Category: AI in news
Apr 09, 2024NewsroomMalware / Cryptojacking Cybersecurity researchers have discovered an intricate multi-stage attack that leverages invoice-themed phishing decoys to deliver a wide range of malware such as Venom RAT, Remcos RAT, XWorm, NanoCore RAT, and a stealer that targets crypto wallets. The email messages come with Scalable Vector Graphics (SVG) file attachments that, when clicked,…
Read More
Apr 09, 2024NewsroomBotnet / Vulnerability Threat actors are actively scanning and exploiting a pair of security flaws that are said to affect as many as 92,000 internet-exposed D-Link network-attached storage (NAS) devices. Tracked as CVE-2024-3272 (CVSS score: 9.8) and CVE-2024-3273 (CVSS score: 7.3), the vulnerabilities impact legacy D-Link products that have reached end-of-life (EoL) status.…
Read More
Diversity Cyber Council The nonprofit Diversity Cyber Council focuses on serving underrepresented groups within the tech industry. The organization’s mission revolves around facilitating training, education, and staffing opportunities to create a sustainable and inclusive talent pool for the cybersecurity workforce. The council aims to foster inclusion and representation within the tech industry through training, mentoring,…
Read More
Apr 08, 2024NewsroomSoftware Security / Cybersecurity Google has announced support for what’s called a V8 Sandbox in the Chrome web browser in an effort to address memory corruption issues. The sandbox, according to V8 Security technical lead Samuel Groß, aims to prevent “memory corruption in V8 from spreading within the host process.” The search behemoth…
Read More
The ransomware industry surged in 2023 as it saw an alarming 55.5% increase in victims worldwide, reaching a staggering 5,070. But 2024 is starting off showing a very different picture. While the numbers skyrocketed in Q4 2023 with 1309 cases, in Q1 2024, the ransomware industry was down to 1,048 cases. This is a 22%…
Read More
Upon filtering out the duplicate records, the total accounts breached amounted to nearly 8.5 million (specifically 8,460,182). USDoD is a repeat federal offender This isn’t the first time USDoD has sneaked into a federal system. Previously known as “NetSec” on RaidForums, USDoD has gained notoriety since the threat actor’s “#RaidAgainstTheUS” campaign targeting the US Army…
Read MoreSecurity Vulnerability of HTML Emails This is a newly discovered email vulnerability: The email your manager received and forwarded to you was something completely innocent, such as a potential customer asking a few questions. All that email was supposed to achieve was being forwarded to you. However, the moment the email appeared in your inbox,…
Read More
Apr 08, 2024NewsroomCybersecurity / Malvertising A new phishing campaign has set its eyes on the Latin American region to deliver malicious payloads to Windows systems. “The phishing email contained a ZIP file attachment that when extracted reveals an HTML file that leads to a malicious file download posing as an invoice,” Trustwave SpiderLabs researcher Karla…
Read More
Similar to the Exchange logging situation, unless you have the proper licenses in place, you will need to rely on trial versions of Purview in order to investigate and/or remove data from the Copilot infrastructure that you didn’t intend to have indexed. Make sure AI testing and policies are in place My recommendation in regard…
Read More
French officials have sounded the alarm, accusing Russia of orchestrating a disinformation and influence operation designed to disrupt the 2024 Olympic Games in Paris. This accusation comes at a time of heightened geopolitical tensions due to Russia’s ongoing invasion of Ukraine. The French government’s accusations center on a network of fake social media accounts believed…
Read More