Following public reporting regarding a selective, state-sponsored compromise of the Notepad++ auto-updater component (WinGup), Orro Group conducted a targeted threat hunt to validate whether any impacted updater activity, known indicators of compromise (IoCs), or associated attacker tradecraft were present within the client environment. Following public reporting regarding a selective, state-sponsored compromise of the Notepad++ auto-updater component (WinGup), Orro Group conducted a targeted threat hunt to validate whether any impacted updater activity, known indicators of compromise (IoCs), or associated attacker tradecraft were present within the client environment.
Black Orro logo.
OneTouch Login
Contact

Resources

Stay up-to-date with the latest news, views and trends in future-now networking, cyber security, cloud and digital infrastructure.

Filter

View Toggle
Type
Cyber
Notepad++ Security Incident
Insights
Threat Hunt: Notepad++ Security Incident
Critical Infrastructure
Insights
When the Cyber Threat Becomes Physical: What the OT Cyber Resilience Summit Told Us About the Road Ahead
Cyber
Brochures & Documents
Virtual CISO (vCISO)
Cyber
Brochures & Documents
Third‑Party Risk Management as a Service (TPRMaaS)
Cyber
Brochures & Documents
Cyber Simulation (Tabletop)
Cyber
Brochures & Documents
Red Teaming
Cyber
Orro Exposure Management Service powered by business‑context risk prioritisation
Brochures & Documents
Exposure Management Service (CTEM)
Cyber
Orro Architecture as a Service—vendor‑neutral blueprint and technology roadmap
Brochures & Documents
Architecture as a Service
Service
Orro team at CIO Edge Sydney 2026 discussing AI data foundations.
Insights
CIO Edge 2026: Good Room, Real Conversations
Cyber
Guides and Playbooks
The Continuous Exposure Playbook: A Practical Guide to Measurable Risk Reduction
Cyber
Insights
AI Is Accelerating Threat Velocity - Here's Why That Makes Continuous Validation Non-Negotiable
Cyber
Insights
Continuous Threat Exposure Management: The Discipline That Closes the Loop
Cyber
Insights
What Does Good Cyber Intelligence Look Like at Board Level?
Critical Infrastructure
Insights
You Can't Secure What You Can't See: The Intelligence Stack Beneath Modern Cyber Defence
Critical Infrastructure
Insights
From Alerts to Action: The Missing Layer in Modern Security Operations
Cyber
Insights
The Illusion of Control: Why Visibility Alone Isn't Reducing Cyber Risk
Critical Infrastructure
Insights
Beyond Detection: Why OT Recovery Readiness Determines Real Resilience
Cyber
Press Releases
Orro Awarded 2026 APJ Partner of the Year by Rapid7
Network
Brochures & Documents
Managed Network Service
Cyber
Our Hypothesis: Detecting Low-Noise Remote Access Tradecraft
Insights
Threat Hunt: Validating EDR Effectiveness Against Low Noise Remote Access Threats
Cyber
Insights
Vulnerability Backlogs: Why Exposure, Not Volume, Should Drive Security Priorities
Critical Infrastructure
AI-Assisted SOC
Insights
AI-Assisted SOC Operations: Why Automation Without Governance Increases Risk
Cloud
Hybrid and multi-cloud governance framework showing unified observability and cost control
Insights
Hybrid & Multi-Cloud Optimisation: Why Resilience Is a Governance Problem, Not a Cloud Problem
Network
Insights
Operational Resilience: Why Blast Radius Matters More Than Uptime
ValidPro®
Enterprise carriage resilience framework showing diverse physical network paths and carrier independence
Insights
Carriage: the hidden foundation of enterprise resilience
General
AI-native foundations including resilient connectivity, hybrid cloud platforms, and security governance
Insights
AI-Native Foundations: The New Core of Enterprise Resilience
Network
SD-WAN performance dashboard showing Day 2 optimisation and application traffic visibility.
Insights
SD-WAN After Go-Live: Why Optimisation Is Where Resilience Is Won or Lost
General
AI experience design and the balance between automation and intent
Insights
Just Because You Can Doesn’t Mean You Should
General
Human-Led AI Cyber Security
Insights
Human-Led, AI-Assisted Security
Critical Infrastructure
Critical Infrastructure Self-Custody
Insights
Taking Back the Keys: Why Self-Custody Will Define Critical Infrastructure Security in 2026
General
Chief Integration Officer Role
Insights
The Rise of the “Chief Integration Officer”
Network
AI-Native Networks for Retail
Insights
Retail’s Experience Problem: Why AI-Native Networks Are Now a Competitive Advantage
Network
Whitepapers
Part 3: Implementing multi-layer visibility over your network and beyond
Network
Whitepapers
Part 2: Creating a robust network starts with robust security
Network
Whitepapers
Part 1: Building a resilient network for your business
Network
Checklist
AI-Native Network Readiness Checklist
Network
Guides and Playbooks
The Executive Guide to Experience-First Networking
Education
Experience-First Networking
Insights
Experience-First Networking: Why User Experience Is the New KPI for Modern Networks
Network
AI-Native Networking for IT Operations
Insights
From Firefighting to Forward Momentum: How AI-Native Networking Frees IT Teams
Network
AI-Native Networking
Insights
The Shift: Why AI-Native Networking Has Become a Business Imperative
Critical Infrastructure
AI in OT: Building Foundations for Autonomous Industrial Systems
Insights
AI Meets OT: Orro’s Perspective on Autonomous Industrial Systems
Critical Infrastructure
Operational Resilience Starts at the Edge
Insights
Operational Resilience Starts at the Edge
Critical Infrastructure
OT Security
Insights
Why OT Security Is the New Frontline for National Resilience
Critical Infrastructure
OT security
Insights
When OT Gets Hacked, People Get Hurt 
Critical Infrastructure
Whitepapers
The OT Cyber Resilience Action Plan
Cyber
cyber security
Insights
Threat Hunt: Scattered Spider
Critical Infrastructure
What the ACSC Cyber Threat Report Means for OT Operators
Insights
What the ACSC Cyber Threat Report Means for OT Operators 
Critical Infrastructure
Guides and Playbooks
SOCI at a Glance: A Practical Guide for OT Leaders
Critical Infrastructure
Guides and Playbooks
The IT vs. OT Playbook: A Guide to Productive Collaboration
Cyber
Guides and Playbooks
Navigating the NDB Scheme: A Guide to Data Breach Reporting in Australia

Stay Updated with Orro

To receive our case studies, brochures and other documents as they become available, please register your email below.
OneTouch Login