The United States’ Cybersecurity and Infrastructure Security Agency (CISA) in conjunction with the threat hunting team from the security company Symantec have discovered rootkit malware that can quietly open backdoors into systems. This malware, called “Daxin”, has been linked with Chinese operations connected with the hacking group Middle Kingdom and …
Iranian Government-Sponsored Actors
The National Cyber Security Centre – in association with partners – has issued an advisory about an Iranian state sponsored hacking group “MuddyWaters”. Joint advisory on MuddyWater actor – NCSC.GOV.UK If you are interested in some of the background and how these type of nation backed groups operate the article …
More about Log4j
This was always going to be an issue when we posted about it last week – here is more information. Log4shell: US demands Christmas Eve deadline for hack fix – BBC News CISA issues emergency directive to fix Log4j vulnerability • The Register CISA issues ’emergency directive,’ orders federal agencies …
VPN advice
Bruce Schneier’s blog today is pointing at a useful reference document about VPNs. It is produced the The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) both United States agencies and it is targeted at a US audience but it still contains a useful set of …