Tag: security
AI models could be hacked by a whole new type of Skeleton Key attacks, Microsoft warns
Microsoft has shared details on a new hacking method which bypasses the security systems baked into AI models and makes them return malicious, dangerous, and harmful content. The researchers call the technique Skeleton Key, and it applies across well-known models including Meta Llama3-70b-instruct (base), Google Gemini Pro (base), OpenAI GPT…
Read More
This dangerous new Mac malware is being spread by Google Ads
Hackers are running malicious Google Ads campaigns targeting victims interested in the new Arc browser, with the aim of installing information-stealing malware on their Mac devices. Cybersecurity researchers from Malwarebytes spotted a new campaign on the Google Ads network, seemingly promoting the new (and quite popular) Arc browser. The campaign…
Read More
TeamViewer says its network was breached — but customer and company data is safe
TeamViewer has warned users it may have suffered a breach, but has reassured it does not appear any company or customer data has been affected. A statement on the TeamViewer Trust Center site stated on June 26, the company detected an “irregularity” in the company’s internal corporate IT environment that…
Read More
An ID verification service for TikTok, Uber and X reportedly left its credentials open for a year
Identity verification company AU10TIX kept a set of admin credentials exposed for more than a year, possibly allowing threat actors to steal its customers’ sensitive data. AU10TIX verifies user identities on behalf of its clients, which include, among others, TikTok, X, and Uber, via selfie pictures and scans of people’s…
Read More
Medusa Android malware returns to target users around the world — here’s how to stay safe
Medusa, an Android banking trojan that had been laying low for roughly a year now, has made a fresh appearance, experts have warned A new, lightweight Medusa variant has been seen being used by multiple threat actors, and targeting victims in numerous countries around the world, noted cybersecurity researchers from…
Read More
Microsoft console files are being exploited to let hackers gain access to private systems
Hackers are now using custom-made MSC files to abuse a known, but unpatched, Windows cross-site scripting (XSS) vulnerability which could allows them to remotely execute malware or malicious code on target devices. Cybersecurity researchers from the Elastic team recently spotted threat actors distributing Microsoft Saved Console (MSC) files, which are…
Read More