Resources

Advisory

Client advisory: Microsoft Outlook elevation of privilege vulnerability

A critical security vulnerability has been identified in the Microsoft Outlook desktop client. This vulnerability allows attackers to access your n...

Advisory

Client advisory: CFC warns of new “BazarCall” attack method

The new attack method has been growing in use among well-known ransomware groups and was responsible for 10% of malware incidents observed by CFC l...

Advisory

Client advisory: Log4Shell vulnerability

Log4Shell (CVE-2021-44228) is a critical vulnerability that is being actively exploited and scanned for by malicious actors since its discovery lat...

Advisory

Cyber Tips: Passwords and passphrases

Choosing strong passwords and passphrases is a key tenet of good cybersecurity. In our latest Cyber Tips post, learn about what tweaks you can make...

Advisory

Client advisory: Server message block vulnerability

Our Response team recommends that you disable server message block (SMB) if it is not necessary on your network.

Advisory

Client advisory: ProxyShell vulnerability remediation

The below information is a guide compiled by CFC Response globally to assist organizations in detecting, eradicating and remediating the ProxyShell...

Advisory

Cyber Tips: Backup policies

In the next post of our Cyber Tips series, we talk about what a backup policy entails and why it’s a vital part of any business’s cyber risk manage...

Advisory

Client Advisory: Zerologon vulnerability

Learn why Zerologon carries the highest possible vulnerability severity score and what you can do to make sure your IT systems stay safe.

Advisory

Cyber Tips: Multi-factor authentication

In the first post of our Cyber Tips series, we explore what multi-factor authentication (MFA) is and why it matters.

Advisory

Client Advisory: Kaseya Sodinokibi incident

Get the technical summary of the Kaseya July 2021 REvil/Sodinokibi mass ransomware event

Advisory

Client Advisory: GootLoader attacks on legal services

The CFC Incident Response Team has recently seen several ransomware attacks on legal services firms which appear to have been caused by GootLoader ...

Advisory

Client Advisory: Vulnerabilities in multiple platforms

An advisory released by the NSA, CISA and FBI on 15 April warns of vulnerabilities being exploited by the Russian Foreign Intelligence Service, als...

Advisory

Client Advisory: Exchange Marauder

Microsoft has released emergency out-of-band security updates for most Microsoft Exchange versions that fix four newly detected vulnerabilities act...

Advisory

Client advisory: Securing the Remote Desktop Protocol

With more and more cyber incidents stemming from vulnerable RDP ports, our Incident Response Team has provided some more information about this tec...

Advisory

Client advisory: New ransomware variant affecting schools

Our incident response team has noticed the emergence of PYSA, a ransomware variant that is disproportionately affecting schools, colleges and unive...

Advisory

Client advisory: Windows DNS vulnerability

Our Incident Response Team wishes to advise all insureds of a critical vulnerability in the Windows DNS server that allows cybercriminals to gain w...

Advisory

Client advisory: Two-factor authentication guidance

Two-factor authentication (2FA), also known as multi-factor authentication (MFA), is an extra layer of security used to verify the identity of the ...

Advisory

Client advisory: Cybercriminals exploiting Coronavirus

[Updated] Public concern and working-from-home mandates are providing opportunities for cybercriminals.