A Mystery Malware Stole 26 Million Passwords From Windows PCs

Researchers from NordLocker have uncovered a sizable database containing 1.2 terabytes of sensitive data including 1.1 million email addresses, 6.6 million files, over 2 billon browser cookies, 26 million login credentials, 1 million images and over 650,000 word and PDF files. The data within the breach was extracted by an unidentified malware that infected 3 million PCs between 2018-2020.

End users can determine whether their data has been breached by visiting Have I Been Pwned, a popular breach notification service, which has recently uploaded a list of comprised accounts.

EA: Gaming giant hacked and source code stolen

Malicious actors have targeted gaming publishing giant Electronic Arts, better known as EA. The hackers claimed to have stolen valuable data including the source code for popular games like FIFA 21 and for gaming engine Frostbite. EA has stated that no user data was breached during the attack.

EA are not the first gaming company to be targeted by cyber criminals in recent months, both Capcom and CD Projekt Red were hit with ransomware attacks in November 2020 and February 2021 respectively.
Stolen Login Marketplace On The Dark Web

In a press release, the US Department of Justice has stated that the notorious Dark Web marketplace Slilpp has been taken down with the aid of law enforcement in the Netherlands, Germany and Romania. Slilpp is a marketplace that bought and sold stolen credentials and identities. |At the time of the seizure, Slilpp listed over 80 million credentials gathered from approximately 1400 service providers that had suffered at the hands of malicious actors.

Currently, US authorities have arrested or charged over a dozen people thought to be connected with the operation of Slilpp, though further arrests spanning the different countries involved are very possible.

Al Jazeera condemns series of cyberattacks against its services

Digital ad industry accused of huge data breach

Cyber security toolkit for boards: audio transcripts

Wanted: Cyber security innovators to help secure UK networks

NCSC CEO warns that ransomware is key cyber threat

Humber River Hospital working to restore systems after being struck by cyber attack

Cifas warns consumers of shopping scams ahead of Amazon Prime Day

U.S. Army Hacked By 40 Military And Civilian Hackers In Six Weeks
NCSC Resources and Additional Services 

The NCSC's Active Cyber Defence is a programme that aims to reduce the impact of cyber incidents by providing services that can aid in protecting against a range of prevalent cyber threats.

Below is a list of cyber services that are either NCSC initiatives or have been assessed and are in line with what the NCSC  considers to be a  good standard of cyber security. All products mentioned are free at the point of use and can aid in significantly protecting the public and private sectors including SME’s from many cyber security threats.

Protective Domain Name Service (PDNS)

PDNS is available for public sector institutions and prevents users from accessing domains or IPs that are known to contain malicious content and stops malware already on a network from ‘calling home’.

Web Check

Web Check helps users find and fix common security vulnerabilities in websites that you manage. Currently, this is only available to the public sector and Academia (limited to Universities and Further Education Colleges) - access for Charities is limited (pilot users only).

Mail Check

Mail Check helps organisations assess their email security compliance and adopt secure email standards which prevent criminals from spoofing your email domains. Like Web Check, this service is only available to public sectors and Academia (limited to universities and Further Education Colleges) and Charities (limited to pilot users only).

Host Based Capability (HBC)

Available to public sectors (specially Central Government) HBC is a software agent available for use on OFFICIAL devices in government. The NCSC conducts analysis to detect malicious activity on those endpoints. The service provides security baseline reports and forewarns customers about their exposure to the most critical of vulnerabilities.

Logging Made Easy (LME)

LME is available for anyone to download and use, as it helps organisations to install a basic logging capability on their IT estate, enabling routine end-to-end monitoring of Windows systems.

Vulnerability Disclosure

The NCSC is working to mature the UK's approach to vulnerability disclosure and remediation by providing: Vulnerability Reporting Service (VRS), Vulnerability Disclosure Pilot and Vulnerability Disclosure Toolkit.

Exercise in a Box

Exercise in a Box is a toolkit of realistic scenarios that helps organisations practice and refine their response to cyber security incidents in a safe and private environment. Exercise in a Box is available for anyone to download and use.

The NCSC's Early Warning Service

NCSC’s Early Warning Service helps organisations investigate cyber attacks on their network by notifying them of malicious activity that has been detected in information feeds. Any UK organisation with a static IP address or domain name can sign up to use Early Warning.

Suspicious Email Reporting Service (SERS)

SERS enables anyone in the public to report suspicious emails by sending them to The service analyses the emails and where found to contain links to malicious sites, seeks to remove those sites from the internet to prevent the harm from spreading. 

The NCSC Takedown Service

The NCSC Takedown Service, available to the public sector,  finds malicious sites and sends notifications to the host or owner to get them removed from the internet before significant harm can be done. The NCSC centrally manages the service, so departments automatically benefit without having to sign up.


MyNCSC is a digital platform that provides a single point of entry to Active Cyber Defence (ACD) and other NCSC services. Currently, MyNCSC is only available to pilot users. UK Government organisations can request to become pilot users by emailing for more details.

Windows 10 to be retired in 2025, as new OS unveils

Microsoft has announced that they will be revealing a new OS and from the 14th October 2025 they will no longer be supporting Windows 10 with updates or security fixes for either Pro or Home versions of the system.

Criminals are mailing hacked Ledger devices to steal cryptocurrency

Malicious actors are mailing fraudulent and hacked ‘replacement’ devices to Ledger customers in an attempt to steal cryptocurrency wallets. With the recent rise in cryptocurrency prices, Ledger Hardware Wallets are becoming a popular target for fraudsters who are utilising customer data that was exposed in a recent data breach, in order to send out these fraudulent devices.
Apple Hurries Patches for Safari Bugs Under Active Attack

Apple has rushed to patch two security flaws affecting its Safari web browser engine - fixing the Zero-Day vulnerabilities believed to be being actively exploited. The vulnerabilities are affecting sixth gen Apple iPhones, the iPod touch model and iPads released between 2013-2018. Apple have stated that they are aware of the issues but will not release technical details until an investigation has occurred.

The patch for these bugs has been release and is available at:
Microsoft Teams: Very Bad Tabs Could Have Led to BEC

A substantial security hole within Microsoft Teams chat service had the potential to allow malicious actors to pose as an employee of a target company, granting them read/write privileges of a victims email account, OneDrive, SharePoint, Teams chat and other services. Fortunately, the bug has now been addressed.

What can we offer you?
Click here to subscribe to the Cyber Crime Sentinel Newsletter!
Get in Touch

SME Inputs 

Join our monthly online webinars aimed specifically at Small and Medium-sized Enterprises to discover what cyber threats could potentially impact your business and get the latest advice and cyber awareness training for all staff. To register visit:

Cyber Security Awareness Webinars: Schools and Education

Join our online webinar aimed at schools and educational organisations and discover how cyber attacks and ransomware are being used to target them. Get the latest advice and cyber awareness training for all staff.

Please note: All participants are screened before being invited to the event. Please use your corporate email address when registering.

Cyber Security Considerations for Leaders in Education

Join our webinar with the West Midlands Regional Cyber Crime Unit on Wednesday 23rd June from 12pm aimed at senior leaders, Governors and teaching staff, on how they can learn some practical and simple steps to keep their schools and students safe online.  

Cyber Choices: Virtual School and Education Events

Join our online webinars aimed at schools and educational organisations for advice and support on how we can help young people make informed cyber choices and use their cyber skills in a legal way.

Please note: All participants are screened before being invited to the event. Please use your corporate school email address when registering.

UK Education and Childcare Sector Alert and Resources

The National Cyber Security Centre has released the following guidance to schools - Cyber Security for Schools.  This page houses free resources for everyone working with schools. The education sector has recently been affected by a number of cyber incidents. 

Alert: Further targeted ransomware attacks on the UK education sector by cyber criminals

Support for UK education sector after growth in cyber attacks

New NCSC guidance aimed at the UK Early Years education and Childcare sector
The new guidance, produced in association with key stakeholders in the Early Years sector, will help organisations protect the growing amounts of sensitive information held on children and their families, from both accidental damage or from online criminals.

Get in touch with us if your school or organisation would like support with staff training. 

If you think you may have been the victim of fraud or cybercrime and incurred a financial loss or have been hacked as a result of responding to a phishing message, you should report this to Action Fraud 

Spotted a suspicious email? If you have received an email which you’re not quite sure about, forward it to the Suspicious Email Reporting Service (SERS):

Alternatively you can call 0300 123 2040
to report and obtain advice about fraud or cyber crime
Our lives are relying on technology more every day. Join us each week for your bitesize cybersecurity podcast. In this increasingly technical world we deliver non-technical cyber news, and identify the current threats we’re facing.

Our colleagues in the West Midlands Police Economic Crime Unit also produce cyber and fraud focused business newsletters. If you wish to subscribe to their newsletter, please e-mail  - 


The WMCRC work with local Universities and Police forces in Staffordshire, West Midlands, West Mercia and Warwickshire to provide you access to the latest information on emerging cyber threats, criminal trends and best practice to protect your business.
Apple Podcast
Copyright © 2021 West Midlands Regional Cyber Crime Unit, All rights reserved.

Want to change how you receive these emails?
You can update your preferences or unsubscribe from this list.

Email Marketing Powered by Mailchimp