On September 7, 2021, Microsoft disclosed a remote code execution vulnerability (CVE-2021-40444) in the Internet Explorer MSHTML browser engine (also known as Trident). As of this publication, threat actors are actively exploiting the flaw using… More »

A large number of Apache web server vulnerabilities appear to be present across the education sector; based on intelligence from multiple sources. Some of the vulnerabilities were disclosed back in 2011, and some have Critical… More »

The following Advisory has been published: CVE-2021-21985 – Critical 9.8: VMware vCenter Server remote code execution Summary: VMware has issued patches for a Remote Code Execution (RCE) vulnerability in vCenter Server (CVE-2021-21985), with a CVSSv3… More »

On April 13, 2021, Microsoft published security updates to address four critical remote code execution vulnerabilities that impact Exchange Servers 2013, 2016, and 2019. Online Exchange environments are not affected. The following CVEs have been… More »

To reduce the impact of a successful compromise, should one occur, you are strongly advised to review your authoritative DNS setup ASAP: If using off site secondary nameservers, ensure that those secondaries have an up-to-date… More »

As we inch ever closer to the end of the school term we all start (if you’re not doing already) to think past the hustle and bustle of end of year plans, excitement, trips, discos… More »

There have been a large number of Ransomware emails doing the rounds lately and we would like to try make sure that the risk is minimised as far as possible. We have some information on… More »