Tag: security
Google warns criminals are building and selling illicit AI tools – and the market is growing
AI tools are being purpose built for criminals, new GTIG report finds These tools side-step AI guardrails designed for safety ‘Just-in-time’ AI malware shows how criminals are evolving their techniques Google’s Threat Intelligence Group has identified a worrying shift in AI trends, with AI no longer just being used to…
Read More
Want to know what EU officials are up to? Call a data broker
Journalists used data brokers to track EU Commissioners in their daily lives This used free samples from brokers, with 5,800 location pings This information would be invaluable in espionage campaigns targeting the EU If you’re concerned your phone is collecting outrageous amounts of data which could be used for nefarious…
Read More
Hackers are teaming up with organized crime gangs to steal cargo right from supply chains
Hackers are creating phishing attacks for logistics companies They then gain access and redirect shipments to new destinations Real organized crime gangs lie in wait to steal the rerouted cargo It seems like the obvious evolution of crime in an increasingly online world – but cybercriminals and offline gangs generally…
Read More
One of the most devious malware strains might have been cracked – and it’s all thanks to Gen AI
Check Point used GenAI to semi-automate reverse engineering of the evasive XLoader infostealer AI decrypted code, revealed APIs, and uncovered 64 hidden C2 domains and sandbox evasion tricks XLoader evolved from Formbook; AI boosts analysis speed but doesn’t replace human malware analysts Cybersecurity researchers from Check Point Research may have…
Read More
AMD confirms some Zen 5 CPUs have a worrying security flaw that could put users at risk
AMD Zen 5 chips have a flaw in RDSEED which risks cryptographic key integrity Faulty RDSEED may return zeroes, enabling attackers to reconstruct private keys and break encryption AMD advises fallback to 64-bit RDSEED or software alternatives Some AMD processors, including those built on the latest Zen 5 architecture, carry…
Read More
Microsoft warns a key OpenAI API is being exploited to launch cyberattacks
SesameOp malware uses OpenAI’s Assistants API as a covert command-and-control channel It enables persistent access, runs commands, and exfiltrates data via encrypted API traffic Microsoft urges firewall audits, tamper protection, and endpoint detection to mitigate threats To be able to operate properly, malware needs a way to communicate with its…
Read More