…but a North Korean threat actor group had and they hijacked the update process to inject malware into the “protected” systems. Researchers at Avast believe the group is the North Korean APT group Kimsuki. The malware installs GuptiMiner – a crypto-miner – and disables several other security precautions if they …
Let’s finish the week with ransomware
Do you have a ransomware plan? If not here is a thought… I am sure the world’s largest commercial bank had/has a ransomware, incident response and business continuity plan – and they need it: World’s largest commercial bank ICBC confirms ransomware attack (bleepingcomputer.com) I am also sure they had plenty …
Defence in Depth
One of the things that came out of the conference I attended on Tuesday in London, was defence in depth, combatting the ways in which the threat actors have expanded their attack vectors and tactics to evade various modern technical and human defences. The message we should all take from …
Today
I have been attending a cyber security conference today – read some of the details here: Cyber Security Conference – Clive’s Blog it was a good day – I learnt some new things and was reminded of stuff I knew but had not thought about for a while. I am …
Defence-in-Depth – The Next Step
Yesterday I wrote the opening chapter of this defence-in-depth article – I looked at how anti-virus protection can be side-stepped by threat actors and that staff cyber awareness training is needed to provide another layer to your defences. That was a human addition to your defence-in-depth and today we are …