Coffee County in Georgia has been hit by a cyberattack, reportedly leading to its connection to the state's voter registration system being severed. In a statement, the Office of Coffee County Board of Commissioners said the Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA) informed the County of unusual cyber activity on its IT infrastructure on April 15, 2024.

Cisco's Talos is warning that a threat actor has been using multiple information stealers to harvest credentials and financial data from users worldwide. The threat actor is called CoralRaider and has been active since at least 2023. The threat actor is likely of Vietnamese origin and was previously seen targeting users in various Asian countries. The researchers warned of CoralRaider's use of a customized variant of QuasarRAT dubbed RotBot and the XClient stealer to target financial and login information and steal social media accounts, including business and advertising accounts.

DARPA recently announced that an AI test pilot has successfully flown a jet fighter in dogfights against human opponents. It's the latest development for DARPA's Air Combat Evaluation program, which is trying to develop aerospace AI agents that can be trusted to perform safely. The USAF and DARPA started conducting X-62A test flights under AI control in December 2022, logging 17 hours by the time the program was announced in early 2023.

A multi-university and industry research team led by computer scientists at the University of California, San Diego, discovered two novel attacks targeting the conditional branch predictor in high-end Intel processors that could compromise billions of processors being used today. They found an attack that is the first to target a feature in the branch predictor known as the Path History Register (PHR), which tracks branch order and branch addresses. This attack exposes more information with greater precision than previous attacks that lacked branch predictor structure insight.

The US Federal Trade Commission (FTC) recently announced that it will send a total of $5.6m in refunds to customers of Ring, a home camera provider, due to a settlement with Ring over security and privacy failings. Ring, which was bought by tech giant Amazon in 2018, reached a settlement with the FTC in 2023 over charges that the company allowed employees and contractors to access consumers’ private videos and failed to implement security protections, enabling hackers to take control of consumers’ accounts, cameras, and videos.

A team of researchers from Florida International University's (FIU) Cyber-Physical Systems Security Lab, in collaboration with Google Senior Research Scientist Guliz Seray Tuncay, delved into how hackers can gain access to a user's computer files via the File System Access Application Programming Interface (API), which allows web applications in modern browsers to interact with users' local file systems. The threat affects Google Chrome and Microsoft Edge browsers, but not Apple Safari or Mozilla Firefox.

As reported by security researcher "3xp0rt," a hacker claiming to be the creator of "HelloKitty" ransomware has rebranded the gang as "HelloGookie." HelloKitty is known for hacking the game company CD Project Red in 2021 and stealing the source code for Cyberpunk 2077, Witcher 3, and Gwent. The threat actor debuted with a massive data dump on a new dark web website. HelloGookie uploaded a 750GB archive with Witcher 3 builds and Cyberpunk 2077 source code. This article continues to discuss the rebranding of the HelloKitty ransomware.