North Korean attackers are using LinkedIn to target developers in a fake job recruitment operation that delivers malware, Google’s Mandiant reports. The operation sends a Python coding challenge containing COVERTCATCH malware, with the aim of compromising a target’s macOS system. Similar operations have been observed delivering other malware families, including RustBucket and KANDYKORN.

The NHS needs to tighten its third-party supplier cybersecurity
The NHS should proactively fortify cybersecurity within its third-party software suppliers following recent damaging ransomware attacks, says Jonathan Lee from Trend Micro. He suggests implementing