“PlugX” spy malware, linked to China-funded hacker groups Mustang Panda and Twill Typhoon, has been removed from thousands of computers globally in an operation led by French law enforcement and cybersecurity company Sekoia.io, alongside the FBI and Department of Justice. The malware was used to infiltrate and control thousands of computer systems since at least 2014, targeting US citizens, government bodies, businesses, and Chinese groups. Investigations into Mustang Panda’s activities are ongoing.

The NHS needs to tighten its third-party supplier cybersecurity
The NHS should proactively fortify cybersecurity within its third-party software suppliers following recent damaging ransomware attacks, says Jonathan Lee from Trend Micro. He suggests implementing