Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Hidden Cobra:  North Korean Malicious Cyber Activity

Original release date: February 14, 2020

The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense (DoD) have identified the following malware variants used by the North Korean government. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA.

CISA encourages users and administrators to review the Malware Analysis Reports for each malware variant listed above and the North Korean Malicious Cyber Activity page for more information.

RobbinHood – the ransomware that brings its own bug

When you need a vulnerability to exploit, but there isn’t one… why not simply bring your own, along with your malware?  A fascinating and frightening read, be sure to click through to the main article

Android pulls 24 ‘dangerous’ malware-filled apps from Play Store

The malware-infected apps used to harvest data and sign users up to premium services have been downloaded more than 382 million times.  After Google got a heads-up from a Forbes writer on Tuesday, it yanked all of the 24 apps in the Shenzhen network from the Play store.

Google’s Chrome 80 clamps down on cookies and notification spam

Version 80 of the Chrome browser is out with some new features designed to save your security and your sanity.

China’s To Blame For The Equifax Hack. But It Shouldn’t Let Equifax, Or US Regulators, Off The Hook.

from the plenty-of-blame-to-go-around dept

The Department of Justice this morning formally announced that it has identified the Chinese government as the culprit behind the historic Equifax hack. If you’ve forgotten, the 2017 hack involved hackers making off with the personal financial data of more than 147 million Americans. Those victims were then forced to stumble through an embarrassing FTC settlement that promised them all manner… (full story)

CISA is now on Facebook!

We are happy to announce that CISA is expanding its external reach to a new platform: Facebook (facebook.com/CISA). As a new agency with a collaborative mission, CISA’s success depends upon our ability to communicate with our partners and the public. Facebook will be a critical platform where we can share resources, make announcements, and encourage all our followers to be proactive about managing risk.

CISA now maintains a presence on four social media platforms: Facebook, Twitter, LinkedIn, and YouTube. Please like, follow, and connect with CISA. Below are a couple posts you can use to help spread the word, or you can simply like and share content we’ve already posted:



About the Author:

I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com
  Related Posts

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.