The US Department of Health and Human Services (HHS) has expanded its Healthcare Sector Cybersecurity Concept Paper with cybersecurity performance goals (CPG) for healthcare and public health sectors. This includes ten essential goals such as mitigating known vulnerabilities and providing basic cybersecurity training, and enhanced goals that focus on improving cybersecurity including asset management and inventory identification. The CPGs aggregate cyber best practices from NIST, 405d, and CISA.

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The