servers

Security
18 March 2020

Old laptop containing classified German military files bought for €90 on eBay

The researchers were able to unlock military files simply by entering 'guest' for the username and password

Threats and Risks
18 March 2020

Pakistan-linked APT36 accused of using coronavirus to propagate Trojans

Malwarebytes claims Pakistan state-sponsored group is using a fake Indian government advisory to spread remote-access Trojan

Security
17 March 2020

Snoop vulnerability could enable attackers to steal data from Intel CPU's cache memory

Yet another Intel CPU security flaw affects both Core series and Xeon processors

Threats and Risks
17 March 2020

The risks of the coronavirus pandemic to IT security

Royal BAM Group CISO Ian Hill examines the many different IT security threats posed by the COVID-19 coronavirus outbreak

Security
16 March 2020

Mitigating new LVI Intel security vulnerability will have big impact on CPU performance

The Intel chip security flaw could enable an attacker to steal sensitive data from targeted systems - but mitigating it could slow systems to a crawl

Threats and Risks
13 March 2020

Microsoft releases emergency patch for SMBv3 protocol vulnerability

The details of the security flaw were leaked accidentally released earlier this week

Threats and Risks
13 March 2020

US at risk of 'catastrophic cyber attack', warns US Cyberspace Solarium Commission

The US is "dangerously insecure in cyber," warns Commission following year-long investigation

Threats and Risks
12 March 2020

Intel's releases fixes for six 'high severity' graphics driver security flaws among 17 Patch Tuesday updates

Serious security flaws in Intels' Windows graphics drivers could compromise PCs

Threats and Risks
11 March 2020

Microsoft leads take-down of Necurs botnet

The Necurs botnet is thought to be operated by cyber criminals based in Russia

Threats and Risks
11 March 2020

Microsoft patches 117 vulnerabilities in March 2020 Patch Tuesday

Of them, 26 are rated as 'critical' bugs

Threats and Risks
11 March 2020

State-backed hacking groups are exploiting a patched security flaw to target Microsoft Exchange email servers

The vulnerability was patched by Microsoft last month

Threats and Risks
09 March 2020

Redcar and Cleveland Council expelled public and press from council meeting discussing ransomware outbreak

Public and press thrown-out of resources committee meeting last week because ‘sensitive’ information about ransomware attack would be discussed

Security
09 March 2020

More than 50 Netgear routers affected by four serious security flaws

Netgear rushes out firmware fixes with users of the affected routers and gateways advised to patch immediately

Threats and Risks
09 March 2020

Virgin Media spills personal details of 900,000 customers in data breach

Misconfigured marketing customer database access ‘did not include any passwords or financial details’, Virgin Media claims

Security
06 March 2020

Intel CSME bug could enable hackers to compromise the cryptographic chain of trust in Intel systems, researchers warn

The bug is unpatchable, according to researchers, but doesn't affect Intel's latest generation of CPUs

Threats and Risks
06 March 2020

Let's Encrypt reverses threat to revoke digital certificates affected by bug following renewal frenzy

Let’s Encrypt claims that 1.7 million affected digital certificates have been renewed since Saturday

Security
05 March 2020

Redcar and Cleveland Borough Council finally admits that it has suffered ransomware attack

IT systems at Redcar and Cleveland Borough Council have been down for three weeks

Cloud and Infrastructure
27 February 2020

KrØØk vulnerability affecting Broadcom and Cypress WLAN chips could enable attackers to decrypt wireless network packets

New security vulnerability could affect nearly one billion devices worldwide

Threats and Risks
27 February 2020

Magecart skimmers ran keyloggers on commerce provider's website for two-and-a-half years

Ecommerce platform compromised by eight different skimmers hosted accounts for a number of high-profile organisations

Security
26 February 2020

Pulse Secure: 2,500 VPN servers worldwide vulnerable to CVE-2019-11510 critical security flaw

UK plays host to 149 unpatched Pulse Secure VPN servers vulnerable to flaw favoured by Iranian state-backed hackers

Cloud Computing
21 February 2020

Unsigned firmware in peripherals could allow attackers to target HP, Lenovo and Dell computers, researchers warn

Enterprises must assess the 'firmware posture' of new devices during procurement

Threats and Risks
21 February 2020

234

Deskflix Public Sector

Best practice makes perfect: Malware response in the new normal

Out of adversity: How crises can be a catalyst for progress at your organisation

Computing DevOps Excellence Awards 2020

Endpoint Management and Security Hub