…but a North Korean threat actor group had and they hijacked the update process to inject malware into the “protected” systems. Researchers at Avast believe the group is the North Korean APT group Kimsuki. The malware installs GuptiMiner – a crypto-miner – and disables several other security precautions if they …
Manage your security patching
Here are a couple of examples from the recent cyber-tech press of examples of software vulnerabilities that need patching… Promptly! Microsoft releases Exchange hotfixes for security update issues – BleepingComputer ArcaneDoor hackers exploit Cisco zero-days to breach govt networks – BleepingComputer The first illustrates that management is needed as not …
Why patching is important
Even though the US National Security Agency (NSA) reported this flaw to Microsoft and they patched it in their October 2022 Patch Tuesday, the threat group APT28 is still exploiting it. Microsoft: APT28 hackers exploit Windows flaw reported by NSA – BleepingComputer The Russian threat group uses a hacking tool …
Fake cheat codes should get you thinking about your hybrid workers
I am never popular when I am helping organisations create cyber security plans and I insist that company laptops are only for company business. This applies double when the laptop is used at home or on holiday – you cannot let your significant other or others use the company computer. …
Continue reading “Fake cheat codes should get you thinking about your hybrid workers”
I have an LG TV!
Researchers at BitDefender have discovered cyber security flaws in WebOS, the operating system used in LG smart TVs. Over 90,000 LG Smart TVs may be exposed to remote attacks (bleepingcomputer.com) I manual ran a software update on my TV to ensure it is running the latest secure version of WebOS. …
