We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
Cyber alerts
We issue cyber security alert notifications to health and care organisations, ranging from weekly threat bulletins to immediate high-severity alerts.
December 2019
CC-3324
Drupal Releases Security Updates
Drupal has released security updates to address vulnerabilities in Drupal 7.x, 8.7.x, and 8.8.x. An attacker could exploit some of these vulnerabilities to modify data on an affected website.
CC-3325
Philips Healthcare C-arm X-Ray Router Encryption Vulnerability
Philips Healthcare has released details of an encryption vulnerability present across Veradius Unity, Pulsera, and Endura C-Arm. An unauthorised user could exploit this vulnerability to impact data transfer.
CC-3322
Google Releases Security Updates for Chrome for Windows, Mac, and Linux
Google has released security updates for Chrome version 79.0.3945.88 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.
CC-3323
Microsoft Releases Out-of-Band Security Updates
Microsoft has released out-of-band security updates to address a vulnerability in SharePoint Server. An attacker could exploit this vulnerability to obtain sensitive information.
CC-3320
Dacls Remote Access Trojan
First observed in October 2019, Dacls is a multi-platform modular remote access trojan believed to have been created by the Hidden Cobra advanced persistent threat group.
CC-3321
Manager APT Toolkit
First observed in late 2019, the Manager toolkit is a set of three C++ based tools; NewManager, AmpManager, and DDoSManager, created by the ChinaZ advanced persistent threat to primarily target Linux web servers.
CC-3319
TP-Link Releases Security Update
TP-Link has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.
CC-3318
Avaya Releases Security Update
Avaya has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.
CC-3317
Momentum Botnet
First observed in late 2018, Momentum is a worm and botnet targeting Linux-based web servers, Internet-of-Things and SOHO devices. The group operating Momentum are believed to be selling the botnet's services through a number of dark web forums.
CC-3316
WordPress Releases Security and Maintenance Updates
WordPress 5.3 and prior versions are affected by multiple vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected website.