Author: nlqip
Jun 25, 2024NewsroomWordPress / Web Security Multiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of performing arbitrary actions. “The injected malware attempts to create a new administrative user account and then sends those details back to the attacker-controlled server,” Wordfence security…
Read More
Jun 25, 2024NewsroomCyber Crime / Financial Fraud Four Vietnamese nationals with ties to the FIN9 cybercrime group have been indicted in the U.S. for their involvement in a series of computer intrusions that caused over $71 million in losses to companies. The defendants, Ta Van Tai (aka Quynh Hoa and Bich Thuy), Nguyen Viet Quoc…
Read More
CISA is warning that its Chemical Security Assessment Tool (CSAT) environment was breached in January after hackers deployed a webshell on its Ivanti device, potentially exposing sensitive security assessments and plans. CSAT is an online portal that is used by facilities to report their possession of chemicals that could be used for terrorism to determine…
Read More
The shift to digital platforms has led to a surge in identity theft fueled by cyber-attacks. Cybercriminals use AI to enhance these threats, employing deepfakes and AI-powered password cracking. Data breaches are on the rise, with the average cost reaching $4.45 million in 2023. Cybercriminals are increasingly targeting digital account openings and consumer identity credentials,…
Read More
Google is testing a new feature called “Digital Credential API” for Chrome on Android that allows websites to securely request identity information, such as driver’s licenses and passports, stored in mobile wallets. According to Google’s official documentation, the Identity Credential APIs provide an interface to a secure store that holds identity documents. These documents can be…
Read More
A top Nvidia partner says the hiring of Howard Wright—a former NBA player—as Nvidia’s vice president of startup ecosystem is a ‘byproduct of the amount of well-funded [generative AI] startups’ entering the space and reflects the importance of those companies to the AI chip giant. Nvidia has hired Amazon Web Services executive and former NBA…
Read More
‘We’ve really focused on tools that MSPs need but also we’re looking at line of business horizontally,’ says Ryan Burton, vice president of marketplace vendor strategy for Pax8. ‘That is sales and marketing, finance, HR … things that go across customer segments.’ Five new vendors have hit Pax8’s marketplace just as the Denver-based distributor is…
Read More
A novel command execution technique dubbed ‘GrimResource’ uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw to perform code execution via the Microsoft Management Console. In July 2022, Microsoft disabled macros by default in Office, causing threat actors to experiment with new file types in phishing attacks. The attackers first switched to ISO…
Read More
By linking its AI monitoring tools – part of the New Relic Observability Platform – with Nvidia NIM, organizations can gain visibility into the “black box” operations of an AI application stack and improve AI operational performance and ROI. New Relic has integrated its observability software with Nvidia’s NIM inference microservices, making it possible to…
Read More
Four Vietnamese nationals linked to the international cybercrime group FIN9 have been indicted for their involvement in a series of computer intrusions that caused over $71 million in losses to companies in the U.S. The defendants, identified as Ta Van Tai, Nguyen Viet Quoc, Nguyen Trang Xuyen, and Nguyen Van Truong, carried out their cybercrimes from May…
Read More