+44 (0)203 88 020 88

Menu

Search

cyber security news

Key lessons from the 2021 Data Breach Investigations Report

The 2021 Data Breach Investigations report provides insights from the analysis of over 29,000 real world cyber security incidents from 2020 helping Security Managers track the evolving behaviour and tactics of threat actors. The Verizon Data Breach Investigations report has become a regular fixture on the annual cyber security calendar over the last 14 years. […]

Key lessons from the 2021 Data Breach Investigations Report Read More »

Microsoft warns Office 365 targeted by zero-day RCE

A zero-day Remote Code Execution attack targeting Office 365 and Office 2019 users has prompted Microsoft to issue a security advisory with a workaround to protect your network until a patch is available. According to the security advisory released by Microsoft: Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects

Microsoft warns Office 365 targeted by zero-day RCE Read More »

Yet another Exchange Server vulnerability

Details have emerged of (another) Exchange Server vulnerability, called ProxyToken, which allows an attacker to reconfigure an Exchange server remotely without needing to know any passwords. Reported by the Zero Day Initiative the vulnerability affects Exchange server versions 2013 through 2019: With this vulnerability, an unauthenticated attacker can perform configuration actions on mailboxes belonging to

Yet another Exchange Server vulnerability Read More »

VPN insecurity woes continue for Pulse Secure and Cisco

Cisco and Pulse Secure have both issued security advisories warning of critical Remote Code Execution vulnerabilities that affect some of their VPN servers. Pulse Secure Pulse Secure has shipped a patch to resolve several Remote Code Execution vulnerabilities in its Connect Secure VPN appliances.  The August release addresses these issues and the vendor ‘strongly advises’

VPN insecurity woes continue for Pulse Secure and Cisco Read More »

How the No More Ransom project helps victims of ransomware

In 2016, Europol, the Netherlands Police and leading anti-virus companies joined forces to create the No More Ransom project, which to date has helped over 6 million ransomware victims recover their files and avoid paying €1billion in ransom. The nomoreransom.org website provides advice for individuals and businesses on how to protect themselves against ransomware and

How the No More Ransom project helps victims of ransomware Read More »

Telegram vulnerabilities discovered

Security researchers at the University of London discovered several vulnerabilities in the home grown cryptography used by the Telegram messaging app which boasts half a billion users. The four vulnerabilities discovered in Telegrams bespoke MTProto protocol highlight the dangers of trying to invent new cryptographic systems rather than using proven existing solutions.  MTProto is used by

Telegram vulnerabilities discovered Read More »

16 year old printer bug exposes millions of systems

SentinelLabs has discovered a severe escalation of privilege vulnerability in a printer driver used by HP, Samsung and Xerox devices since 2005 – affecting over 390 printer models and millions of computers. The vulnerable driver gets installed on Windows systems without any user intervention, simply by plugging in a printer with a USB cable or

16 year old printer bug exposes millions of systems Read More »

0

No products in the basket.

No products in the basket.