Category: security
AWS customers hit by major cyberattack which then stored stolen credentials in plain sight
Researchers find vulnerabilities in public sites that exposed sensitive information They later discovered a campaign using the flaws to exfiltrate data from “millions of websites” The crooks were selling the data on the dark web for “hundreds of euros” Misconfigured cloud instances have once again been abused to steal sensitive…
Read More
Poker Cheaters Allegedly Use Tiny Hidden Cameras to Spot Dealt Cards
Several recent schemes were uncovered involving poker players at casinos allegedly using miniature cameras, concealed in personal electronics, to spot cards. Should players everywhere be concerned? Source
Read More
QR codes can be used to crack this vital browser security tool
Browser isolation runs all scripts in a remote, or virtual environment, but QR codes still make it through If a device is infected with malware, it can get commands via QR codes, rendering browser isolation useless The method works, but has its limitations Cybersecurity researchers from Mandiant claim to have…
Read More
Microsoft challenges you to hack its LLM email service
Microsoft is offering $10k prize for hackers who can exploit vulnerabilities in its LLM The challenge will focus on prompt injection defenses Software developers and hackers often work together to discover and fix flaws Are you an experienced hacker looking to make a little extra money this Christmas? Well you…
Read More
Popular Python AI library hacked to deliver malware
A PyPI package for an AI model was compromised and used to deliver malware Victims were getting XMRig, a popular cryptominer, installed The attack has since been addressed, but users warned to be on their guard Ultralytics YOLO11, an AI model for computer vision and object detection, was compromised in…
Read More
New domain names such as .shop and .xyz are proving popular for cybercrime
Report finds new generic top-level domains, such as .xyz, have disproportionally more phishing websites Researchers believe it is because they are affordable and come with very few registration requirements More new domains are being announced, making the risk that much greater New forms of domain names, such as .top, .shop,…
Read More