Month: April 2023

AI and machine learning are hot topics in the technology industry, especially as ChatGPT and other generative AI take over headlines. So, it’s no surprise AI and ML were featured heavily at RSA Conference 2023. One session, “Hardening AI/ML Systems — The Next Frontier of Cybersecurity,” featured a panel discussion about why now is the
Weekly cyber-attacks have increased worldwide by 7% in Q1 2023 compared to the same period last year, with each firm facing an average of 1248 attacks per week. The figures come from Check Point’s latest research report, which also suggests that the education and research sector experienced the highest number of attacks, rising to an
by Paul Ducklin Researchers at dark web monitoring company Cyble recently wrote about a data-stealing-as-a-service toolkit that they found being advertised in an underground Telegram channel. One somewhat unusual aspect of this “service” (and in this context, we don’t mean that word in any sort of positive sense!) is that it was specifically built to
The importance of understanding – and prioritizing – the privacy and security implications of large language models like ChatGPT cannot be overstated Thousands of security professionals descended on San Francisco this week to attend RSA Conference, the world’s leading gathering of the security community. What was the hottest topic at the event? You guessed it
Apr 29, 2023Ravie LakshmananHealthcare / Cybersecurity The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released an Industrial Control Systems (ICS) medical advisory warning of a critical flaw impacting Illumina medical devices. The issues impact the Universal Copy Service (UCS) software in the Illumina MiSeqDx, NextSeq 550Dx, iScan, iSeq 100, MiniSeq, MiSeq, NextSeq 500, NextSeq
ESET Research uncovers a campaign by the APT group known as Evasive Panda targeting an international NGO in China with malware delivered through updates of popular Chinese software ESET researchers have discovered a campaign that we attribute to the APT group known as Evasive Panda, where update channels of legitimate applications were mysteriously hijacked to
Apr 28, 2023Ravie LakshmananData Security / Malware A significant number of victims in the consumer and enterprise sectors located across Australia, Japan, the U.S., and India have been affected by an evasive information-stealing malware called ViperSoftX. ViperSoftX was first documented in 2020, with cybersecurity company Avast detailing a campaign in November 2022 that leveraged the
Founded in 2014, Blossom Finance was first intended for Muslim entrepreneurs in the United States. The microfinancing platform connects investors with small businesses using mudarabah, a shariah-compliant profit-sharing agreement. But founder Matthew Joseph Martin soon realized that the startup, backed by investors like Boost VC and Tim Draper, was serving a relatively niche market in
SAN FRANCISCO — IBM on Monday launched QRadar Suite, a subscription offering that combines AI-enhanced versions of IBM’s preexisting threat detection and response portfolio into one broad product. The product is a compilation of QRadar Log Insights and new versions of QRadar SIEM, QRadar EDR and XDR, and QRadar SOAR. Log Insights, a log management
Microsoft has claimed that recent attacks exploiting two vulnerabilities in the PaperCut print management software are likely the result of a Clop ransomware affiliate. The two bugs in question are CVE-2023–27350 – a critical unauthenticated remote code execution flaw – and CVE-2023–27351 – a high severity unauthenticated information disclosure flaw. The former has a CVSS
Apr 27, 2023Ravie LakshmananLinux / Endpoint Security The threat actors behind RTM Locker have developed a ransomware strain that’s capable of targeting Linux machines, marking the group’s first foray into the open source operating system. “Its locker ransomware infects Linux, NAS, and ESXi hosts and appears to be inspired by Babuk ransomware’s leaked source code,”
The U.K.’s Competition and Markets Authority (CMA) has confirmed that it intends to block Microsoft’s megabucks Activision acquisition, concluding that such a merger would create “…the most powerfuloperator” in the cloud gaming market. The CMA noted that with a current share of 60-70%, acquiring Activision’s portfolio of games would “substantially weaken competition” in the market.
Security researchers have discovered a high-severity vulnerability in the Service Location Protocol (SLP) which could be exploited to launch among the largest DDoS amplification attacks ever seen. BitSight and Curesec said the CVSS 8.6-rated bug CVE-2023-29552 could enable attackers to launch reflective amplification attacks with a factor as high as 2200 times. SLP was created
Apr 26, 2023Ravie LakshmananServer Security / Vulnerability The maintainers of the Apache Superset open source data visualization software have released fixes to plug an insecure default configuration that could lead to remote code execution. The vulnerability, tracked as CVE-2023-27524 (CVSS score: 8.9), impacts versions up to and including 2.0.1 and relates to the use of