by BFFF
Apr 30th, 2020
2 mins

Last week cyber security company Sophos reported its XG Firewall product had been subject to a Structured Query Language (SQL) injection attack. The company said that customised malware known as ‘Asnarok’ was used to gain access to vulnerable physical and virtual XG Firewall devices – see further information and links on the NCSC website: https://www.ncsc.gov.uk/sophos-vulnerability-statement

Organisations who have signed up to the NCSC-CNR service will have received an alert about this incident.  If you are not currently signed up for the CNR service the NCSC will not know whether this incident has had an impact on your organisation.  Please could you let them know if you use a Sophos XG Firewall?  If you do use a Sophos XG firewall, NCSC recommends that you note the advice around passwords and look to reset passwords related to the firewall as a priority and that administrators reissue certificates to the firewalls. They are happy to provide any further advice if required. Contact Simon.h@ncsc.gov.uk

Further advice and support, including how to sign up for the CNR service, can be found here: https://bfff.co.uk/cyber-security-advice-and-support/

CNR – sign-up form

NCSC Services and Support

Webinars

Dec 9th, 2021
2 mins

Fareshare and Frozen

Nov 1st, 2021
3 mins

Lumina Intelligence give cautious optimism with menu counts increasing season-on-season in the latest BFFF industry webinar

Sep 22nd, 2021
1 min

TRANSPORT AND GROUPAGE BREXIT SUPPORT SESSION

Sep 16th, 2021
1 min

FROZEN OPPORTUNITIES PRESENTED BY HFSS RECORDING

Aug 19th, 2021
1 min

The Future of Imports Recording

Jul 22nd, 2021
1 min

Integrating Social Value into your business recording

May 20th, 2021
1 min

KANTAR - THAWING OF LOCKDOWN RESTRICTIONS