Three Buddy Problem Inside the PlugX malware removal operation, CISA takes victory lap and another Fortinet 0day
19 snips
Jan 17, 2025 Discover the bold efforts of French intelligence in combating the PlugX malware through sovereign disinfections. CISA highlights progress with a new cybersecurity Executive Order, despite skepticism about real change. The podcast dives into critical vulnerabilities like the Fortinet zero-day, and debates the implications of TikTok bans on data privacy. Plus, hear about the evolving tactics of cybercriminals amid geopolitical tensions and the call for global cybersecurity collaboration to tackle these threats effectively.
AI Snips
Chapters
Books
Transcript
Episode notes
Proactive Malware Removal
- Ryan Naraine questions why US companies or CISA aren't more proactive in malware removal.
- He suggests CISA could partner with researchers and develop the capability to conduct such operations.
Understanding PlugX
- PlugX is a highly flexible, modular malware platform used for espionage.
- It has existed for over a decade with many variants and has been used by various threat actors, including APT41.
CISA's "Secure by Design" Pledge
- CISA's touted "Secure by Design" pledge is criticized for its lack of substance.
- Ryan Naraine points out that many companies' progress reports merely confirm their pledge and existing policies.
