News
-
"Biden Administration Limits Commercial Spyware Use in Federal Government"President Joe Biden has signed an executive order prohibiting federal agencies from using commercial spyware that poses a security risk to the US or has already been abused by foreign actors. The executive order, which has been in the works for months,…
-
"Balancing Security Risks and Innovation Potential of Shadow IT Teams"Shadow Information Technology (IT) teams, also known as rogue IT teams, have become more prevalent in recent years because of the rise of cloud-based apps and remote work. This has led to operational stress and security risks within many companies.…
-
"Twitter's Source Code Leak on GitHub a Potential Cyber Nightmare"Based on a DMCA Takedown request filed on March 24, some of Twitter's proprietary source code had been publicly accessible on GitHub for nearly three months. On March 24, GitHub honored a Twitter employee's request to remove "proprietary source code for…
-
"Stealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in Europe"A new phishing campaign is targeting European entities to distribute Remcos RAT and Formbook using DBatLoader, a malware loader. According to Zscaler researchers, the malware payload is delivered through WordPress websites with authorized SSL…
-
"Diffusion Models Can Be Contaminated with Backdoors, Study Finds"In the past year, interest has increased in generative Artificial Intelligence (AI) - deep learning models that can generate text, images, and other forms of content. However, like with every technological breakthrough, generative AI poses new security…
-
"CyLab Researchers Earn NSF CAREER Awards"Three researchers at CyLab, Carnegie Mellon University's security and privacy institute, recently received National Science Foundation (NSF) Faculty Early Career Development Program (CAREER) awards. Wenting Zheng, an assistant professor in the Computer…
-
"Indian Police Charge Gang With Stealing 168M Citizens' Data"Six members of an alleged criminal gang that sold the personal information of 168 million Indian individuals, including defense personnel and government employees, were apprehended by the Indian police. The criminal gang operated under three front…
-
"UK Crime Fighters Wrangle 'Several Thousand' Potential Cyber Criminals in DDoS-For-Hire Honeypot"After falling for a UK law enforcement honeypot operation, thousands of suspected cybercriminals have revealed their identities. The National Crime Agency (NCA) of the UK created a fake Distributed Denial-of-Service (DDoS)-for-hire website that prompted…
-
"Three Variants of IcedID Malware Discovered"Security researchers at Proofpoint have discovered three new variants of the banking Trojan known as IcedID in the wild, featuring a common code base but with several key differences. The first variant is the most commonly observed in the wild and…
-
"Cyberattacks on the High Seas? Norwegian Sailors, Researchers Sound a Warning"Researchers with a seafaring background at the Norwegian University of Science and Technology (NTNU) warn that cyberattacks on ships could have severe real-world consequences. Erlend Erstad, a Ph.D. candidate at NTNU, did not know of any reported safety…
-
"Protecting AI Models from 'Data Poisoning'"Training data sets for deep-learning models include billions of Internet-crawled data samples. Inherent in the arrangement is trust, which looks to be increasingly threatened by a type of cyberattack known as "data poisoning." In this attack, data…
-
"Grim Criminal Abuse of ChatGPT is Coming, Europol Warns"Europol recently warned that criminals are set to take advantage of artificial intelligence like ChatGPT to commit fraud and other cybercrimes. Created by US startup OpenAI, ChatGPT appeared in November and was quickly seized upon by users amazed…