Skip to main content

Cyber alerts

We issue cyber security alert notifications to health and care organisations, ranging from weekly threat bulletins to immediate high-severity alerts.

News article

September 2020

CC-3619

Philips Patient Monitor Vulnerabilities

Published: Monday 14 September 2020, Last updated: Monday 14 September 2020

Multiple vulnerabilities in FocusPoint, IntelliVue, and PICiX products

  • Severity: Low
  • Type: Insecure software
CC-3618

PyVil Remote Access Trojan

Published: Thursday 10 September 2020, Last updated: Thursday 17 September 2020

An advanced Evilnum tool targeting FinTech

  • Severity: Medium
  • Type: Malware
CC-3616

Google Releases Security Updates for Chrome

Published: Wednesday 9 September 2020, Last updated: Wednesday 9 September 2020

Scheduled updates for Chrome on Windows, macOS, and Linux

  • Severity: Information only
  • Type: Insecure software
CC-3617

Adobe Releases Security Updates

Published: Wednesday 9 September 2020, Last updated: Wednesday 9 September 2020

Scheduled updates for AEM, Framemaker, and InDesign

  • Severity: Information only
  • Type: Insecure software
CC-3613

Cisco Releases Security Updates

Published: Monday 7 September 2020, Last updated: Monday 7 September 2020

Scheduled updates for IOS, Jabber, and NFVIS

  • Severity: Information only
  • Type: Insecure software
CC-3610

Cisco Releases Security Updates

Published: Tuesday 1 September 2020, Last updated: Tuesday 1 September 2020

Scheduled updates for FXOS, IOS, and NX-OS

  • Severity: Information only
  • Type: Insecure software

August 2020

CC-3609

Google Releases Security Updates for Chrome

Published: Thursday 27 August 2020, Last updated: Thursday 27 August 2020

Scheduled updates for Chrome on Windows, Mac, and Linux

  • Severity: Information only
  • Type: Insecure software
CC-3607

DarkSide Ransomware

Published: Wednesday 26 August 2020, Last updated: Thursday 27 August 2020

Enterprise malware with links to GandCrab and Sodinokibi

  • Severity: Medium
  • Type: Malware
CC-3604

Cisco Releases Security Updates

Published: Monday 24 August 2020, Last updated: Monday 24 August 2020

Scheduled updates for IP cameras, Smart Software Manager, and vWAAS

  • Severity: Information only
  • Type: Insecure software
CC-3605

ISC Releases Security Advisories for BIND

Published: Monday 24 August 2020, Last updated: Monday 24 August 2020

Scheduled updates for the Berkeley Internet Name Domain

  • Severity: Information only
  • Type: Insecure software
CC-3601

Google Releases Security Updates for Chrome

Published: Thursday 20 August 2020, Last updated: Thursday 20 August 2020

Scheduled updates for Chrome on Windows, macOS, and Linux

  • Severity: Information only
  • Type: Insecure software
CC-3600

XCSSET Trojan

Published: Wednesday 19 August 2020, Last updated: Wednesday 19 August 2020

A Mac trojan targeting Xcode projects

  • Severity: Low
  • Type: Malware
CC-3602

FritzFrog Botnet

Published: Wednesday 19 August 2020, Last updated: Wednesday 19 August 2020

A sophisticated crypto mining botnet

  • Severity: Low
  • Type: Malware
CC-3598

Drovorub Toolset

Published: Tuesday 18 August 2020, Last updated: Tuesday 18 August 2020

An advanced APT28 malware platform

  • Severity: Medium
  • Type: Malware
CC-3594

Adobe Releases Security Updates

Published: Wednesday 12 August 2020, Last updated: Wednesday 19 August 2020

Scheduled updates for Acrobat, Lightroom, and Reader

  • Severity: Low
  • Type: Vulnerability
CC-1439

Qakbot Trojan

Published: Thursday 6 August 2020, Last updated: Tuesday 11 August 2020

A novel banking trojan and worm

  • Severity: Medium
  • Type: Malware
CC-3589

Taidoor Remote Access Trojan

Published: Thursday 6 August 2020, Last updated: Thursday 13 August 2020

A RAT used by multiple Chinese APT groups

  • Severity: Medium
  • Type: Malware

July 2020

CC-3585

BootHole GRUB2 Execution Vulnerability

Published: Thursday 30 July 2020, Last updated: Wednesday 5 August 2020

An ACE vulnerability in the boot loader used by Windows and Linux

  • Severity: Medium
  • Type: Vulnerability
CC-3581

Ensiko Remote Shell

Published: Thursday 30 July 2020, Last updated: Thursday 30 July 2020

A PHP web shell with extensive capabilities

  • Severity: Medium
  • Type: Malware
CC-3584

Doki Backdoor

Published: Thursday 30 July 2020, Last updated: Thursday 30 July 2020

Backdoor that uses the Dogecoin API and targets Docker instances

  • Severity: Low
  • Type: Malware
CC-3583

VHD Ransomware

Published: Thursday 30 July 2020, Last updated: Thursday 30 July 2020

A Hidden Cobra ransomware tool

  • Severity: Low
  • Type: Malware
CC-3577

Prometei Botnet

Published: Tuesday 28 July 2020, Last updated: Wednesday 29 July 2020

A cryptomining worm and botnet

  • Severity: Medium
  • Type: Malware
CC-3576

Adobe Releases Security Updates

Published: Tuesday 28 July 2020, Last updated: Tuesday 28 July 2020

Scheduled updates for Bridge, Photoshop, Prelude, and Reader

  • Severity: Low
  • Type: Vulnerability
CC-3572

GMERA Trojan

Published: Thursday 23 July 2020, Last updated: Monday 27 July 2020

A cryptocurrency infostealer

  • Severity: Low
  • Type: Malware
CC-3571

Apple Releases Security Updates

Published: Thursday 23 July 2020, Last updated: Thursday 23 July 2020

Scheduled updates for iOS, maOC, Safari, tvOS, and watchOS

  • Severity: Low
  • Type: Vulnerability
CC-3570

SoreFang Downloader

Published: Wednesday 22 July 2020, Last updated: Thursday 23 July 2020

An APT29 downloader

  • Severity: Medium
  • Type: Malware
CC-3568

WellMess Trojan

Published: Tuesday 21 July 2020, Last updated: Thursday 23 July 2020

An APT29 infostealer

  • Severity: Medium
  • Type: Malware
CC-3548

AgeLocker Ransomware

Published: Wednesday 15 July 2020, Last updated: Wednesday 15 July 2020

Ransomware using an open-source encryption function

  • Severity: Low
  • Type: Malware
CC-3563

SigRed Windows DNS RCE Vulnerability

Published: Wednesday 15 July 2020, Last updated: Monday 24 August 2020

A critical vulnerability in the Windows Domain Name System

  • Severity: High
  • Type: Vulnerability
CC-3547

Zoom Releases Security Update

Published: Monday 13 July 2020, Last updated: Monday 13 July 2020

Out-of-band updates for the Zoom Windows Client

  • Severity: Low
  • Type: Vulnerability
CC-3533

Purple Fox Malware

Published: Thursday 9 July 2020, Last updated: Thursday 9 July 2020

A combined backdoor, rootkit, and exploit kit

  • Severity: Medium
  • Type: Malware
CC-3544

Conti Ransomware

Published: Thursday 9 July 2020, Last updated: Thursday 9 July 2020

Ransomware with a unique encryption routine

  • Severity: Medium
  • Type: Malware
CC-3536

OpenClinic GA Vulnerabilities

Published: Tuesday 7 July 2020, Last updated: Wednesday 8 July 2020

Multiple vulnerabilities in an open-source hospital management system

  • Severity: Low
  • Type: Vulnerability
CC-3530

EvilQuest Ransomware

Published: Friday 3 July 2020, Last updated: Wednesday 8 July 2020

Infostealer and data wiper

  • Severity: Low
  • Type: Malware
CC-3532

Ransom X Ransomware

Published: Friday 3 July 2020, Last updated: Friday 3 July 2020

Ransomware targeting governement agencies

  • Severity: Low
  • Type: Malware
CC-3526

Lucifer Trojan

Published: Thursday 2 July 2020, Last updated: Monday 24 August 2020

A hybrid DDoS and cryptomining malware

  • Severity: Medium
  • Type: Malware

June 2020

April 2020

CC-3436

Sophos XG Firewall SQL Injection Vulnerability

Published: Monday 27 April 2020, Last updated: Friday 1 May 2020

Sophos has released details of an SQL injection zero day vulnerability affecting their XG Firewall product series. They claim that an unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code or extract sensitive information

  • Severity: High
  • Type: Vulnerability

March 2020

CC-3384

GhostCat Request Injection Vulnerability

Published: Wednesday 4 March 2020, Last updated: Wednesday 4 March 2020

A request injection vulnerability in Apache Tomcat that could be remotely exploited to control an affected system.

  • Severity: Medium
  • Type: Vulnerability

January 2020

CC-3327

Citrix RCE Vulnerability in Multiple Products

Published: Tuesday 14 January 2020, Last updated: Tuesday 21 January 2020

Citrix has released details of a remote code execution (RCE) vulnerability and recommended steps for mitigation. Threat actors now appear to be targeting vulnerable devices.

  • Severity: High
  • Type: Vulnerability