Menu

Blog

Archive for the ‘cybercrime/malcode’ category: Page 5

Oct 21, 2024

Hacker tricks ChatGPT into giving out detailed instructions for making homemade bombs

Posted by in categories: cybercrime/malcode, robotics/AI

When I was a kid we had the anarchist cookbook.


But an artist and hacker found a way to trick ChatGPT to ignore its own guidelines and ethical responsibilities to produce instructions for making powerful explosives.

The hacker, who goes by Amadon, called his findings a “social engineering hack to completely break all the guardrails around ChatGPT’s output.” An explosives expert who reviewed the chatbot’s output told TechCrunch that the resulting instructions could be used to make a detonatable product and was too sensitive to be released.

Continue reading “Hacker tricks ChatGPT into giving out detailed instructions for making homemade bombs” »

Oct 21, 2024

Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials

Posted by in category: cybercrime/malcode

Unknown hackers exploited a patched Roundcube XSS flaw in phishing attacks to steal sensitive credentials.

Oct 20, 2024

EU Commission adopts initial cybersecurity rules to enhance critical digital infrastructure resilience

Posted by in categories: cybercrime/malcode, law

The European Commission adopted on Thursday the initial implementing rules on cybersecurity of critical entities and networks under the Directive on measures for a high common level of cybersecurity across the Union. The NIS2 Directive addresses cybersecurity risk management measures and cases in which an incident should be considered significant and companies providing digital infrastructures and services should report it to national authorities. The move is seen as another major step in boosting the cyber resilience of Europe’s critical digital infrastructure.

The implementing regulation will apply to specific categories of companies providing digital services, such as cloud computing service providers, data center service providers, online marketplaces, online search engines, and social networking platforms, to name a few. For each category of service providers, the implementing act also specifies when an incident is considered significant.

Adopting the implementing regulation coincides with the deadline for Member States to transpose the NIS2 Directive into national law. As of Oct. 18, 2024, all Member States must apply the measures necessary to comply with the NIS2 cybersecurity rules, including supervisory and enforcement measures. The implementing regulation will be published in the Official Journal in due course and enter into force 20 days thereafter.

Oct 18, 2024

Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program

Posted by in category: cybercrime/malcode

Group-IB reveals Cicada3301 ransomware’s affiliate panel, targeting U.S. and U.K. sectors with cross-platform attacks.

Oct 18, 2024

Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant

Posted by in categories: cybercrime/malcode, government

RomCom cyber attacks target Ukraine with new SingleCamper RAT, aiming for espionage and ransomware.

Oct 17, 2024

Kory Chester

Posted by in categories: cybercrime/malcode, robotics/AI

1,428 likes, — thesessionca on October 13, 2024: Repost 🎥: @marionawfal.

Comment “Tesla” to get ONLINE MONEY HACKS

Follow @thesessionca.

Continue reading “Kory Chester” »

Oct 16, 2024

The biggest data breaches in 2024: 1 billion stolen records and rising

Posted by in category: cybercrime/malcode

Some of the largest, most damaging breaches of 2024 already account for over a billion stolen records. Plus, some special shout-outs.

Oct 16, 2024

23andMe agrees to $30m settlement over data breach targeting Jewish and Chinese users

Posted by in categories: biotech/medical, cybercrime/malcode, genetics

Genetic testing company settles with plaintiffs over breach that was revealed when hacker published link to database labeled ‘ashkenazi DNA Data of Celebrities’

The breach, which occurred last October, affected more than 6.9 million customers and included users’ personal details such as their location, name and birthdate, as well as some information about their family trees. That data was shared on BreachForums, an online forum used by cybercriminals.

According to court documents, the data breach was revealed October 6 after a hacker going by the pseudonym Golem, a reference to the Jewish mythical defender made of clay, published a link to a database labeled ashkenazi DNA Data of Celebrities. According to the lawsuit, the hacker referred to the list as the most valuable data you’ll ever see, though most of the names were not famous.

Oct 15, 2024

Supply Chain Attacks Can Exploit Entry Points in Python, npm, and Open-Source Ecosystems

Posted by in category: cybercrime/malcode

Cybersecurity experts uncover entry-point vulnerabilities in popular developer tools, enabling stealthy supply chain attacks.

Oct 14, 2024

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

Posted by in category: cybercrime/malcode

Cybercriminals exploit CVE-2024–40711 in Veeam to deploy ransomware, targeting unpatched systems and compromised VPNs.

Page 5 of 220First23456789Last