A look back at news, views and more over the past couple of weeks, taken from our last Cyber Security Insights newsletter and other sources.
Catch up on the latest threats, research, advice and events – in fact, all things cyber – at your convenience.
What's New?

Failed Oracle patch gets urgent update.
WebLogic patch can be bypassed and is being exploited to execute malware using elevated privileges. Urgent update available.

Wroba: a (nasty) surprise delivery
Wroba tricks users into installing a banking trojan through mobile notifications that urge them to click to receive a parcel.

NCSC publishes Annual Review.
HKey highlights include support for secure remote working and the takedown of over 166,000 phishing URLs.
What's next

Ryuk will rise again!
The Ryuk ransomware group was thought to have disbanded, but recent attacks herald its return – with greater volume and speed than before.

Cyber security post-COVID: what can we expect?
Our CEO Martin Sutherland asks cyber security expert Dr. Victoria Baines how this challenging year impacts the present and the future.

Legal Cyber Security Expo.
The legal sector – and legal functions in your business – are a prime cyber attack target. This event explores how to secure them. 2 – 3 Dec., online.
What You Might Have Missed

Companies House attack trigger.
The API used by businesses to obtain info on other companies was subverted to potentially trigger a cross-site scripting (XSS) attack.

Your bank balance? That’ll do nicely.
Dundee & Angus College received a ransom demand for the precise value of their bank balance – because that had been hacked too.

US lobbies for election cyber security investment.
Security advocates are pushing for up to $3 billion from Congress to protect US election systems against hacking in the future.