Researchers Test Zero-click Worms that Exploit Generative AI Apps
A new study dubbed ComPromptMized, warns of zero-click worms exploiting generative AI, spreading through systems sans user interaction, and posing data theft risks. Experts stress…
Author: Cybernoz
Pegasus spyware creator ordered to reveal code used to spy on WhatsApp users
A California federal judge has ordered spyware maker NSO Group to hand over the code for Pegasus and other spyware products that were used to…
Cybercriminals Using Novel DNS Hijacking Technique for Investment Scams
Mar 05, 2024NewsroomCybercrime / Malware A new DNS threat actor dubbed Savvy Seahorse is leveraging sophisticated techniques to entice targets into fake investment platforms and…
Derby City Council extends AI project with multi-million deal after saving £200,000 with chatbots
Derby City Council has signed a £7m contract to extend the use of artificial intelligence (AI) copilot technology across more of its services, after the…
TA577 Attacking organizations to Steal NTLM Authentication Data
A cybercriminal threat actor known as TA577 has been identified as employing a new attack strategy to steal NT LAN Manager (NTLM) authentication information. This…
No “Apple magic” as 11% of macOS detections last year came from malware
We’re going to let you in on a little cybersecurity secret… There’s malware on Mac computers. There pretty much always has been. As revealed in…
What is Exposure Management and How Does it Differ from ASM?
Mar 05, 2024NewsroomAttack Surface / Exposure Management Startups and scales-ups are often cloud-first organizations and rarely have sprawling legacy on-prem environments. Likewise, knowing the agility…
Dutch organisations start building a federated European cloud
The European Commission (EC) approved the Project of Common European Interest – Cloud Infrastructure and Services (IPCEI-CIS) programme in late 2023. In this programme, around…
New CHAVECLOAK Banking Trojan Targets Brazilians via Malicious PDFs
Watch out for the new CHAVECLOAK banking Trojan as it spreads its infection through SMS phishing (SMishing), phishing emails, and compromised websites. Cybersecurity researchers at…
Hundreds of orgs targeted with emails aimed at stealing NTLM authentication hashes
A threat actor specializing in establishing initial access to target organizations’ computer systems and networks is using booby-trapped email attachments to steal employees’ NTLM hashes.…
Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes
Mar 05, 2024NewsroomEmail Security / Network Security The threat actor known as TA577 has been observed using ZIP archive attachments in phishing emails with an…
Banning ransomware payments back on the agenda
The topic of whether or not it would be appropriate to enact a legal ban on making or facilitating a ransomware payment is once again…