We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
Cyber alerts
We issue cyber security alert notifications to health and care organisations, ranging from weekly threat bulletins to immediate high-severity alerts.
December 2018
CC-2859
Ghost Ransomware
Ghost is a ransomware tool that uses AES encryption against specific folders on affected devices.
CC-2858
Underminer Exploit Kit
First observed in July 2017, the Underminer exploit kit has received various sophisticated updates in recent weeks.
CC-2857
Sieren Botnet
Sieren is a botnet that can perform distributed denial-of-service (DDoS) attacks by sending floods of HTTP, HTTPS and UDP packets to specified web servers.
CC-2853
Rising Sun Trojan
First observed in 2018, Rising Sun is an information stealing trojan created by the Lazarus advanced persistent threat group for use in their global Operation Sharpshooter campaign targeting critical infrastructure.
CC-2855
Cisco Releases Security Updates
Cisco has released security updates to address a vulnerability in Adaptive Security Appliance. A remote attacker could exploit this vulnerability to take control of an affected system.
CC-2854
Microsoft Releases Security Updates
Microsoft has released out-of-band security updates to address a vulnerability in Internet Explorer 9, 10, and 11. An attacker could exploit this vulnerability to take control of an affected system.
CC-2856
TripleM Ransomware
TripleM is a ransomware tool first seen in August 2017. The source code has been made available for sale since December 2018.
CC-2852
Stolen Pencil Trojan
Stolen Pencil, also known as Stolepen, is a trojan that targets devices using Google Chrome on Microsoft Windows. It was first observed in May 2018.
CC-2851
Security Updates Released for SQLite Magellan Vulnerability
Security updates have been released to address a vulnerability named 'Magellan' in the SQLite database. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system.
CC-2847
Medtronic Release Security Advisory
Medtronic has released a security advisory that addresses a vulnerability affecting their cardiac implantable programmers.