The UK government’s Integrated Review published today, which puts cybersecurity at the centre of the UK’s future defence strategy. Cybersecurity experts reacted below on the importance of cybersecurity when it comes to national security.
ISBuzz Team
With the one-year anniversary of remote working coming up on Tuesday 16th, security experts commented below on cybersecurity risk and benefits of remote working.
Microsoft has issued an alert that hackers using a strain of ransomware known as DearCry that is targeting unpatched Exchange servers still exposed to the exploited vulnerabilities.
As reported by BBC News, Netflix is trialing a crackdown on password sharing. Some users have reported seeing a screen saying, “If you don’t live with the owner of this account, you need your own account to keep watching.” A spokesperson told the BBC: “This test is designed to help ensure that people using Netflix accounts are authorised to do so.” A decision has yet to be made as to whether the company will roll this out across its network. In the trial, users can verify they are allowed to access the account by a code, sent via text or…
Following the tragic news of Sarah Everard, there has been a wave of women taking to social media to voice their concerns and share tips on how to keep safe while out alone. One of the posts currently circulating on Instagram relates to an iPhone hack that alerts emergency services and contacts if you’re ever in danger. This hack will emit a loud siren if the lock button is pressed 5 times, while simultaneously sharing your location with your contacts and the authorities. This tip, however, has sparked some questions as to its legitimacy. It has also driven general curiosity…
With the story last week about the recently disclosed Microsoft Exchange vulnerabilities that have affected thousands of organisations, over the weekend, the White House has warned organisations have “hours, not days” to fix the vulnerabilities. Microsoft and security researchers warned that the vulnerabilities are being combined with ransomware and security experts have estimated that as many as 80,000 exchange servers around the globe remain unpatched and vulnerable to exploitation.
Cybersecurity experts comment on the news that South and City College in Birmingham has been hit by a ransomware attack. The College stated its campuses will be closed for a week while its IT team restores its systems. The college has 8 campuses with over 20,000 students aged 14 and over.
Two UK internet providers have been helping the Home Office and National Crime Agency track the websites visited by customers. A trial of new powers granted by the controversial Investigatory Powers Act of 2016 has been going on for months. It involves the internet providers creating internet connection records (ICRs), which can be used to show which websites a person visited and when. Digital rights campaigners have raised privacy concerns.
F5 Networks, a leading provider of enterprise networking gear, has announced four critical remote code execution (RCE) vulnerabilities affecting most BIG-IP and BIG-IQ software versions. F5 BIG-IP software and hardware customers include governments, Fortune 500 firms, banks, internet service providers, and consumer brands (including Microsoft, Oracle, and Facebook), with the company claiming that “48 of the Fortune 50 rely on F5.” F5 Networks has now pushed out patches to tackle these four critical vulnerabilities and is urging its customers to patch as soon as possible.
Researchers with SpiderLabs at Trustwave reveal a new image file exploit – a fake icon delivering the NanoCore trojan. Researchers said: “The recent malspams… (work to) effectively hide the malicious executable from anti-malware and email scanners by abusing the file format of the “.zipx” attachment, which in this case is an Icon file with added surprises. In a slight twist, enclosing the executable into a RAR archive instead of a ZIP file, the content of the .zipx attachment can be extracted by another popular archiving tool, 7Zip. If the end-user uses 7Zip or WinRAR, the NanoCore malware could be installed onto the system,…