Microsoft has released patches for two security vulnerabilities in PowerShell which could allow a malicious script to circumvent the protection offered by Windows Defender Application Control. PowerShell is a cross-platform command-line shell used extensively in the administration of Windows and Azure servers. It is also popular with malicious users due to its power and flexibilityRead more
Blog
LightBasin is a sophisticated threat actor that has established a persistent, long term presence in the heart of the network of at least 13 telecommunication companies around the world since 2019. According to research from Crowdstrike, the threat actor group known as UNC1945 or LightBasin, has been infiltrating the Linux and Solaris systems which runRead more
Microsoft’s 2021 Digital Defense Report provides a useful summary of the current and emerging threat landscape for Security Managers and CISOs. Read on for our summary of the key lessons from this year’s report. Cyber crime for Dummies We have seen increased industrialisation and commercialisation of cyber-crime over the last year. Criminal gangs areRead more
Three decades ago, Microsoft released Excel 4.0 with support for XLM macro files. A firm favourite with threat actors, XLM macros can be easily subverted to drop malware onto a victim’s computer through email campaigns that deliver malicious Office365 documents such as fake invoices and reports. Microsoft has now announced that XLM macros will beRead more
The October security patch updates include fixes for critical flaws and zero-day vulnerabilities from Microsoft, Apple and Apache. Microsoft October Updates October’s security patch bundle from Microsoft includes fixes for four zero-day vulnerabilities, at least one of which is actively being exploited in the wild. Overall Microsoft fixes 70 vulnerabilities include the first inclusion ofRead more
According to a new research paper, it is possible to trick a locked iPhone into authorising a contactless payment for a Visa card of any amount, if the Visa card is enabled for Express Transit (which can be on by default in the UK) Express Transit is a feature used by automated ticket gates onRead more
A sophisticated Android based malware ring has stolen hundreds of millions of pounds from 10 million victims according to a new report. This Grifthorse trojan malware was used in over 200 Android apps available in the Google Play store. Details of the malware campaign are explained in a report from Zimperium Labs. According to theRead more
