Major Dridex Banking Malware Outbreak

Beginning Friday and continuing through the weekend, OxCERT’s network security monitoring has picked up an extreme number of PCs infected with the ‘Dridex’ family of banking malware. This malware is a specialised form of computer virus, tailored specifically to Windows-based … Continue reading

Posted in Current Threats, Email, General Security, Information Security, Microsoft | 2 Comments

Financial Fraud Targeting University Departments

OxCERT have received an escalating number of reports of highly convincing financial fraud emails directed at University Finance Officers and others responsible for issuing large financial payments. This threat goes beyond simple ‘phishing’ campaigns, this is clearly a direct and … Continue reading

Posted in Current Threats, Email, General Security | Comments Off on Financial Fraud Targeting University Departments

CVE-2015-3456 ‘VENOM’ – And it was all going so well…

After a relatively long period without a potentially-catastrophic vulnerability to report, we must again break out the hard hats as the numerically-improbable ‘CVE-2015-3456‘ is here and it wants to kill your datacentre. It’s called VENOM, in case you were wondering. … Continue reading

Posted in Current Threats, General Security, Information Security, Web Security | 1 Comment

Targeted financial fraud

We were recently alerted to an example of an attempted highly-targeted financial fraud. Now, we see fraudulent emails all the time, but fortunately most are immediately apparent to the recipients. In this case, however, the attacker had done their homework. … Continue reading

Posted in Current Threats, Email, General Security | Comments Off on Targeted financial fraud

How To Train Your POODLE part II – Servers and Infrastructure

In our previous blog post, we gave a quick overview of the ‘POODLE’ SSLv3.0 vulnerability, followed by tips for mitigating the risks on client applications. In this post, we will focus our attention on server side strategies. For servers using … Continue reading

Posted in Current Threats, General Security, Microsoft, Web Security | Comments Off on How To Train Your POODLE part II – Servers and Infrastructure

Bash ‘Shellshock’ Bug – Now You Can Panic

UPDATE: The initial round of patches to fix CVE-2014-6271 have proven ineffective at fully resolving the issue; a new CVE code has been issued, “CVE-2014-7169“, use this to track news and updates regarding this bug and patch status. Remember Heartbleed? Get ready to … Continue reading

Posted in Apple, Current Threats, General Security, Web Security | Comments Off on Bash ‘Shellshock’ Bug – Now You Can Panic

Google Hacking – Making Use of the All Seeing Eye

You don’t need me to tell you, that the Google search engine is a vast and powerful tool. Or that, Tor aside, it pretty much holds the whole of the Internet in the palm of its hand. What you may not … Continue reading

Posted in General Security | 1 Comment

5 Million Google Accounts Leaked

Details are emerging of a very recent large-scale leak of Google’s account database, centring around their flagship email service Gmail. Google’s official word on the subject can be read here. The credentials were posted to a Russian BitCoin mining forum earlier … Continue reading

Posted in Current Threats, General Security, Google | Comments Off on 5 Million Google Accounts Leaked

New e-Mail Malware Campaign, “Order Number…”

OxCERT have received a large number of reports regarding a large-scale malware distribution campaign currently targeting University staff and users. This campaign operates by email, with the distinctive subject line ‘Order Number 86514719983’; the number seems to be random and many … Continue reading

Posted in Current Threats, Email, General Security | Comments Off on New e-Mail Malware Campaign, “Order Number…”

Gameover for P2P Zeus?

Over the past few days you may have spotted headlines in the press that appear to claim the UK has two weeks to save itself from a massive cyber attack. You may be asking: what is this threat, and what … Continue reading

Posted in General Security | Comments Off on Gameover for P2P Zeus?