Inside the PlugX malware removal operation, CISA takes victory lap and another Fortinet 0day

Three Buddy Problem - Episode 30: We discuss French threat-intel Sekoia creating a portal to handle “sovereign disinfections” of the PlugX malware, CISA leadership taking a victory lap using the ‘Secure by Design’ pledge as a trophy, the new Biden cybersecurity Executive Order, another Fortinet zero-day, the TikTok ban and Ukrainian hackers targeting Russian companies. Cast: Juan Andres Guerrero-Saade, Costin Raiu and Ryan Naraine.Links:Transcript (unedited, AI-generated)Court-Authorized Operation Removes PlugX Malware from Over 4,200 Infected U.S. ComputersPlugX removal affidavitSekoia -- PlugX worm disinfection campaignJen Easterly: Building a secure by Design ecosystem Trump zeroes in on Sean Plankey to lead CISASean Plankey bioBiden cybersecurity executive orderBiden executive order aims to shore up US cyber defensesGravy Analytics accused of negligence over location data breachTracking the mobile trackers (Costin Raiu) - YouTubeRussia's largest platform for state procurement hit by cyberattack from pro-Ukraine groupNew Star Blizzard spear-phishing campaign targets WhatsApp accountsUK proposes ransomware payment banFortinet authentication bypass zero-day Fortinet: Deep dive into a Linux rootkit malwareBernardo Quintero's new book on VirusTotal (Spanish-language)