Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Cisco Talos Research: New Lazarus Group Attack Malware Campaign Hits UK & US Businesses

The Cisco Talos report exposes new malware used by the group to target Internet backbone infrastructure and healthcare organizations in the U.K. and the U.S.

FBI-Led Global Effort Takes Down Massive Qakbot Botnet

After more than 15 years in the wild, the Qakbot botnet, a zombie network of over 700,000 computers worldwide, is hanging on the FBI’s trophy wall for now.

CISA Warns of Hurricane-Related Scams

08/31/2023 08:00 AM EDT

CISA urges users to remain on alert for malicious cyber activity following natural disasters, such as hurricanes, as attackers target disaster victims and concerned citizens by leveraging social engineering tactics, techniques, and procedures (TTPs).

Social engineering TTPs include phishing, in which threat actors pose as trustworthy persons/organizations—such as disaster-relief charities—to solicit personal information via email or malicious websites. CISA recommends exercising caution in handling emails with disaster-related subject lines, attachments, or hyperlinks. In addition, be wary of social media pleas and texts messages related to severe weather events.

CISA encourages users to review the following resources to avoid falling victim to malicious cyber activity:

Microsoft is killing WordPad in Windows after 28 years

Microsoft announced today that it will deprecate WordPad with a future Windows update as it’s no longer under active development, though the company did not specify the precise timing of this change.

WordPad is a basic text-editing application that allows users to create and edit documents with formatted text and include images and links to other files.

It is automatically installed on Windows systems starting in 1995 since Windows 95 was released, providing users with a basic word processor and document editor integrated into the operating system.


About the Author:

I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.