Welcome to the latest edition of the Neu Cyber Threats, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, malware including Ransomware and DDoS, in order to ensure you stay safe online.

Here are the most prominent threats which you should be aware of:

 

Microsoft April 2022 security update

Microsoft has released the April 2022 security update that addresses a number of vulnerabilities, including a remote procedure called runtime remote code execution (CVE-2022-26809).

The NCSC recommendations follow vendor best practices in the mitigation of these vulnerabilities. In this case, installing the latest updates as soon as possible is advised. You can find this information here: Install the latest software and app updates – NCSC.GOV.UK

The Microsoft April 2022 Security updates fixed a number of security vulnerabilities, and more info can be found on Microsoft’s website: April 2022 Security Updates – Release Notes – Security Update Guide – Microsoft

Advice to CNI on Russian cyber threat

The Russian cyber threat continues to grow as the war in Ukraine develops. This week, the UK joined its international allies to advise global CNI organisations on any cyber threat posed to them.

The advisory is published by the NCSC alongside other agencies abroad, such as the US, Australia, Canada and New Zealand, as well as the UK’s NCA.

It provides technical details and information on Russian – aligned cyber-criminal groups. These groups have threatened those who support and have provided aid to Ukraine.

To stay ahead of this threat, enable multifactor authentication, patch all systems and provide training to all end users.

The advisory is available to read on the Cybersecurity and Infrastructure Security Agency (CISA) website.

Funky Pigeon site offline after cyber incident

Online card designer Funky Pigeon stopped taking orders after it was hit by a cyber-attack. They have confirmed to have taken their systems offline as a precaution and cannot fulfil any orders.

They have also written to all customers for the past 12 months due to the nature of the threat posed. However, they did not believe there was any data compromised by the attack.

They are not the only organisation that has been breached by a cyber attack in recent months. The Works have also suffered a similar incident and have had to shut down parts of its operation to avoid any level of compromise.

The threat these attacks pose are not easily dealt with and can take many external experts to get their services back up and running to an acceptable level. Retailers are often a target for cyber criminals, and it is important for customers to be vigilant if they are concerned their data may be at risk of a data breach.

If you are concerned about any cyber security issues within your business, contact us today on 01283 753 333 or email hello@neuways.com.