Not yet trading admitted with CFC? Find out more about our market-leading admitted products
Sign up for the latest cyber news, tools and resources, straight to your inbox every month!
Explore the latest on Cyber, Emerging risks and Specialist insurance.
A ransomware group is exploiting a SonicWall SSLVPN vulnerability to bypass MFA and deploy ransomware.
With Microsoft ending support for Exchange Server 2016 and Exchange Server 2019, assets still running these servers are at risk of being vulnerable...
Cybercriminal group, CLOP, are actively targeting Oracle E-Business Suite, with credible reports of data theft and extortion.
Critical vulnerabilities in Microsoft SharePoint are currently being exploited, posing a serious threat to exposed systems. We’re alerting business...
An emerging threat group is launching sophisticated data theft and cyber extortion attacks, using social engineering and remote access tools to avo...
A critical security vulnerability has been identified in the Microsoft Outlook desktop client. This vulnerability allows attackers to access your n...
The new attack method has been growing in use among well-known ransomware groups and was responsible for 10% of malware incidents observed by CFC l...
Log4Shell (CVE-2021-44228) is a critical vulnerability that is being actively exploited and scanned for by malicious actors since its discovery lat...
Our Response team recommends that you disable server message block (SMB) if it is not necessary on your network.
The below information is a guide compiled by CFC Response globally to assist organizations in detecting, eradicating and remediating the ProxyShell...
Learn why Zerologon carries the highest possible vulnerability severity score and what you can do to make sure your IT systems stay safe.
Get the technical summary of the Kaseya July 2021 REvil/Sodinokibi mass ransomware event
The CFC Incident Response Team has recently seen several ransomware attacks on legal services firms which appear to have been caused by GootLoader...
An advisory released by the NSA, CISA and FBI on 15 April warns of vulnerabilities being exploited by the Russian Foreign Intelligence Service, als...
Microsoft has released emergency out-of-band security updates for most Microsoft Exchange versions that fix four newly detected vulnerabilities act...
With more and more cyber incidents stemming from vulnerable RDP ports, our Incident Response Team has provided some more information about this tec...
Our incident response team has noticed the emergence of PYSA, a ransomware variant that is disproportionately affecting schools, colleges and unive...
Our Incident Response Team wishes to advise all insureds of a critical vulnerability in the Windows DNS server that allows cybercriminals to gain w...
