-
ChatGPT: A Scammer’s Newest Tool
PRIVACY PRIVACY ChatGPT: Everyone’s favorite chatbot/writer’s-block buster/ridiculous short story creator is skyrocketing in fame. 1 In fact, the AI-generated content “masterpieces” (by AI standards) are impressing technologists the world over. While the tech still has a few kinks that need ironing, ChatGPT is almost capable of rivaling human, professional writers. However, as with most good…
-
The Rise and Risks of AI Art Apps
PRIVACY PRIVACY The popularity of AI-based mobile applications that can create artistic images based on pictures, such as the “Magic Avatars” from Lensa, and the OpenAI service DALL-E 2 that generates them from text, have increased the mainstream interest of these tools. Users should be aware of those seeking to take advantage to distribute Potential…
-
Smashing Security podcast #306: No Fly lists, cell phones, and the end of ransomware riches?
PRIVACY PRIVACY What are prisoners getting up to with mobile phones? Why might ransomware no longer be generating as much revenue for cybercriminals? And how on earth did an airline leave the US government’s “No Fly” list accessible for anyone in the world to download? All this and much more is discussed in the latest…
-
Experian Glitch Exposing Credit Files Lasted 47 Days
PRIVACY PRIVACY On Dec. 23, 2022, KrebsOnSecurity alerted big-three consumer credit reporting bureau Experian that identity thieves had worked out how to bypass its security and access any consumer’s full credit report — armed with nothing more than a person’s name, address, date of birth, and Social Security number. Experian fixed the glitch, but remained…
-
Attackers move away from Office macros to LNK files for malware delivery
PRIVACY PRIVACY For years attackers have used Office documents with malicious macros as one of the primary methods of infecting computers with malware. Microsoft finally took steps to disable such scripts by default in documents downloaded from the internet, forcing many groups to change tactics and increasingly choose LNK (shortcut) files as a delivery mechanism.…
-
North Korean Group TA444 Shows ‘Startup’ Culture, Tries Numerous Infection Methods
PRIVACY PRIVACY The threat actor has been targeting cryptocurrency exchanges since at least 2017 Read More
-
Yahoo Overtakes DHL As Most Impersonated Brand in Q4 2022
PRIVACY PRIVACY DHL came in second place, with 16% of all brand phishing attempts, and Microsoft followed with 11% Read More
-
Ticketmaster Claims Bot Attack Disrupted Taylor Swift Tour Sales
PRIVACY PRIVACY Joe Berchtold, president of Live Nation, made the claims at a congressional committee Tuesday Read More
-
Chinese threat actor DragonSpark targets East Asian businesses
PRIVACY PRIVACY Organizations in Taiwan, Hong Kong, Singapore and China have been recently facing attacks from a Chinese threat actor DragonSpark. The threat actor was observed using the open-source tool SparkRAT for its attacks, according to a report by SentinelOne. SparkRAT is multi-platform, feature-rich, and frequently updated with new features, making the remote access Trojan (RAT) attractive to…
-
US Cyber Command Operations During the 2022 Midterm Elections
PRIVACY PRIVACY The head of both US Cyber Command and the NSA, Gen. Paul Nakasone, broadly discussed that first organization’s offensive cyber operations during the runup to the 2022 midterm elections. He didn’t name names, of course: We did conduct operations persistently to make sure that our foreign adversaries couldn’t utilize infrastructure to impact us,”…