Cybercriminals are targeting vulnerable Docker servers by deploying two containers: a standard XMRig miner and the 9Hits viewer application—an automated traffic exchange system. Cado Security researchers have discovered a new campaign targeting vulnerable Docker servers, deploying two containers – a regular XMRig miner and the 9hits viewer application. This is the first documented case of malware deploying the […]
Jan 18, 2024NewsroomSupply Chain Attacks / AI Security Continuous integration and continuous delivery (CI/CD) misconfigurations discovered in the open-source TensorFlow machine learning framework could have been exploited to orchestrate supply chain attacks. The misconfigurations could be abused by an attacker to “conduct a supply chain compromise of TensorFlow releases on GitHub and PyPi by compromising […]
Three-quarters (75%) of organizations suffered at least one ransomware attack last year, according to Veeam’s Data Protection Trends Report 2024. The researchers showed that more organizations got hit four or more times in 2023 (26%) than those who said they didn’t experience any ransomware attacks. Speaking during a virtual pre-briefing, Jason Buffington, VP, Market Strategy […]
The Russia-linked threat actor known as COLDRIVER has been observed evolving its tradecraft to go beyond credential harvesting to deliver its first-ever custom malware written in the Rust programming language. Google’s Threat Analysis Group (TAG), which shared details of the latest activity, said the attack chains leverage PDFs as decoy documents to trigger the infection […]
The vulnerability affects various GPU products, with AMD and Apple planning mitigations, and Imagination and Qualcomm issuing fixes. Nvidia and Arm are reportedly unaffected.
Artificial Intelligence & Machine Learning , Government , Industry Specific ChatGPT Maker Wants to Deter Use of AI in Online Election Misinformation Campaigns Chris Riotta (@chrisriotta) • January 17, 2024 OpenAI announced a series of steps to combat election misinformation on Jan. 15, 2024. (Image: Shutterstock) ChatGPT maker OpenAI is racing to deter […]
Pro-Russia group hit Swiss govt sites after Zelensky visit in Davos Pierluigi Paganini January 17, 2024 Switzerland believes that the attack claimed by pro-Russian group NoName that hit the government websites is retaliation for Zelensky’s presence at Davos. Switzerland believes that the cyberattack carried out by pro-Russia group NoName disrupted access to some government websites, following […]
Over the past year we’ve seen Uber’s former chief security officer convicted in federal court for mishandling a data breach, a federal regulator charge SolarWinds’ security chief with allegedly misleading investors prior to its own cyberattack and new regulations that compel companies to publicly reveal materially impactful data breaches within four business days. It might […]
One of Taiwan’s biggest semiconductor manufacturers has fallen victim to a cyberattack, supposedly carried out by the notorious LockBit ransomware gang. The hackers posted a threatening message on Foxsemicon’s website, stating that they had stolen its customers’ personal data and would publish it on their darknet website if the company refused to pay. “Keep in […]