Plug-ins is a way of vendors and third-parties extending the functionality of software – it work very well, the success of WordPress is partly based on plug-ins. Now the threat actor vendors are taking the same approach with their malware – with the plug-ins helping to obfuscate the malware to …
National Cyber Security Centre Threat Report 22 July 2022
Threat Report 22nd July 2022 – NCSC.GOV.UK
Transparency
Here is an interesting article from Kent Walker, President of Global Affairs, Google & Alphabet, looking at how Google reached it’s current stance on sharing cybersecurity information. Transparency in the Shadowy World of Cyberattacks (blog.google)
US Cybersecurity and Infrastructure Security Agency advisories on security updates – Chrome, Oracle, Drupal, Apple, Cisco and Atlassian
CISA has issued advisories on the following: Google Releases Security Updates for Chrome | CISA Drupal Releases Security Update  | CISA Oracle Releases July 2022 Critical Patch Update | CISA Apple Releases Security Updates for Multiple Products | CISA – SANS had a good round-up of these updates here. Cisco …
More ransomware money returned – but your cyber security plan should not depend on that. Do you have a cyber security plan?
This time the US Department of Justice has returned about half a million dollars worth of Bitcoin to two hospital groups who had paid ransomware ransoms to North Korean threat actors. US seizes stolen funds from suspected North Korean hackers – BBC News However it is better to have not …
