Cyber Guidance


Need the latest on threats and the recommended remediation?

Check out our Cyber Guidance Cheat Sheets for the latest advice from our C-Suite team to secure your organization today.

Sign up to make sure you never miss an update >

View our Privacy Collection Statement here

September 2021


URGENT: OMIGOD Critical Vulnerabilities in Azure - September 2021 Cyber Guidance Issue 0198.pdf

Azurescape Cross-Container Compromise - September 2021 Cyber Guidance Issue 0197.pdf

Zoho Password Manager Under Attack - September 2021 Cyber Guidance Issue 0196.pdf

Microsoft MSHTML Vulnerability Exploit - September 2021 Cyber Guidance Issue 0195.pdf

Brute-Force Attack Scouring Email Accounts - September 2021 Cyber Guidance Issue 0194.pdf

LockFile Unique Encryption Avoids Detection - September 2021 Cyber Guidance Issue 0193.pdf

Confluence Server & Data Centre Vulnerability - September 2021 Cyber Guidance Issue 0192.pdf


August 2021


LockBit Ransomware New Features & RaaS - August 2021 Cyber Guidance Issue 0191.pdf

Realtek Chipsets SDK Under Active Exploit - August 2021 Cyber Guidance Issue 0190.pdf

Cosmos DB Critical Microsoft Azure Bug - August 2021 Cyber Guidance Issue 0189.pdf

FortiNet Bug Allows Firewall Takeover - August 2021 Cyber Guidance Issue 0188.pdf

Linux & MS Servers Vulnerable to HolesWord - August 2021 Cyber Guidance Issue 0187.pdf

Microsoft Races to Fix EoP Flaw - August 2021 Cyber Guidance Issue 0186.pdf

New Ransomware Targets NAS Devices - August 2021 Cyber Guidance Issue 0185.pdf

Chaos Malware - Wiper or Ransomware? - August 2021 Cyber Guidance Issue 0184.pdf

Patch Tuesday - August 2021 Cyber Guidance Issue 0183.pdf

Update Apple Devices Now - August 2021 Cyber Guidance Issue 0182.pdf

Critical Cisco VPN Bugs - August 2021 Cyber Guidance Issue 0181.pdf

Racoon Stealer-as-a-Services Platform Updates - August 2021 Cyber Guidance Issue 0180.pdf

Praying Mantis Targets Windows IIS - August 2021 Cyber Guidance Issue 0179.pdf

PetitPotam Credential Stealing Attacks - August 2021 Cyber Guidance Issue 0178.pdf

LemonDuck Malware Targets Microsoft & Linux - August 2021 Cyber Guidance Issue 0177.pdf


July 2021


SeriousSAM Workaround Issued by Microsoft - July 2021 Cyber Guidance Issue 0176.pdf

Printer Vulnerability in HP, Xerox & Samsung - July 2021 Cyber Guidance Issue 0175.pdf

MosaicLoader Zero-Day Windows Malware - July 2021 Cyber Guidance Issue 0174.pdf

Patch Tuesday - July 2021 Cyber Guidance Issue 0173.pdf

Microsoft Discovers SolarWinds Vulnerability - July 2021 Cyber Guidance Issue 0172.pdf

APT "LuminousMoth" Drops Fake Zoom App - July 2021 Cyber Guidance Issue 0171.pdf

Further Print Spooler Vulnerabilities - July 2021 Cyber Guidance Issue 0170.pdf

Cisco ASA, BPA & WSA Vulnerabilities - July 2021 Cyber Guidance Issue 0169.pdf

Fake Kaseya VSA Updates Release CobaltStrike - July 2021 Cyber Guidance Issue 0168.pdf

New Malware Protection Bypass in Office - July 2021 Cyber Guidance Issue 0167.pdf

TrickBot Add Man-in-the-Browser Capabilities - July 2021 Cyber Guidance Issue 0166.pdf

Kaseya VSA Used to Deploy Ransomware Attacks - July 2021 Cyber Guidance Issue 0165.pdf

Print Spooler PrintNightmare & Many More - July 2021 Cyber Guidance Issue 0164.pdf


June 2021


YouTube SpaceX Crypto-Coin Scan - June 2021 Cyber Guidance Issue 0163.pdf

Dell Security Bug Remote BIOS RCE Attack - June 2021 Cyber Guidance Issue 0162.pdf

WD My Book Storage Attack Wipes Data - June 2021 Cyber Guidance Issue 0161.pdf

Cisco 220 Series Smart Switch Vulnerabilities - June 2021 Cyber Guidance Issue 0160.pdf

Linux Systemd Root Security Bug - June 2021 Cyber Guidance Issue 0159.pdf

Vishing Attacks Bypass Email Security - June 2021 Cyber Guidance Issue 0158.pdf

Ransomware Triple Threat Evolution - June 2021 Cyber Guidance Issue 0157.pdf

Patch Tuesday - June 2021 Cyber Guidance Issue 0156.pdf

Intel Fixes 73 Bugs in CPU Firmware - June 2021 Cyber Guidance Issue 0155.pdf

Multiple Vulnerabilities in Android - June 2021 Cyber Guidance Issue 0154.pdf

Siloscape Malware Targets Containers - June 2021 Cyber Guidance Issue 0153.pdf

Epsilon Red Target MS Exchange Servers - June 2021 Cyber Guidance Issue 0152.pdf


May 2021


Apple Mac Zero-day Allows Sneaky Screenshots - May 2021 Cyber Guidance Issue 0151.pdf

Fake Ransomware StrRAT Spread by Email - May 2021 Cyber Guidance Issue 0150.pdf

VMWare Critical vCenter RCE Flaw - May 2021 Cyber Guidance Issue 0149.pdf

Hewlett Packard Zero-Day RCE Flaw - May 2021 Cyber Guidance Issue 0148.pdf

25 Critical IoT Device Vulnerabilities - May 2021 Cyber Guidance Issue 0147.pdf

Microsoft SharePoint Ransomware Phishing - May 2021 Cyber Guidance Issue 0146.pdf

Rust Language Gaining Traction for Malware - May 2021 Cyber Guidance Issue 0145.pdf

Apple Gatekeeper Security Bypass Exploited - May 2021 Cyber Guidance Issue 0144.pdf

Wi-Fi Researcher Uncovers "FragAttacks"- May 2021 Cyber Guidance Issue 0143.pdf

Patch Tuesday - May 2021 Cyber Guidance Issue 0142.pdf


April 2021


Urgent Security Update: QNAP NAS - April 2021 Cyber Guidance Issue 0141.pdf

Exchange ProxyLogon used to Establish APT - April 2021 Cyber Guidance Issue 0140.pdf

Phishing Scam Uses .TXT Attachments - April 2021 Cyber Guidance Issue 0139.pdf

Mirai Inspired Gafgyt Botnet DDoS - April 2021 Cyber Guidance Issue 0138.pdf

Web Forms Used to Circulate IcedID Malware - April 2021 Cyber Guidance Issue 0137.pdf

Unpatched Exchange Servers Cryptojacking - April 2021 Cyber Guidance Issue 0136.pdf

Zoom RCE Zero-Day Attack Chain - April 2021 Cyber Guidance Issue 0135.pdf

Patch Tuesday - April 2021 Cyber Guidance Issue 0134.pdf

SAP Bugs Under Active Attack - April 2021 Cyber Guidance Issue 0133.pdf

Azure Functions Allow Privilege Escalation - April 2021 Cyber Guidance Issue 0132.pdf

Fortinet Flaw Ransomware Attack - April 2021 Cyber Guidance Issue 0131.pdf

Apple Emergency Updates - April 2021 Cyber Guidance Issue 0130.pdf

LinkedIn Spear Phishing Targets Job Seekers - April 2021 Cyber Guidance Issue 0129.pdf

PHP Project Infiltrated by Attackers - April 2021 Cyber Guidance Issue 0128.pdf


March 2021


Netmask Networking Bug Affects Thousands - March 2021 Cyber Guidance Issue 0127.pdf

Android Spyware Masquerades as Updates - March 2021 Cyber Guidance Issue 0126.pdf

Purple Fox Malware has Worming Capabilities - March 2021 Cyber Guidance Issue 0125.pdf

Steganography on Twitter using PNG Files - March 2021 Cyber Guidance Issue 0124.pdf

o365 Phishing Targets Financial Execs - March 2021 Cyber Guidance Issue 0123.pdf

Business Social Media Accounts Targeted - March 2021 Cyber Guidance Issue 0122.pdf

New Intel Side-Channel Attacks - March 2021 Cyber Guidance Issue 0121.pdf

QNAP NAS Susceptible to Cryptomining - March 2021 Cyber Guidance Issue 0120.pdf

Ransomware Deployed in Exchange Attacks - March 2021 Cyber Guidance Issue 0119.pdf

Patch Tuesday - March 2021 Cyber Guidance Issue 0118.pdf

ObliqueRAT hides with Steganography - March 2021 Cyber Guidance Issue 0117.pdf

Attackers use SEO to Deploy Malware - March 2021 Cyber Guidance Issue 0116.pdf

Ryuk Ransomware's Terrifying Evolutions - March 2021 Cyber Guidance Issue 0115.pdf

Urgent Security Update: Microsoft Exchange - March 2021 Cyber Guidance Issue 0114.pdf

Malicious Mozilla Extension Gmail Takeover - March 2021 Cyber Guidance Issue 0113.pdf

VMWare Patches Critical RCE Flaw - March 2021 Cyber Guidance Issue 0112.pdf

Cisco RCE Flaw in Nexus Switches - March 2021 Cyber Guidance Issue 0111.pdf


February 2021


Silver Sparrow Awaits on Mac Chipsets - February 2021 Cyber Guidance Issue 0110.pdf

New Version of Masslogger Trojan - February 2021 Cyber Guidance Issue 0109.pdf

Tracker Pixels & Privacy Issues - February 2021 Cyber Guidance Issue 0108.pdf

Agent Tesla RAT Disables Microsoft ASMI - February 2021 Cyber Guidance Issue 0107.pdf

Matryosh Botnet uses Android for DDoS - February 2021 Cyber Guidance Issue 0106.pdf

Adobe Exploit Targets Windows Users - February 2021 Cyber Guidance Issue 0105.pdf

LodaRAT Moves from Windows to Android - February 2021 Cyber Guidance Issue 0104.pdf

Patch Tuesday - February 2021 Cyber Guidance Issue 0103.pdf

Dependency Confusion Attacks - February 2021 Cyber Guidance Issue 0102.pdf

Cisco Privilege Escalation Bugs - February 2021 Cyber Guidance Issue 0101.pdf

Active Zero-Day Exploits in Apple iOS - Febraury 2021 Cyber Guidance Issue 0100.pdf

New NAT Slipstreaming Attack 2.0 - February 2021 Cyber Guidance Issue 0099.pdf

Linux Sudo Bug Still Exists 10years On - February 2021 Cyber Guidance Issue 0098.pdf


January 2021


New FreakOut Malware Targets Linux - January 2021 Cyber Guidance Issue 0097.pdf

Google Forms Used to Perpetuate BEC - January 2021 Cyber Guidance Issue 0096.pdf

Microsoft RDP Used in DDoS Attacks - January 2021 Cyber Guidance Issue 0095.pdf

SonicWall VPN Vulnerability Exploited - January 2021 Cyber Guidance Issue 0094.pdf

Mimecast Certificates Hacked - January 2021 Cyber Guidance Issue 0093.pdf

Watering-Hole Attacks Exploit Flaws - January 2021 Cyber Guidance Issue 0092.pdf

MFA Bypassed in Cloud-Based Attacks - January 2021 Cyber Guidance Issue 0091.pdf

Patch Tuesday - January 2021 Cyber Guidance Issue 0090.pdf

Critical Android RCE Bug - January 2021 Cyber Guidance Issue 0089.pdf

Windows Zero-Day Remains Unfixed - January 2021 Cyber Guidance Issue 0088.pdf

2021 New Babuk Locker Ransomware - January 2021 Cyber Guidance Issue 0087.pdf


December 2020


SystemBC Backdoor Leveraged for Ransomware - December 2020 Cyber Guidance Issue 0086.pdf

Malicious Web Browser Extensions - December 2020 Cyber Guidance Issue 0085.pdf

Fax Alert Emails Phish Microsoft Office 365 - December 2020 Cyber Guidance Issue 0084.pdf

Second Stage SolarWinds Attack - December 2020 Cyber Guidance Issue 0083.pdf

Patch Tuesday - December 2020 Cyber Guidance Issue 0082.pdf

D-Link Router Zero Day Flaw - December 2020 Cyber Guidance Issue 0081.pdf

PGMiner Innovative New Botnet Discovered - December 2020 Cyber Guidance Issue 0080.pdf

SolarWinds Orion Active Exploit - December 2020 Cyber Guidance Issue 0079.pdf

FireEye Suffers Suspected State Attack - December 2020 Cyber Guidance Issue 0078.pdf

Social Media Buttons Hide Malware - December 2020 Cyber Guidance Issue 0077.pdf

Zoom Impersonation Phishing Campaign - December 2020 Cyber Guidance Issue 0076.pdf

Magecart Strike Again Impersonates PayPal - December 2020 Cyber Guidance Issue 0075.pdf


November 2020


Malware that Associates with Ransomware - November 2020 Cyber Guidance Issue 0074.pdf

Blackrota Golang Backdoor in Docker - November 2020 Cyber Guidance Issue 0073.pdf

Magecart Website Credit Card Skimming - November 2020 Cyber Guidance Issue 0072.pdf

PowerShell Backdoors Revealed in Microsoft Exchange - November 2020 Cyber Guidance Issue 0071.pdf

PLATYPUS Attack Steals Data from Intel CPUs - November 2020 Cyber Guidance Issue 0070.pdf

DoS Flaw in Cisco ASR Routers - November 2020 Cyber Guidance Issue 0069.pdf

Two More Zero-day's for Google Chrome - November 2020 Cyber Guidance Issue 0068.pdf

Patch Tuesday - November 2020 - Cyber Guidance Issue 0067.pdf

Zero-Day Microsoft Kernel Flaw - November 2020 Cyber Guidance Issue 0066.pdf

WordPress Flawed Updates - November 2020 Cyber Guidance Issue 0065.pdf

Google Drive Employed by Attackers - November 2020 Cyber Guidance Issue 0064.pdf

VMWare Issues Update for Previous Fix - November 2020 Cyber Guidance Issue 0063.pdf

Gitpaste-12 Worm Targets Linux Servers & IOT Devices - November 2020 Cyber Guidance Issue 0062.pdf

Apple Patches Zero-Day Flaws - November 2020 Cyber Guidance Issue 0061.pdf

Oracle WebLogic Servers Under Active Attack - November 2020 Cyber Guidance Issue 0060.pdf

Parked Domains & Typosquatting - November 2020 Cyber Guidance Issue 0059.pdf


October 2020


Ryuk Ransomware Exploit 'Zerologon' Flaw - October 2020 Cyber Guidance Issue 0058.pdf

Microsoft APT's Target Enterprise Platforms - October 2020 Cyber Guidance Issue 0057.pdf

Microsoft Teams Under Phishing Threat - October 2020 Cyber Guidance Issue 0056.pdf

Oracle October Patches Total 402 - October 2020 Cyber Guidance Issue 0055.pdf

Active Zero-Day Exploit in Google Chrome - October 2020 Cyber Guidance Issue 0054.pdf

Patch Tuesday - October 2020 Cyber Guidance Issue 0053.pdf

Zero-Click Vulnerability in Linux-based IoT Devices - October 2020 Cyber Guidance Issue 0052.pdf

Apple T2 Chip Flaw - October 2020 Cyber Guidance Issue 0051.pdf

Google Chrome86 Fixes Critical Flaws - October 2020 Cyber Guidance Issue 0050.pdf

New HEH Botnet Infecting All Endpoint Types - October 2020 Cyber Guidance Issue 0049.pdf

Azure App Server-Side Forgery Request - October 2020 Cyber Guidance Issue 0048.pdf

InterPlanetary Storm hits Common Operating Systems - October 2020 Cyber Guidance Issue 0047.pdf

Attackers Using CAPTCHA for Phishing - October 2020 Cyber Guidance Issue 0046.pdf

SPECIAL EDITION - Changes to New Zealand's Privacy Laws - October 2020 Cyber Guidance Issue Special Edition.pdf


September 2020


Cisco Tackled 29 High-Severity Bugs - September 2020 Cyber Guidance Issue 0045.pdf

Citrix Workspace Vulnerability Re-Opened - September 2020 Cyber Guidance Issue 0044.pdf

Misconfigurations in Google Cloud Buckets Lead to Public Access - September 2020 Cyber Guidance Issue 0043.pdf

Microsoft Revamps Patch Tuesday - September 2020 Cyber Guidance Issue 0042.pdf

Firefox High-Severity Flaws - September 2020 Cyber Guidance Issue 0041.pdf

Android Malware Evolution - September 2020 Cyber Guidance Issue 0040.pdf

'Zerologon' Critical Exploit in Windows - September 2020 Cyber Guidance Issue 0039.pdf

Malicious QR Code Security Concerns - September 2020 Cyber Guidance Issue 0038.pdf

MFA Bugs in Microsoft 365 - September 2020 Cyber Guidance Issue 0037.pdf

Increased DDoS Attacks with Covid-19 - September 2020 Cyber Guidance Issue 0036.pdf

TeamTNT Take Over Kubernetes & Docker Cloud Instances - September 2020 Cyber Guidance Issue 0035.pdf

Patch Tuesday - September 2020 Cyber Guidance Issue 0034.pdf

Phishing for Microsoft Outlook Credentials - September 2020 Cyber Guidance Issue 0033.pdf

6 Bugs Revealed in WhatsApp - September 2020 Cyber Guidance Issue 0032.pdf

Critical Cisco Jabber Flaw for Windows - September 2020 Cyber Guidance Issue 0031.pdf

Active Exploitation of Cisco Carrier-Grade Routers - September 2020 Cyber Guidance Issue 0030.pdf

File Manager WordPress Plugin Flaw - September 2020 - Cyber Guidance Issue 0029.pdf


August 2020


Flaw in Slack allows RCE - August 2020 Cyber Guidance Issue 0028.pdf

QBot Trojan Revamped - August 2020 Cyber Guidance Issue 0027.pdf

Script Kiddies from Iran play with Dharma Ransomware - August 2020 Cyber Guidance Issue 0026.pdf

Cisco Critical vWAN Software Flaw - August 2020 Cyber Guidance Issue 0025.pdf

IcedID Trojan - New Version, New Threat - August 2020 Cyber Guidance Issue 0024.pdf

AWS Cryptojacking Worm - August 2020 Cyber Guidance Issue 0023.pdf

Duri HTML Smuggling Campaign - August 2020 Cyber Guidance Issue 0022.pdf

Patch Tuesday - August 2020 Cyber Guidance Issue 0021.pdf

TeamViewer Windows Security Flaw - August 2020 Cyber Guidance Issue 0020.pdf

Achilles Qualcomm Snapdragon Security Exploits - August 2020 Cyber Guidance Issue 0019.pdf

Microsoft Teams Patch Bypass - August 2020 Cyber Guidance Issue 0018.pdf


July 2020


Cisco Network Device Security Flaw ASA & FTD - July 2020 Cyber Guidance Issue 0017.pdf

New Lokibot Variant: BlackRock for Android - July 2020 Cyber Guidance Issue 0016.pdf

Ancestry.com Potential Data Leak - July 2020 Cyber Guidance Issue 0015.pdf

Emotet Botnet & Trojan Resurgence - July 2020 Cyber Guidance Issue 0014.pdf

Cisco Critical Small Business Series Vulnerabilities - July 2020 Cyber Guidance Issue 0013.pdf

Patch Tuesday - July 2020 Cyber Guidance Issue 0012.pdf

Critical SAP NetWeaver Java Flaw - July 2020 Cyber Guidance Issue 0011.pdf

Citrix ADC & Gateway Bugs - July 2020 Cyber Guidance Issue 0010.pdf

Advertising Plug-in on Wordpress Sites - July 2020 Cyber Guidance Issue 0009.pdf

Android Malware on Google Play - July 2020 Cyber Guidance Issue 0008.pdf

TikTok Security Concerns & Covert Data Harvesting - July 2020 Cyber Guidance Issue 0007.pdf


June 2020


Phishing Targets Pandemic & Global Events - June 2020 Cyber Guidance Issue 0006.pdf

Ransomware: The Rising Threat for 2020 - June 2020 Cyber Guidance Issue 0005.pdf

Golang Worm - June 2020 Cyber Guidance Issue 0004.pdf

Ransomware Double Threat - June 2020 Cyber Guidance Issue 0003.pdf

Patch Tuesday - June 2020 Cyber Guidance Issue 0002.pdf


May 2020


Patch Tuesday - May 2020 Cyber Guidance Issue 0001.pdf


Unisphere Solutions - Powered by Capacitate Group