binarypublishMultiple malicious domains registered to resemble ChatGPT have been discovered by cybersecurity researchers at ESET. Hackers are exploiting the credibility of the ChatGPT model to deceive users into trusting fraudulent websites. They are using the model’s reputation to trick individuals into revealing sensitive information or downloading malicious content. The Russian ransomware group Cl0p recently launched a massive campaign using a zero-day vulnerability in MOVEit, and they are now leaking data on the open web if the ransom isn’t paid. The FBI has noted that ransomware attacks are evolving with multi-variant attacks and the use of wipers following data theft and encryption. Cybersecurity researchers have also found and disabled the Mozi botnet, which had been one of the largest in the world for three years. Android devices are being targeted for DDoS attacks by the new threat Android/Pandora. Insecure handling of OpenAI API keys and the use of Android spyware are also significant threats. Additionally, there has been a surge in three-year-old JS/Agent and persistent Magecart attacks on unpatched websites. Cryptostealers, such as Lumma Stealer, are also increasing in prevalence, targeting crypto wallets. It is essential for developers and admins to implement better security measures to prevent these threats.
Over 650K harmful domains crafted to mimic ChatGPT.
Latest from Blog
Moody’s: Cyber insurance competition rises, prices fall
Moody’s Ratings: Cyber Insurance Competition Up, Prices Down TLDR: Cyber insurance market poised for growth due to increased demand. New players entering the market may decrease premiums. Article Summary The cyber insurance
Syxsense acquires Absolute to beat cyber vulnerabilities with strength
TLDR: Absolute Security has acquired Syxsense to enhance its cyber resilience platform. The acquisition will simplify patching and remediation issues through automation. Article Summary: Absolute Security has acquired Syxsense to improve its
Apache’s OFBiz gets new fix for RCE exploits
TLDR: Apache released a security update for OFBiz to patch vulnerabilities, including a bypass of patches for two exploited flaws. The bypass, tracked as CVE-2024-45195, allows unauthenticated remote attackers to execute code
Feds caution: Russia-linked CVE threats target essential infrastructure
TLDR: Threat groups linked to Russia’s military intelligence service are targeting critical infrastructure in various sectors. The attackers have defaced websites, scanned infrastructure, and leaked stolen data. Summary: Federal authorities in the
Allies blame Russian military for destructive cyber-attacks
TLDR: US and allies accuse Russian military of launching cyber-attacks targeting critical infrastructure for espionage and sabotage purposes. Unit 29155, a cyber group affiliated with the Russian military, is responsible for deploying
Brazil bans X, and Tom Alcock on cybersecurity talent hunt
TLDR: Key Points: Brazil banned X (Twitter) due to misinformation during the presidential election. Tom Alcock, founder of Code Red Partners, discussed the importance of cybersecurity talent recruitment beyond traditional methods. In
Palo Alto Networks acquires IBM’s QRadar Assets in SIEM victory
Article Summary TLDR: Palo Alto Networks has acquired IBM’s QRadar SaaS assets to enhance its cybersecurity capabilities. The integration of QRadar’s assets into Palo Alto Networks’ Cortex XSIAM platform will lead to
NIST CSF 20: Secure your cyber world with confidence framework
TLDR: NIST has released Version 2.0 of its Cybersecurity Framework (CSF) with an enhanced focus on Privileged Access Management (PAM) and Identity & Access Management (IAM). Key updates in NIST CSF 2.0
NSFOCUS launches digital shield for superior cyber defense capabilities
TLDR: NSFOCUS has introduced a Digital Risk Protection Service (DRPS) to protect against evolving threats like fraud and data breaches in the digital landscape. The service offers features such as monitoring for
Russian military hackers behind US attacks according to NSA Report
TLDR: A recent NSA report has attributed U.S. cyber attacks since 2020 to Russian military hackers. The hackers are affiliated with the Russian Unit 29155 and have targeted critical infrastructure globally. Summary: