Category Archives: Active Attacks

Posts relating to attacks that are currently under way.

The Ukranian Ransomware (Petya, NotPetya, WannaCry2)

Those keeping aware of the security scene may well have become aware of the latest ransomware worm hitting around the world. Various names have been associated with this outbreak, and the most readily identifiable name (Petya) is technically incorrect. This … Continue reading

Posted in Active Attacks, Malware | Tagged , | Comments Off on The Ukranian Ransomware (Petya, NotPetya, WannaCry2)

WannaCrypt or the NHS Worm

As many of you will be aware, the NHS suffered from a mass outbreak of a ransomware worm last Friday which has since spread to many other organisations around the world. For more general information please see The Register’s article … Continue reading

Posted in Active Attacks | Comments Off on WannaCrypt or the NHS Worm

Keeping Your Account Safe

We are seeing an increase in the number of compromised accounts due to various forms of attack, and decided to highlight some core protections for your account. If your account is compromised, you may find yourself locked out of the … Continue reading

Posted in Active Attacks, Passwords | Comments Off on Keeping Your Account Safe

‘Phishing’ Emails With Your Home Address

This article is currently being drafted, and will be added to over time. In the meantime, Sophos have an article that goes into some detail about what is going on here. Some key points :- Don’t click on the encrypted … Continue reading

Posted in Active Attacks, Email | Tagged | Comments Off on ‘Phishing’ Emails With Your Home Address

Analysis Of A Phishing Attack

The following is the analysis of a real phishing attack that we have seen, together with some indications of how a phishing attack can be detected. For the impatient, some of those indicators are listed below :- Are you expecting … Continue reading

Posted in Active Attacks, Email | Tagged , | Comments Off on Analysis Of A Phishing Attack

Friday’s DDoS Attack And The Mirai IoT Worm

It may have reached your attention that there was a significant denial of service attack against a widely used DNS provider – the service provider for organisations such as Twitter, Github, and Amazon. The effect was to make certain services … Continue reading

Posted in Active Attacks, Technical | Tagged , | Comments Off on Friday’s DDoS Attack And The Mirai IoT Worm

TeamViewer: People Being Hacked

There are many¬†reports that those using the TeamViewer application are being subjected to hacks with their bank accounts being emptied and similar problems. The details of how the attackers are breaking in are not available, but it seems likely that … Continue reading

Posted in Active Attacks, Technical | Tagged | Comments Off on TeamViewer: People Being Hacked

Ransomware for OSX

It turns out that ransomware is no longer just for Windows; OSX has it too. If you use the OSX version of the Transmission Bittorrent client, you may want to check what version you are running because version 2.90 was … Continue reading

Posted in Active Attacks, Malware | Comments Off on Ransomware for OSX

Firewall Vulnerability Alerts

We are just about to enable something that will email people when there is a critical firewall alert relating to an attempted exploit. During normal web browsing activity (although not when the web site is encrypted with¬†https), the firewall keeps … Continue reading

Posted in Active Attacks, Firewall | Tagged , , , , , | Comments Off on Firewall Vulnerability Alerts

Have You Received An Invoice Spam?

  The following is one of a number of spam messages that I received yesterday; all carefully filed away in the spam folder. To Whom It May Concern, Please find attached an invoice relating to Penalty Charge Notice Number IA54236946 … Continue reading

Posted in Active Attacks, Email | Comments Off on Have You Received An Invoice Spam?