Browsing: Security

Researchers said the information disclosure zero-day exposes sensitive information that attackers can use to undermine defenses and make other exploits more reliable.

A new wave of GoBruteforcer attacks is targeting cryptocurrency and blockchain project databases. This botnet exploits weak credentials, often propagated by AI-generated server examples and legacy web stacks like XAMPP, to brute-force passwords for services such as FTP, MySQL, PostgreSQL, and phpMyAdmin on Linux servers. The malware, first documented in 2023, has evolved to include sophisticated obfuscation and dynamic credential lists, with some usernames specifically targeting crypto-related services.

The California Privacy Protection Agency (CPPA) Board has appointed a privacy and surveillance expert, formerly a leader at the American Civil Liberties Union. This appointment of a strong civil liberties advocate to the influential five-member board is expected to significantly impact the agency’s data privacy policy decisions.

Identity management has become increasingly complex, with a significant portion of digital identities operating outside traditional governance. This “identity dark matter” includes unmanaged applications, non-human identities, and stale accounts, creating critical security vulnerabilities and blind spots for organizations.

A threat group linked to Russia, identified as UAC-0184 (also known as Hive0156), has been observed using the Viber messaging platform to distribute malicious ZIP archives. These attacks target Ukrainian military and government entities, employing LNK files disguised as legitimate documents to deploy the Hijack Loader, which ultimately leads to Remcos RAT infections for espionage and data theft.

Three Democratic Senators have urged Apple and Google to remove Elon Musk’s X app from their app stores, citing concerns over the platform’s handling of AI-generated deepfakes, particularly those created using Grok. This pressure coincides with international regulators in Europe and the UK initiating potential investigations into X’s content moderation practices regarding these harmful images.

An examination of content produced by Grok, Elon Musk’s AI chatbot, reveals the generation of highly explicit and violent sexual imagery and videos, some of which appear to involve minors. This content, primarily found on Grok’s dedicated website and app, is significantly more graphic than material created by Grok on the X platform, raising serious concerns about content moderation and legal compliance.

A recent study by Infoblox reveals that the majority of parked domain names, including expired domains and common misspellings of popular sites, are now configured to redirect visitors to malicious content, scams, or malware. This marks a significant increase in risk for users who directly navigate to websites.

Sophisticated spyware poses a significant threat to mobile devices, enabling adversaries to access sensitive information. While often targeting high-profile individuals, its reach is expanding. Understanding how spyware infects devices and implementing protective measures like platform-specific security features and general vigilance is crucial for safeguarding your iPhone or Android device.

The Trump administration has initiated the withdrawal of the United States from several international organizations, including key cybersecurity bodies such as the Global Forum on Cyber Expertise and the Freedom Online Coalition. This decision, part of a broader disengagement from 66 international bodies, was justified by Secretary of State Marco Rubio as a measure against institutions deemed redundant or contrary to U.S. interests. Critics argue that this withdrawal risks creating a leadership vacuum, weakening global network security, and undermining human rights online.