A look back at news, views and more over the past couple of weeks, taken from our last Cyber Security Insights newsletter and other sources.
Catch up on the latest threats, research, advice and events – in fact, all things cyber – at your convenience.
What's New?

Critical Drupal vulnerability requires urgent attention
File upload restrictions can be bypassed by adding a second file extension to malware

AI Pioneer receive highest accolade
Professor Nick Jennings, Reliance ACSN Advisory Board Member awarded British Computer Society’s LoveLace Medal

On the offensive: The UK’s new Cyber Force
Funding announcement for defence highlighting the focus on the military cyber capabilities

Attacks aimed at vaccine organisations
Microsoft have released details around recent attacks aimed at organisations working on COVID-19 vaccines
What's next

Google’s Privacy Sandbox stamped on
UK competition watchdog asked to block the launch of the Google’s anti-tracking technology

Caught in the cookie jar
A warning for Android users running Firefox v68.10.1 who are vulnerable to browser cookie theft.

EmPower Cyber Week
Starting 30th November this 5-day event offers live sessions from industry partners and experts.
What You Might Have Missed

Failed Oracle patch gets urgent update
WebLogic patch can be bypassed and is being exploited to execute malware using elevated privileges. Urgent update available.

Wroba: a (nasty) surprise delivery
Wroba tricks users into installing a banking trojan through mobile notifications that urge them to click to receive a parcel.

NCSC publishes Annual Review
HKey highlights include support for secure remote working and the takedown of over 166,000 phishing URLs.