In recent years, the dark web has witnessed a significant increase in discussions surrounding the illicit use of ChatGPT and other Large Language Models (LLMs). According to the findings of Kaspersky’s Digital Footprint Intelligence service in 2023, security researchers have observed a notable surge in such conversations. This article will delve into the ongoing interest cybercriminals have shown in exploiting
In recent times, security analysts at Intrinsic made a startling discovery – the emergence of a dangerous ransomware strain called ThreeAM (aka 3 AM, ThreeAM time) that has been actively targeting small and medium-sized companies. This article delves into the various characteristics, tactics, and impacts of ThreeAM ransomware, shedding light on the evolving threat landscape and the need for proactive
As the popularity of communication apps continues to rise, so does the concern over the exploitation of their vulnerabilities. In particular, hackers are increasingly targeting WhatsApp, seeking unauthorized access to user data, messages, and sensitive information. This article delves into the potential consequences of these flaws, highlights a recent discovery of a WhatsApp privacy flaw, and explores the underlying mechanisms
In a concerning turn of events, AerCap, one of the world’s largest owners of commercial aircraft and aviation leasing providers, has fallen victim to a ransomware attack. This incident marks the fourth time in the past six months that the aviation industry has been targeted by cybercriminals. The Irish-based company filed a disclosure notice with the US Securities and Exchange
France’s data protection watchdog, the Commission nationale de l’informatique et des libertés (CNIL), has imposed a hefty fine of 10 million euros on Yahoo for its failure to respect users’ preferences regarding internet-tracking cookies. The fine comes after receiving several complaints and conducting extensive investigations to determine the extent of the violations. Yahoo’s non-compliance Despite the presence of a button
In recent years, cyber espionage has become a significant concern for governments and organizations worldwide. A recent revelation by cybersecurity firm Mandiant, part of Google Cloud, has shed light on the exploits of a Chinese cyber espionage group targeting a zero-day vulnerability in VMware vCenter Server. This article provides an in-depth analysis of the vulnerability, the attacker’s tactics and techniques,
Coinbase, one of the largest cryptocurrency exchanges in the United States, has voiced its criticism against the US Treasury’s proposed rulemaking on cryptocurrency mixing. In its official comment, Coinbase argued that the proposed rules fail to effectively address regulatory gaps while placing unnecessary burdens on crypto platforms. Let’s delve into Coinbase’s objections and proposed solutions in detail. Inefficiency of reporting
The Medibank data breach, which affected 9.7 million individuals, has prompted the Australian government to take action against the cybercriminal responsible for the incident. In a significant move, the government has publicly named Aleksandr Ermakov, a Russian national, as the perpetrator and has imposed cyber sanctions under the Australian Autonomous Sanctions Act 2011. This article delves into the details of
In today’s digital world, cookies play a vital role in modern web analytics, providing valuable insights into user behavior and preferences. However, with the increasing focus on data privacy and protection, businesses are now required to obtain explicit user consent before injecting cookies into their browsers. Reflectiz, a leading website security company, recently conducted a case study highlighting how their
Bluetooth technology has revolutionized how we connect and interact with our devices. However, recent discoveries have shed light on the vulnerabilities that exist within this wireless communication protocol. Multiple operating systems, including Android, Linux, macOS, iOS, and Windows, have been found to be susceptible to unauthorized access by hackers. These vulnerabilities pose a significant risk to the security and privacy
Language models (LMs) have gained significant traction across various industries and use cases. From customer service chatbots to content creation tools, LMs offer unprecedented capabilities in generating human-like text. However, along with their remarkable potential, LMs also bring to the forefront several security concerns. This article explores the risks associated with LMs and provides strategies for organizations to enhance their
The Gamee blockchain gaming project, with backing from Animoca Brands, has recently confirmed a major exploit in its Gamee (GMEE) token contracts on the Polygon network. This breach resulted in unauthorized access to the token contracts, leading to the theft of a staggering 600 million tokens worth $15 million. The attacker took advantage of various decentralized exchanges (DEXs) to swap
