Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering https://firewall.firm.in/wp-content/uploads/2024/12/rnsomware.png Dec 09, 2024Ravie LakshmananThreat Intelligence / Malware The threat actors linked to the Black Basta ransomware have been observed switching up their social engineering tactics, distributing a different set of payloads such as Zbot and DarkGate since early October 2024. “Users within the target environment will be ...

Hackers Leveraging Cloudflare Tunnels, DNS Fast-Flux to Hide GammaDrop Malware https://firewall.firm.in/wp-content/uploads/2024/12/cyberattack.png Dec 06, 2024The Hacker NewsMalware / Threat Intelligence The threat actor known as Gamaredon has been observed leveraging Cloudflare Tunnels as a tactic to conceal its staging infrastructure hosting a malware called GammaDrop. The activity is part of an ongoing spear-phishing campaign targeting Ukrainian entities since at least early ...

A Guide to Securing AI App Development: Join This Cybersecurity Webinar https://firewall.firm.in/wp-content/uploads/2024/12/ai-apps.png Dec 02, 2024The Hacker NewsAI Security / Data Protection Artificial Intelligence (AI) is no longer a far-off dream—it’s here, changing the way we live. From ordering coffee to diagnosing diseases, it’s everywhere. But while you’re creating the next big AI-powered app, hackers are already figuring out ways to ...

Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested https://firewall.firm.in/wp-content/uploads/2024/12/hackers.png Nov 30, 2024Mohit KumarRansomware / Cybercrime A Russian cybercriminal wanted in the U.S. in connection with LockBit and Hive ransomware operations has been arrested by law enforcement authorities in the country. According to a news report from Russian media outlet RIA Novosti, Mikhail Pavlovich Matveev has been accused of ...

ByteDance seeks $1.1 million damages from intern in AI breach case: Report – ET CISO https://etimg.etb2bimg.com/thumb/msid-115792744,imgsize-15066,width-1200,height=765,overlay-etciso/data-breaches/bytedance-seeks-1-1-million-damages-from-intern-in-ai-breach-case-report.jpg China’s ByteDance is suing a former intern for $1.1 million, alleging he deliberately attacked its artificial intelligence large language model training infrastructure, a case that has drawn widespread attention within China amid a heated AI race. The parent company of TikTok is seeking 8 ...

AI-Powered Fake News Campaign Targets Western Support for Ukraine and U.S. Elections https://firewall.firm.in/wp-content/uploads/2024/11/fakenews.png Nov 29, 2024Ravie LakshmananDisinformation / Artificial Intelligence A Moscow-based company sanctioned by the U.S. earlier this year has been linked to yet another influence operation designed to turn public opinion against Ukraine and erode Western support since at least December 2023. The covert campaign undertaken by Social ...

U.S. Telecom Giant T-Mobile Detects Network Intrusion Attempts from Wireline Provider https://firewall.firm.in/wp-content/uploads/2024/11/t-mobile.png Nov 28, 2024Ravie LakshmananNetwork Security / Cyber Espionage U.S. telecom service provider T-Mobile said it recently detected attempts made by bad actors to infiltrate its systems in recent weeks but noted that no sensitive data was accessed. These intrusion attempts “originated from a wireline provider’s network that was ...

Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks https://firewall.firm.in/wp-content/uploads/2024/11/wordpress.png Nov 26, 2024Ravie LakshmananVulnerability / Website Security Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could allow an unauthenticated attacker to install and enable malicious plugins on susceptible sites and potentially achieve remote code execution. The vulnerabilities, tracked as CVE-2024-10542 and CVE-2024-10781, carry ...

Google’s New Restore Credentials Tool Simplifies App Login After Android Migration https://firewall.firm.in/wp-content/uploads/2024/11/android.png Nov 25, 2024Ravie LakshmananMobile Security / Privacy Google has introduced a new feature called Restore Credentials to help users restore their account access to third-party apps securely after migrating to a new Android device. Part of Android’s Credential Manager API, the feature aims to reduce the hassle of ...

Google Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News Sites https://firewall.firm.in/wp-content/uploads/2024/11/china.png Nov 23, 2024Ravie LakshmananCloud Security / Threat Intelligence Government agencies and non-governmental organizations in the United States have become the target of a nascent China state threat actor known as Storm-2077. The adversary, believed to be active since at least January 2024, has also conducted cyber attacks against ...