News - Serviceteam IT

Brightening the outlook for security in the cloud

We've recently worked with a variety of teams across the public sector to help them decide whether to move the functions of their older IT systems into the cloud, or to upgrade the software and servers they're using. It's a question being asked…

News

Deloitte: ‘Very Few Clients’ Impacted by Cyber Attack

The Guardian citing sources at the company, claims attackers may have had access to Deloitte’s systems since October 2016.

News

Amazon S3 Again: Verizon Internal Credentials

Organisations continue to leak data through Amazon S3 with their lax attitudes toward data ownership & responsibility.

News

Secure development and deployment

Today we are pleased to share with you an alpha draft of our secure development and deployment guidance. You may be wondering, 'who this is aimed at?' And 'why is it in alpha?' This blog post will answer those questions. Increased automation We…

News

Modernising Windows 10 Management

Deploying an array of devices has many benefits for end users - choice of device and platform are obvious wins. But, having to manage multiple infrastructures can seriously add to the workload of IT Admins. It may not be a panacea, but Windows…

News

Air-Gapped Networks via CCTV Steal Data

Attackers can use surveillance cameras and infrared for bi-directional covert comms between the internal networks of organisations.

News

Cyber Security meet Engineering, Engineering meet Cyber Security…

Reading this year’s 'State Of The Nation' report (PDF), it struck me that civil engineering, like many kinds of engineering, is driven by the fundamental vision to make peoples’ lives better. New digital technologies help this…

News

Artificial Intelligence Improves Password Guessing

Artificial intelligence is creeping into information security, one unexpected application has emerged. Passwords.

News

Cloud-Focused Firms Earn High Marks for Security

Companies pushing the cloud envelope are most likely to run safer cleaner code.

News

iOS 11 Update includes Patches for Eight Vulnerabilities

iOS 11 is out today with a new look and feel on the iPad. The release comes with eight patches for Apple iOS vulnerabilities.

News

Attackers use MS Office to Leak System Profile Data

The exploit affects Windows, iOS and Android. Spear phishing campaigns with the attachments are groundwork for future attacks.

News

Improving email security

Today we've added new guidance to our website, advising on two aspects of email security:...

News

VMware Patches Bug That Allows Guest to Execute Code on Host

VMware users are being encouraged to update due to a write vulnerability.

News

Email security and anti-spoofing

This guidance is intended to help you secure your organisation's email in two...

News

Thousands of Servers Host Point-of-Sale Malware

15,000 insecure Elasticsearch servers with 4,000 hosting the Point-of-Sale malware strains Alina and JackPoS.

News

Zerodium Offering $1M for Tor Browser Zero Days

The company said it will pay up to $1 million for fully functional, unknown zero day exploits for Tor Browser.

News

Microsoft Patches .NET Vulnerability in September Update

.NET framework vulnerability allows attackers to “take control of an affected system.”

News

Popular D-Link Router Riddled with Vulnerabilities

Bugs found in D-Link’s DIR-850L wireless AC1200 dual-band gigabit cloud routers which can be hijacked and taken control of.

News

Android Vulnerable to ‘High-Severity’ Overlay Attacks

Nearly all Android users should take action today and apply updates that are available to address this vulnerability.

News

Equifax Says Breach Affects 143 Million People

Attackers accessed Social Security numbers, birth dates, addresses, and driver’s license numbers.

News

Programming Error is source of Microsoft Kernel Bug

Windows kernel flaw has been present since Windows 2000, and is on Windows 10.

News

Vulnerabilities in NVIDIA, Qualcomm, Huawei Bootloaders

Six exploits in chipsets used by Huawei, Qualcomm, MediaTek and NVIDIA found in popular Android handsets, according to University of California computer scientists.

News

4M Time Warner Cable Records on Misconfigured AWS S3

The S3 buckets, owned by BroadSoft, contained SQL database dumps, code, access logs, customer billing addresses, and phone numbers, belonging to clients Time Warner Cable (TWC).

News

Military Contractor Vendor Leaks CVs with AWS S3

Applicants were seeking employment with a private military contractor, TigerSwan, blaming a 3rd party recruitor, TalentPen LLC, for the leak.

News

Living with password re-use

We are often told that re-using passwords is dangerous. The idea is simple; if criminals steal your password from one website, they will try and use it on your other online accounts. This could be a really important account, like your email. We…

News

US Government Site Was Hosting Ransomware

US .gov site was hosting a .zip archive containing JavaScript that with obfuscated PowerShell, downloading a gif file which is a Cerber executable.

News

New Locky Variant Strikes Again

Locky is notorious for its effectiveness and profitability. In the last two years, Locky has extorted almost $7.8 million from victims, according to a recent study by Google.

News

Revamped Nukebot Malware Changes Targets, Adds Functions

The revamped Nukebot banking trojan has shifted from stealing bankcard data to quietly downloading malicious payloads for web-injects, cryptocurrency mining, and taking screenshots of systems.

News

Defray Ransomware Seen Targeting Education, Healthcare Industry

One purported to be from a UK hospital Director of Information Management and Technology, the other appeared to come from the SEA LIFE aquarium, in Birmingham.

News

Android Spyware Linked to Chinese SDK Forces Google to Boot 500 Apps

The SDK, called Igexin, was developed by a Chinese company and may have been used to install malware that could, among other things, exfiltrate logs from devices.