Category Archives: Active Attacks

Posts relating to attacks that are currently under way.

Analysis Of A Phishing Attack

The following is the analysis of a real phishing attack that we have seen, together with some indications of how a phishing attack can be detected. For the impatient, some of those indicators are listed below :- Are you expecting … Continue reading

Posted in Active Attacks, Email | Tagged , | Comments Off on Analysis Of A Phishing Attack

Friday’s DDoS Attack And The Mirai IoT Worm

It may have reached your attention that there was a significant denial of service attack against a widely used DNS provider – the service provider for organisations such as Twitter, Github, and Amazon. The effect was to make certain services … Continue reading

Posted in Active Attacks, Technical | Tagged , | Comments Off on Friday’s DDoS Attack And The Mirai IoT Worm

TeamViewer: People Being Hacked

There are many reports that those using the TeamViewer application are being subjected to hacks with their bank accounts being emptied and similar problems. The details of how the attackers are breaking in are not available, but it seems likely that … Continue reading

Posted in Active Attacks, Technical | Tagged | Comments Off on TeamViewer: People Being Hacked

Ransomware for OSX

It turns out that ransomware is no longer just for Windows; OSX has it too. If you use the OSX version of the Transmission Bittorrent client, you may want to check what version you are running because version 2.90 was … Continue reading

Posted in Active Attacks, Malware | Comments Off on Ransomware for OSX

Firewall Vulnerability Alerts

We are just about to enable something that will email people when there is a critical firewall alert relating to an attempted exploit. During normal web browsing activity (although not when the web site is encrypted with https), the firewall keeps … Continue reading

Posted in Active Attacks, Firewall | Tagged , , , , , | Comments Off on Firewall Vulnerability Alerts

Have You Received An Invoice Spam?

  The following is one of a number of spam messages that I received yesterday; all carefully filed away in the spam folder. To Whom It May Concern, Please find attached an invoice relating to Penalty Charge Notice Number IA54236946 … Continue reading

Posted in Active Attacks, Email | Comments Off on Have You Received An Invoice Spam?

OSX Malware: Yes It Does Exist!

One of the messages that we are regularly trying to push is that malware on Apple devices can and does exist. We have even encountered a few infected Apple laptops! It is easy to overlook amongst the ever rising flood … Continue reading

Posted in Active Attacks, Malware | Tagged , | Comments Off on OSX Malware: Yes It Does Exist!

Forged @port.ac.uk Emails

As many are undoubtedly aware, there have been a number of instances where email has been forged so that it appears to be from someone with an email address ending in @port.ac.uk. In the cases IS has investigated, the email forgeries … Continue reading

Posted in Active Attacks, Email | Comments Off on Forged @port.ac.uk Emails

MS15-034 Information …

This entry is chiefly intended as a collection of links to further information on MS15-034 which was announced this Tuesday. This vulnerability is found within the Microsoft Windows component that allows various packages to listen to HTTP requests – the … Continue reading

Posted in Active Attacks | Tagged , , | Comments Off on MS15-034 Information …

Ongoing Phishing Attack: “Hello”, “Delivery Failure”, “Secure Adobe”

We are subject to an ongoing phishing attack with emails being sent with the Subject of “Hello” and the contents appearing similar to :- Hello, I sent you this document earlier but I notice the failure delivery , so I … Continue reading

Posted in Active Attacks, Email | Comments Off on Ongoing Phishing Attack: “Hello”, “Delivery Failure”, “Secure Adobe”