Skip to main content

Cyber alerts

We issue cyber security alert notifications to health and care organisations, ranging from weekly threat bulletins to immediate high-severity alerts.

News article

December 2018

CC-2859

Ghost Ransomware

Published: Thursday 27 December 2018, Last updated: Monday 17 February 2020

Ghost is a ransomware tool that uses AES encryption against specific folders on affected devices.

  • Severity: Low
  • Type: Malware
CC-2858

Underminer Exploit Kit

Published: Thursday 27 December 2018, Last updated: Monday 17 February 2020

First observed in July 2017, the Underminer exploit kit has received various sophisticated updates in recent weeks.

  • Severity: Medium
  • Type: Attack methodology
CC-2857

Sieren Botnet

Published: Thursday 27 December 2018, Last updated: Monday 17 February 2020

Sieren is a botnet that can perform distributed denial-of-service (DDoS) attacks by sending floods of HTTP, HTTPS and UDP packets to specified web servers.

  • Severity: Medium
  • Type: Malware
CC-2853

Rising Sun Trojan

Published: Thursday 20 December 2018, Last updated: Monday 17 February 2020

First observed in 2018, Rising Sun is an information stealing trojan created by the Lazarus advanced persistent threat group for use in their global Operation Sharpshooter campaign targeting critical infrastructure.

  • Severity: Low
  • Type: Malware
CC-2855

Cisco Releases Security Updates

Published: Thursday 20 December 2018, Last updated: Monday 17 February 2020

Cisco has released security updates to address a vulnerability in Adaptive Security Appliance. A remote attacker could exploit this vulnerability to take control of an affected system.

  • Severity: Low
  • Type: Vulnerability
CC-2854

Microsoft Releases Security Updates

Published: Thursday 20 December 2018, Last updated: Monday 17 February 2020

Microsoft has released out-of-band security updates to address a vulnerability in Internet Explorer 9, 10, and 11. An attacker could exploit this vulnerability to take control of an affected system.

  • Severity: Low
  • Type: Vulnerability
CC-2856

TripleM Ransomware

Published: Thursday 20 December 2018, Last updated: Monday 17 February 2020

TripleM is a ransomware tool first seen in August 2017. The source code has been made available for sale since December 2018.

  • Severity: Medium
  • Type: Malware
CC-2852

Stolen Pencil Trojan

Published: Thursday 20 December 2018, Last updated: Tuesday 11 January 2022

Stolen Pencil, also known as Stolepen, is a trojan that targets devices using Google Chrome on Microsoft Windows. It was first observed in May 2018.

  • Severity: Medium
  • Type: Malware
CC-2851

Security Updates Released for SQLite Magellan Vulnerability

Published: Tuesday 18 December 2018, Last updated: Monday 17 February 2020

Security updates have been released to address a vulnerability named 'Magellan' in the SQLite database. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system.

  • Severity: Low
  • Type: Vulnerability
CC-2847

Medtronic Release Security Advisory

Published: Tuesday 18 December 2018, Last updated: Monday 17 February 2020

Medtronic has released a security advisory that addresses a vulnerability affecting their cardiac implantable programmers.

  • Severity: Low
  • Type: Vulnerability