North Korean attackers are using LinkedIn to target developers in a fake job recruitment operation that delivers malware, Google’s Mandiant reports. The operation sends a Python coding challenge containing COVERTCATCH malware, with the aim of compromising a target’s macOS system. Similar operations have been observed delivering other malware families, including RustBucket and KANDYKORN.

HSCC CWG urges halting NPRM, calls for joint cybersecurity policy reform to boost healthcare resilience
The Cybersecurity Working Group (CWG) within the U.S. Healthcare and Public Health Sector Coordinating Council (HSCC) has called on the country’s federal administration to work