Top 10 Stories

NHS hospitals are at risk of further devastating cyber attacks because staff are using “very weak” passwords, a new report reveals. Health chiefs warned that one in four official user accounts granting access to sensitive patient data and vital systems are inadequately protected, while many organisations are failing to update their security software. Around 10 per cent of administrator accounts, used by those who oversee IT systems, were also using weak passwords.The private industry briefing by...

After the WannaCry ransomware cyber attack spread like wildfire and paralysed computer systems across the world, isolated incidents were reported from Andhra Pradesh, Gujarat, Kerala and West Bengal. Now, the capital has seen its first ransomware cyber attack, with employees of Rachna Sagar Private Limited “locked” out of more than 200 computers. The cyber attack was reported on August 9 when staff at the publishing company found that they could not log into their user...

HBO is reportedly investigating the hacking of its various social media accounts, including the official Facebook and Twitter accounts. The accounts were hacked by a hacker squad called OurMine Security Group on Wednesday, August 17. The hacker squad left few messages on all the hacked social media pages of Time Warner-owned premium cable network. "Hi, OurMine are here, we are just testing your security. HBO team please contact us to upgrade the security - ourmine .org -> Contact,"...

A cyberattack on the Scottish parliament's IT systems could last several days, officials have warned. MSPs and staff were told some may be locked out of their email accounts after hackers launched a "brute force" cyberattack to crack passwords early on Tuesday. Parliament chief executive Sir Paul Grice said on Wednesday that Holyrood's systems were still under attack, but added there was no indication that defences had been breached.   Read Full Story  ORIGINAL SOURCE:...

Web application attacks accounted for 73 percent of all incidents flagged in an 18-month evaluation period according to a new report from Alert Logic which also says that web application attacks affected 85 percent of all its customers, with injection-style attacks such as SQL injection the main culprit. The company's 2017 Cloud Security Report is based on customer data from more than 3,800 Alert Logic cloud, on-premises and hybrid cloud customers over an 18 month period, from August...

AP Moller-Maersk said the Petya cyber attack had cost it $200m-$300m as the world’s biggest container shipping line returned to profit, buoyed by relatively strong global trade. The Danish conglomerate said the majority of the impact from the cyber attack would be felt in the third quarter, due to lost revenues in July, after its entire IT system including booking applications was brought down by malware hidden in a document used to file tax returns...

Fibre-based and mobile services delivered by Cantv and Movilnet in Venezuela have been switched off as a result of a continued and concerted cyber-attack. The attack, directed at Venezuela’s public infrastructure, has been assumed by a group called The Binary Guardians and has not only affected telecom services, but has blocked many .ve-domain websites, including all the Government platforms and the Supreme Court’s site. View Full Story ORIGINAL SOURCE: Rapid TV News

Hackers have mounted a “brute force” cyber-attack on the Scottish parliament’s computer systems, weeks after a similar attack on email accounts at Westminster. MSPs and Holyrood staff were warned on Tuesday that hackers were attempting to access numerous email accounts by systematically and repeatedly trying to crack their passwords. Holyrood officials said they were not aware of any compromised email accounts, but staff and MSPs were warned the attack could mean some people were locked...

A few months back we reported how opening a simple MS Word file could compromise your computer using a critical vulnerability in Microsoft Office. The Microsoft Office remote code execution vulnerability (CVE-2017-0199) resided in the Windows Object Linking and Embedding (OLE) interface for which a patch was issued in April this year, but threat actors are still abusing the flaw through the different mediums. Security researchers have spotted a new malware campaign that is leveraging the same exploit,...

Even as several tech companies moved to disassociate themselves from the Daily Stormer on Monday, one tech firm refused to cancel its dealings with the neo-Nazi website — Cloudflare. A content delivery network that helps to protect sites from denial of service attacks, Cloudflare continues to support both DailyStormer.com and AltRight.com, another white supremacist site, through its service. View Full Story ORIGINAL SOURCE: Business Insider