+44 (0)203 88 020 88

Menu

Search

2021

What is malspam?

A new malware campaign dubbed SQUIRRELWAFFLE by Cisco Talos is being spread through malicious spam that makes use of stolen email messages to add authenticity. Malicious spam (malspam) is unsolicited email that seeks to deliver a malicious payload either through a Microsoft Office attachment or by tricking the user into clicking a link in the […]

What is malspam? Read More »

Javascript supply chain attack hits millions of users

A javascript library downloaded millions of times each week was compromised in a supply chain attack which targeted the npm software registry. npm describes itself as the worlds largest software registry, and is used to host and share thousands of open source and private software projects. The javascript library in question is used by companies

Javascript supply chain attack hits millions of users Read More »

PowerShell Patches security flaws

Microsoft has released patches for two security vulnerabilities in PowerShell which could allow a malicious script to circumvent the protection offered by Windows Defender Application Control. PowerShell is a cross-platform command-line shell used extensively in the administration of Windows and Azure servers.  It is also popular with malicious users due to its power and flexibility

PowerShell Patches security flaws Read More »

Excel XLM Macros to be disabled by default – sometimes

Three decades ago, Microsoft released Excel 4.0 with support for XLM macro files.  A firm favourite with threat actors, XLM macros can be easily subverted to drop malware onto a victim’s computer through email campaigns that deliver malicious Office365 documents such as fake invoices and reports.  Microsoft has now announced that XLM macros will be

Excel XLM Macros to be disabled by default – sometimes Read More »

October Security Updates

The October security patch updates include fixes for critical flaws and zero-day vulnerabilities from Microsoft, Apple and Apache. Microsoft October Updates October’s security patch bundle from Microsoft includes fixes for four zero-day vulnerabilities, at least one of which is actively being exploited in the wild. Overall Microsoft fixes 70 vulnerabilities include the first inclusion of

October Security Updates Read More »

0

No products in the basket.

No products in the basket.