…well not the actual one on my laptop. The SSH client I use is WinSCP and the actual version I use is the one available via PortableApps.com. It is not malware. But the BlackCat ransomware group, also known as ALPHV, have spoofed the official WinSCP website and are distributing a …
CISA Security Advisories – and why checking this post and software patching is important
CISA is the US government’s Cybersecurity and Infrastructure Security Agency and a very good source cyber security and software patching information. Last week they posted several software patching updates and known vulnerabilities that are being exploited and mitigations for them. Samba Releases Security Updates for Multiple Versions of Samba | …
So, what has ransomware done this week?
There are always ransomware stories in the technical press – and even one of two that get into the mainstream press, but of course for all of these headliners, smaller companies and micro-businesses get hit by ransomware but do not make the news. That could be you! BlackCat ransomware claims …
Software abuse at source
Hackers are abusing the MSBuild environment to embedded malicious code into applications to evade detection. Attackers are abusing MSBuild to evade defences and implant Cobalt Strike beacons – SANS Internet Storm Centre