Blog
-
Another Loss of Source Code for Microsoft; January Attack by Russian Hackers Was Worse Than Previously Reported
The January attack on Microsoft was worse than initially reported, with an update from the company indicating the Russian hackers may have stolen source code and accessed private email exchanges between corporate accounts and customers.
-
Theoretical GenAI Worm Attack Raises Alarms; Self-Replicating Malware Shown to be Viable Against ChatGPT
Theoretical GenAI attack can corrupt the databases of the likes of ChatGPT and Gemini Pro, causing them to pass on a form of self-replicating malware that can be used to send emails and steal files.
-
National Security Risks Prompt Biden Admin Investigation of Chinese Smart Cars
Chinese smart cars pose a variety of potential national security risks, according to the Biden administration. The administration has expressed concern about Chinese smart cars being used as tools of international espionage and that a mass remote shutdown of electric vehicles could be used to cause destruction.
-
OpenAI Says That New York Times Hacked ChatGPT to Bolster Copyright Lawsuit
OpenAI contends that NYT essentially hacked ChatGPT to defend its copyright lawsuit. It notes that the paper may have had to use thousands to tens of thousands of prompts to get the chatbot to “hallucinate” part of an existing article.
-
LockBit Ransomware Data Leak Site Restored as Group Remains Defiant
The LockBit ransomware group has set up a new data leak site and also posted a long and defiant rant indicating that it intends to keep operating and that its leader, who goes by “LockBitSupp,” is not working with law enforcement as was previously reported.
-
Document Leak Reveals Private Firm Used by State-Sponsored Chinese Hackers Breached Governments and Private Organizations in 20 Countries
China’s already vast teams of state-sponsored hackers are getting a boost from private outfits, new documents reveal. A document leak from one of these firms, one of many that compete for government contracts, shows how the Chinese hackers target overseas organizations.
-
LockBit Ransomware Group on the Ropes After Law Enforcement Seizures
An international law enforcement action called “Operation Chronos” has seized servers, dark web assets, crypto wallets and decryption keys, leaving the LockBit ransomware group limited in its capacity to do harm.
-
A Record Year for Ransomware Payments as Big Gangs Rack Up Big Scores
There was some hope that ransomware was finally on the wane as 2022 closed, but a Chainalysis study indicates that ransomware payments in cryptocurrency topped $1 billion for the first time in 2023 as there was even more activity than in the peak pandemic years.
-
“First of its Kind” Trojan Malware Targets Phone Facial Data to Make Deepfakes for Bank Account Access
The ultimate purpose of the GoldPickaxe trojan malware is to defeat the facial recognition access systems now used by some banks to secure mobile logins. There are several different techniques for acquiring facial data, but it can also intercept SMS messages and steal documents.
-
OpenAI Tools Providing State-Sponsored Hacking Groups With Some “Incremental” New Abilities
The new report is a joint effort from Microsoft and OpenAI, which says that it bans the accounts of state-sponsored hacking groups upon discovery. It also says that these groups are getting limited utility from OpenAI tools, but that most of the major players have nevertheless been using them.