December 12, 2024 at 02:42PM The U.S. Justice Department indicted 14 North Korean nationals for a scheme posing as remote IT workers to commit sanctions violations, fraud, and identity theft, allegedly earning $88 million over six years. They used stolen identities and advanced tactics to access U.S. companies, highlighting the threat of North Korean cyberattacks. … Read more
December 10, 2024 at 01:47PM Deepfakes pose a significant threat to Scottish Parliamentary recordings and live streams, as highlighted by researchers from the University of Edinburgh. They identified vulnerabilities, including hijacked streams and manipulated videos. Currently, the Parliament lacks preventative measures, but proposed solutions include enhanced authentication and a communication support team for targeted members. … Read more
December 9, 2024 at 08:16AM This week’s cyber recap highlights hacker stealing infrastructures and deploying AI-driven scams. Significant events include the arrest of a Scattered Spider member, turmoil caused by malicious Android malware, and law enforcement actions disrupting online fraud networks. Cybersecurity firms stress vigilance against evolving threats and emerging vulnerabilities in popular software. ### … Read more
December 7, 2024 at 03:57AM Cybersecurity researchers have identified a scam campaign using fake video conferencing apps to distribute the Realst info stealer, targeting Web3 professionals. Operatives create fraudulent companies using AI to enhance legitimacy, tricking victims into downloading malware disguised as meeting software, ultimately aiming to steal sensitive data, including cryptocurrency information. ### Meeting … Read more
November 22, 2024 at 01:58AM Researchers found two malicious packages on PyPI, impersonating AI models to deploy the JarkaStealer malware. Uploaded in November 2023, the packages had 1,748 and 1,826 downloads, respectively. They revealed risks of supply chain attacks, emphasizing caution when using open-source components in development. The packages are now unavailable for download. ### … Read more
November 21, 2024 at 05:50PM StrongDM’s report, “The State of AI in Cybersecurity,” reveals cybersecurity professionals’ concerns over AI-driven threats, with 87% worried about potential attacks. Most believe in the need for heavy regulation (76%) but fear stifling innovation. Only 33% feel very confident in defenses, though many are optimistic about AI enhancing jobs. ### … Read more
November 18, 2024 at 10:05AM The cybersecurity landscape is evolving rapidly, driven by increasing threats and the exploitation of AI by cybercriminals. Companies are significantly raising cybersecurity budgets, yet attacks continue to escalate. As specialized solutions are in demand, companies that harness emerging technologies to enhance security will likely experience substantial growth in the sector. … Read more
November 4, 2024 at 02:40PM Generative AI attacks, including deepfakes, are increasing, with AI-generated text in emails growing to 12%. OWASP published guidance for organizations to strengthen defenses. A deepfake incident during a job interview at Exabeam highlighted vulnerabilities. Experts suggest focusing on tech solutions and robust processes rather than solely training individuals to detect … Read more
November 4, 2024 at 08:22AM OWASP launched new security guidance for managing risks related to large language models and generative AI applications, part of the Top 10 for LLM Application Security Project. Resources include strategies for deepfake defense, AI security best practices, and a landscape guide for security solutions, aimed at enhancing organizational readiness against … Read more
November 4, 2024 at 06:21AM As the holiday season approaches, retailers face increased cyber threats, especially AI-driven attacks. Imperva’s cybersecurity guide highlights issues like business logic abuse, DDoS attacks, bad bots, and API violations. To protect themselves, retailers should enhance their defenses with robust strategies for bot management, DDoS solutions, and API security measures. ### … Read more