Category: security
Modems used in many industrial IoT sectors could be easily hacked
Modems used in many industrial Internet of Things (IoT) devices can easily be hacked, allowing threat actors root access, remotely and without authentication. The result could be highly disruptive, as many industries rely on IoT devices and other internet-connected sensors for proper operations of entire facilities. A report from cybersecurity…
Read More
LLM services are being hit by hackers looking to sell on private info
Using cloud-hosted large language models (LLM) can be quite expensive, which is why hackers have apparently begun started stealing, and selling, login credentials to the tools. Cybersecurity researchers Sysdig Threat Research Team recently spotted one such campaign, dubbing it LLMjacking. In its report, Sysdig said it observed a threat actor…
Read More
A new Spectre-esque cyberattack has been found — Intel CPUs under attack once again by encryption-cracking campaign
Academic researchers from multiple universities recently discovered a new Spectre-like method of extracting secrets from modern Intel processors. However, Intel says that the original Spectre mitigation fixes these flaws, too. A group of researchers from the University of California San Diego, Purdue University, UNC Chapel Hill, Georgia Institute of Technology,…
Read More
Monday.com removes feature after it was abused in phishing attacks
Popular project management and collaboration tool Monday.com was forced to disable one of its features after it was abused by a threat actor to send out phishing emails. The “Share Update” feature allows users to share real-time updates, progress, or important information with team members, or stakeholders. Users can post…
Read More
Nearly a million victims hit by massive BogusBazaar campaign — credit card details stolen, but here’s how to stay safe
Almost a million people around the world have fallen victim to a highly organized fraud campaign, which scammed them out of some $50 million in the past couple of years. According to a report from SRLabs, a group of cyber-criminals, supported by a wider network of affiliates, were organized into…
Read More
Boeing says it refused to pay massive ransomware demand
Boeing has revealed it refused to pay a $200 million ransom demand from ransomware hackers who stole a tranche of sensitive data in 2023. The US Department of Justice recently unsealed an indictment against one Dmitry Yuryevich Khoroshev, who is being accused of being the one to develop and maintain…
Read More