We all depend on the various technical cyber security solutions we deploy, firewalls, anti-virus, end point detection and response (EDR), there are many names and the threat actors know we depend on them. So it should come as no surprise that there are attacks, that first attempt to disable these …
I had not heard of eScan anti-virus…
…but a North Korean threat actor group had and they hijacked the update process to inject malware into the “protected” systems. Researchers at Avast believe the group is the North Korean APT group Kimsuki. The malware installs GuptiMiner – a crypto-miner – and disables several other security precautions if they …
The fast track for better cyber security
Modern cyber security tools are well within the budget of even the smallest organisations- even one person businesses. We have a webinar this week to tell you how. This article will give you some background it includes a link to sign up for either the webinar or to get the …
Has Sellafield been hacked?
The UK Government denies that Sellafield, the nuclear research and processing site located on the Cumbria coast, has been infected with malware since 2015. Sellafield nuclear site hacked by groups linked to Russia and China | The Guardian The fears are that some of the mist confidential information stored on …
You have protection – hackers have evasion
In a forth coming article about our new Security Operations Centre (SOC-as-a-Service), I discuss the different between passive protection – which you must have – and reactive, continuous 24/7 Cyber Security Monitoring. This article from Bleeping Computer illustrates how threat actors carefully take apart the protection you are using to …
Continue reading “You have protection – hackers have evasion”