The FBI and CISA have updated the list of tools used by AvosLocker ransomware affiliates in attacks, including both open-source utilities and custom scripts. They include various remote administration tools, network tunneling utilities and data exfiltration tools. The agencies also shared a YARA rule for detecting NetMonitor malware, a tool used by the threat actors. They recommend implementing application control mechanisms, using multi-factor authentication, and keeping software updated as defense measures.
Week in review: NIST updates DNS security guidance, compromised LiteLLM PyPI packages
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: NIST updates its DNS security guidance for the first time
