Recent Security News
-
What is Exposure Management and How Does it Differ from ASM?
March 5, 2024 at 06:45AM Startups and mid-market businesses heavily rely on cloud services, leading to a complex and distributed attack surface that’s challenging to monitor and secure. Exposure management in cybersecurity aims to provide visibility and prioritize vulnerabilities to reduce business risks. Intruder offers automated vulnerability management to discover and prioritize weaknesses across the…
-
Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets
March 5, 2024 at 06:45AM Group-IB findings show over 225,000 compromised OpenAI ChatGPT credentials up for sale on underground markets. The credentials were linked to LummaC2, Raccoon, and RedLine malware, with a 36% increase in infiltrated hosts between June and October 2023. Nation-state actors are using AI and large language models for cyber attacks, posing…
-
Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes
March 5, 2024 at 05:46AM TA577 threat actor employs ZIP archive attachments in phishing emails to obtain NTLM hashes, facilitating sensitive info gathering and follow-on activities. Delivery of the phishing waves on Feb 26 and 27, 2024, targeted hundreds of global organizations through thread hijacking technique. The actor aims to capture NTLMv2 Challenge/Response pairs for…