+44 (0)203 88 020 88

Menu

Search

October 2022

Vice Society: Opportunistic Ransomware Group

The threat group tracked as DEV-0832 by Microsoft’s security threat intelligence analysts, also known as Vice Society, are a group of cyber criminals that are thought to have been active since at least June 2021. They have been credited for ransomware and extortion campaigns across the world but have mainly focused on US-based targets. The […]

Vice Society: Opportunistic Ransomware Group Read More »

16 Malicious Android Apps on Google Play Store

A range of malicious adware apps have been found on the Google Play store by security researchers at  McAfee. It is estimated that 20 million installations across 16 different apps occurred before they were identified and subsequently removed from Google Play. These apps contained clicker malware, which runs in the background without the user’s knowledge.

16 Malicious Android Apps on Google Play Store Read More »

Microsoft Azure Vulnerability Exploit in SF Clusters

A spoofing vulnerability in Microsoft Azure Service Fabric can be exploited by attackers to gain admin privileges and take over Service Fabric clusters. Although there are not currently reports of this vulnerability being exploited in the wild, proof of concept (PoC) code for this attack vector does exist. Cloud security platform Orca Security first discovered

Microsoft Azure Vulnerability Exploit in SF Clusters Read More »

Windows Zero-Day Flaw Gets Free Unofficial Patch

An actively exploited zero-day flaw that prevents Windows from properly identifying potentially malicious documents by flagging them as downloaded from the web has been given an unofficial patch. The security issue was first brought to Microsoft’s attention by a security researcher 3 month ago, however no official update to correct this has been released. Security

Windows Zero-Day Flaw Gets Free Unofficial Patch Read More »

Fortinet Critical Authentication Bypass Vulnerability

A communication has been sent by Fortinet to their customers confirming a critical severity vulnerability in FortiOS and FortiProxy. The global cyber security company have warned administrators to update FortiGate firewalls and FortiProxy web proxies to the latest available versions to address this vulnerability. Although a full security advisory has not been released yet for

Fortinet Critical Authentication Bypass Vulnerability Read More »

Issues with Windows 11 22H2 Update Addressed

The recent Windows 11 2022 Update has been experiencing issues and failing to finish installing due to provisioning issues, leaving some partially configured endpoints vulnerable. Also known as version 22H2, this update immediately impacted some users by causing Remote Desktop clients to not connect, randomly disconnect, or freeze unexpectedly. Since then, Microsoft have released issue

Issues with Windows 11 22H2 Update Addressed Read More »

Microsoft Exchange Server Vulnerabilities Exploited

Two high severity zero-day vulnerabilities for the Microsoft Exchange Server have been found to be exploited in the wild. An elevation of privilege vulnerability, and a remote code execution vulnerability have been used by attackers to gain access into victim’s systems. The Cybersecurity and Infrastructure Security Agency (CISA) recently added these two flaws to their

Microsoft Exchange Server Vulnerabilities Exploited Read More »

0

No products in the basket.

No products in the basket.