Over 650K harmful domains crafted to mimic ChatGPT.

January 2, 2024
1 min read

Multiple malicious domains registered to resemble ChatGPT have been discovered by cybersecurity researchers at ESET. Hackers are exploiting the credibility of the ChatGPT model to deceive users into trusting fraudulent websites. They are using the model’s reputation to trick individuals into revealing sensitive information or downloading malicious content. The Russian ransomware group Cl0p recently launched a massive campaign using a zero-day vulnerability in MOVEit, and they are now leaking data on the open web if the ransom isn’t paid. The FBI has noted that ransomware attacks are evolving with multi-variant attacks and the use of wipers following data theft and encryption. Cybersecurity researchers have also found and disabled the Mozi botnet, which had been one of the largest in the world for three years. Android devices are being targeted for DDoS attacks by the new threat Android/Pandora. Insecure handling of OpenAI API keys and the use of Android spyware are also significant threats. Additionally, there has been a surge in three-year-old JS/Agent and persistent Magecart attacks on unpatched websites. Cryptostealers, such as Lumma Stealer, are also increasing in prevalence, targeting crypto wallets. It is essential for developers and admins to implement better security measures to prevent these threats.

Latest from Blog

Top VPN’s privacy claims confirmed by independent auditors

TLDR: Independent auditors from Deloitte Romania confirmed CyberGhost VPN’s privacy claims through a detailed audit of their systems. Auditors found that CyberGhost’s no-logs infrastructure works as expected, ensuring user data privacy. Independent

MediSecure hacked with massive ransomware data breach

Summary of ‘MediSecure hit by large-scale ransomware data breach’ TLDR: MediSecure, an Australian prescriptions provider, was hit by a large-scale ransomware attack. The incident is believed to have originated from one of

Equalizing cybersecurity for all

TLDR: A discussion on how organizations can enhance their cybersecurity posture with Blumira’s automated threat monitoring, detection, and response solutions. Blumira is working to lower the barrier to entry in cybersecurity for